XM Cyber Reviews

Name: XM Cyber
Brand: XM Cyber
Rating: 4.3 (5 reviews)

4.3 out of 5

5 reviews
100% willing to recommend

What is XM Cyber?

XM Cyber is a leading hybrid cloud security company that’s changing the way innovative organizations approach cyber risk. Our attack path management platform continuously uncovers hidden attack paths to your critical assets across cloud and on-prem environments, so you can cut them off at key junctures and eradicate risk with a fraction of the effort. This overcomes the big disconnect that security teams experience when they’re presented with endless alerts, yet can’t see which exposures impact risk the most, how they come together to be exploited by an attacker, or how to efficiently eliminate them. This approach is a complete game-changer, which is why some of the world’s largest, most complex organizations choose XM Cyber to help eradicate risk. Founded by top executives from the Israeli cyber intelligence community, XM Cyber has offices in North America, Europe, and Israel.

Get the XM Cyber Buyer's Guide and find out what your peers are saying about XM Cyber, Wiz, Microsoft Defender for Cloud and more!

XM Cyber is the #3 ranked solution in top Continuous Controls Monitoring solutions, #3 ranked solution in top Continuous Threat Exposure Management (CTEM) solutions, #20 ranked solution in top Cloud Security Posture Management (CSPM) solutions, and #30 ranked solution in top Vulnerability Management solutions. PeerSpot users give XM Cyber an average rating of 8.6 out of 10. XM Cyber is most commonly compared to Wiz: XM Cyber vs Wiz. XM Cyber is popular among the large enterprise segment, accounting for 54% of users researching this solution on PeerSpot. The top industry researching this solution are professionals from a computer software company, accounting for 14% of all views.

Helped 868,787 peers since 2012

Featured XM Cyber reviews

Stephen Owen

Group CISO at a insurance company with 51-200 employees

We tightly integrate with APIs, consuming feeds and open source data. We have integrated with XM Cyber, and we are elevating ourselves with AI and MCP tools as we view this as a forerunner to reducing the workload for our agents and IT staff. We're pushing all our security partners to provide AI and MCP tools. Our vision is for them to offer a chat interface where a junior IT or an experienced infrastructure engineer can ask for what needs to be patched next without using an interface. Their current interface is very usable and professional, ranking in the top tier of applications. Their reporting is good, offering custom reports, and their API integration is a new capability that serves us well. We have high expectations for the next generation, such as a chat interface to ask questions. However, everything has been very good. We push the boundaries with digital twins; I understand XM Cyber uses a similar concept of graph databases to map environments. I would like access to that and querying languages, enabling more informed business decisions. XM Cyber sees much of our estate, which is beneficial for making informed decisions, and we can harness those insights and data for business analytics. For instance, it could help us gain insights into change management—if a particular server impacts another and that server is supported by yet another server, we could glean significant insights for change management meetings.

Read full review

Chee Young Tan

Director at ST Electronics

XM Cyber helps identify risk by creating a shadow environment mirroring the production system. While it doesn't directly mitigate risks, it simulates attacks across this replica, uncovering vulnerabilities and weak points within the system. Once a WISC is established, it highlights the vulnerability and offers recommendations for improvement. It provides reporting templates, making the process faster. I rate it an eight out of ten.

Read full review

HolgerHeimann

Ffounder at It.sec

There's a lot of improvement possible, however, most of it is in the details. I personally like the concept, as it's pretty straightforward and the product is not trying to overload functionality. It's a clean and straightforward approach. You know what you get. Most of the improvements are detail improvements. They're pretty open to future requests as well, so we send them a lot of suggestions. For example, at the moment, they have something called Battleground. That's a visualization of the network, and it's a visualization of the attack paths that are possible. The program uses so-called scenarios, and we say, "Okay, I'm watching traffic for maybe 24 hours," and then you get a result for that scenario, what happens in that time with what the attack paths are, et cetera. The result of the same scenario yesterday or tomorrow may be different as something might change. In that, one of the things I'm currently missing, which is on the list to be added, is some kind of diff visualization. For example, showing a two-screen split of activity. On the left side of the screen, that's how it was yesterday; on the right side, that's how it is today; and here are the differences. We'd like to see a cheaper price.

Read full review

XM Cyber mindshare

Product category:

As of October 2025, the mindshare of XM Cyber in the Continuous Threat Exposure Management (CTEM) category stands at 16.2%, down from 26.2% compared to the previous year, according to calculations based on PeerSpot user engagement data.

Continuous Threat Exposure Management (CTEM) Market Share Distribution
Product	Market Share (%)
XM Cyber	16.2%
Cymulate	16.3%
Wiz Code	14.6%
Other	52.9%

Continuous Threat Exposure Management (CTEM)

PeerResearch reports based on XM Cyber reviews

Type	Title	Date
Category	Continuous Threat Exposure Management (CTEM)	Oct 4, 2025	Download
Product	Reviews, tips, and advice from real users	Oct 4, 2025	Download
Comparison	XM Cyber vs Zafran Security	Oct 4, 2025	Download
Comparison	XM Cyber vs Cymulate	Oct 4, 2025	Download
Comparison	XM Cyber vs IONIX	Oct 4, 2025	Download

Title	Rating	Mindshare	Recommending
Wiz	4.5	N/A	95%	24 interviews Add to research
Microsoft Defender for Cloud	4.0	N/A	94%	79 interviews Add to research

Valuable Features

"XM Cyber made it clear that browser vulnerabilities were the top priority because the platform was able to examine how vulnerabilities within our estate could be exploited and what the path would be from some bad actor in order to exploit those vulnerabilities."
"Six weeks into using XM Cyber, we saw a compelling return on investment—primarily in risk reduction, with a specific issue our other security tooling did not pick up but XM Cyber did, reducing IT remediation time and saving over 60,000 US dollars per year while significantly lowering our loss exposure amount."
"Since implementing XM Cyber, we have improved the way we are doing patching, focusing on the choke points in our patching cycle, and it improves the way we assess the risk."

Room for Improvement

"We have not saved any time or effort, but we can prove that the effort involved around vulnerability management has been better spent to greater effect, and we've been able to demonstrate that vulnerabilities that do represent a high risk have been remediated more rapidly and more effectively."
"We have high expectations for the next generation, such as a chat interface to ask questions."
"There are many interesting things about XM Cyber, but the part that can be improved is the mobile exposure and the IBM i specific equipment."

Pricing

"We have to pay standard licensing fees."

These insights are based on the in-depth reviews provided by peers to help you make a better buying decision.

Download our XM Cyber Buyer's Guide for additional reliable information.

Top industries

By visitors reading reviews

Computer Software Company

14%

Financial Services Firm

11%

Manufacturing Company

10%

Retailer

Insurance Company

Government

Outsourcing Company

Comms Service Provider

Real Estate/Law Firm

University

Construction Company

Media Company

Educational Organization

Healthcare Company

Non Profit

Energy/Utilities Company

Wholesaler/Distributor

Hospitality Company

Marketing Services Firm

Transportation Company

Security Firm

Legal Firm

Recruiting/Hr Firm

Engineering Company

International Affairs Institute

Performing Arts

Recreational Facilities/Services Company

Compare XM Cyber with alternative products

Learn more about XM Cyber

XM Cyber customers

Hamburg Port Authority, Plymouth Rock Corporation

XM Cyber Reviews

What is XM Cyber?

Featured XM Cyber reviews

XM Cyber mindshare

PeerResearch reports based on XM Cyber reviews

Valuable Features

Room for Improvement

Pricing

Top industries

Compare XM Cyber with alternative products

Learn more about XM Cyber

XM Cyber customers

Related questions

Product Categories

Popular Comparisons

Author info	Rating	Review Summary
Group CISO at a insurance company with 51-200 employees	4.5	XM Cyber helps me manage risk by simulating attacker behavior, improving remediation focus, and reducing loss exposure; its deployment was smooth, support is excellent, and we've seen real savings and enhanced visibility into both data center and cloud environments.
Chief Information Security Officer at a financial services firm with 5,001-10,000 employees	4.0	I've used XM Cyber for over two years to prioritize high-risk vulnerabilities, effectively focusing remediation efforts. Its attack path mapping is invaluable, though deeper integration with other tools would enhance its overall threat and vulnerability management capabilities.
IT Security manager at a tech services company with 10,001+ employees	4.5	I've used XM Cyber for two years to assess attack paths and improve risk management, especially around choke points, seeing strong ROI. It's stable, scalable, and effective, though mobile exposure and IBM i support could be improved.
Director at ST Electronics	4.0	I find XM Cyber useful for identifying network vulnerabilities, with attack simulation being its most valuable feature for testing security. However, it could improve by expanding its vulnerability identification across more areas. Return on investment isn't mentioned.
Ffounder at It.sec	4.5	No summary available