Beagle Security Reviews & Product Details

I used Beagle Security to ensure our application is compliant with PCI DSS requirements, and it was extremely useful for identifying key underlying security issues as per the OWASP penetration test. The reports after performing a test are very detailed and actionable, showing us the core security issues and how to fix them. The initial setup was straightforward and easy to implement. Review collected by and hosted on G2.com.

They could improve on adding a lot more compliance reports ideally for ISO and SOC Review collected by and hosted on G2.com.

Easy to configure, attractive reporting, comprehensive. Review collected by and hosted on G2.com.

There's not really anything that comes to mind. Review collected by and hosted on G2.com.

The up-front setup to test a site is minimal, but it can be extended out to test logins, APIs and other aspects as options. This means that I can get an initial test set up and running that verifies the foundational aspects about the hosting environment and general site characteristics and then build out a more comprehensive test plan for refinement. Review collected by and hosted on G2.com.

Setting up the API testing required setting up OAUTH2.0, which I did, but it also requires setting up roles and enabling those roles. This is not difficult, but it is not obvious that this requirement exists and the error message does not lead direcgtly to the solution. But this was the only real hitch, the rest of the setup was very smooth. Review collected by and hosted on G2.com.

Hello,

Beagle Security automates the complete process of pentesting and is a great tool for VAPT assignments

A defenite recommended product Review collected by and hosted on G2.com.

Its only for testing web urls and not for servers

once it migrates to a server level pentesting automation tool it will be hard to beat Review collected by and hosted on G2.com.

I had written a review for BeagleSecurity shortly after started using it but it wasn't published. Now I am updating it after several years of it working well and providing us with invaluable reports about how to improve the security of our various websites and web apps. The reports are easy to understand and provide clear insights and instructions for removing the reported issues. Customer support is also quick and friendly. Review collected by and hosted on G2.com.

A feature I’d still like to see is the possibility of specifically retesting a fixed issues; this would be quicker and would avoid having to run another full test to see if the reported problem was fixed. Review collected by and hosted on G2.com.

Very easy to set up and run a penetration test (I am specifically referring to WordPress websites) and the report, when completed, is detailed but understandable. Review collected by and hosted on G2.com.

Nothing really stands out, generally very happy with it. Review collected by and hosted on G2.com.

I've run a few scans so far with Beagle Security. They pointed out issues I had no idea existed. It was quick and easy to set-up and the report was deep and thorough. It listed each and every issue, along with the intensity of the threat. Beagle Security is an amazing resource. Review collected by and hosted on G2.com.

A good part of the report was over my head. I'm not a security expert and don't know if this software is only aimed at sysadmins; it's not a layman's report. Options to get help would have been a great addition. Review collected by and hosted on G2.com.

The simplicity of the solution. It's very easy to navigate, the portal works well and grouping of projects really helps track customer engagements. Its pretty comprehensive and I like the addition of swagger files for API testing.

The ability to schedule tests regularly is also of great benefit. Review collected by and hosted on G2.com.

It would be nice to be able to specify exclusions for things which are false positives for some but not others - like for example TLS 1.1 is detected when using a CDN, but actually the entire site doesnt allow TLS 1.1, it just detects it due to the CDN given components. It would be nice if we can put an exclusion in so that its included in the report, but a reason why the exclusion is a false positive in this instance.

Its a shame its an additional cost to have customised reports, if we could have a better export so that we could make minor changes (like the above) that would be useful. Review collected by and hosted on G2.com.

The user interface is super easy to use. The reports generated are automatically sent at regular intervals, and pinpoint specific problem areas, togehter with the level of severity. The reports even show clear action plans to eliminate the security risks. Review collected by and hosted on G2.com.

I really like it. There is nothing that I do not like. What could be maybe next level would be even them having a web service which takes the credentials for the WordPress site and fixes all the problems automatically. Other than that, the system is as good as it gets. Never failed us (me website owner and my web admin) so far. Review collected by and hosted on G2.com.

The pentest reports are presented in a way suitable for corporate needs. The user interface is nice and easy to understand. The support is available to our liking. The tool provides vulnerabilities such as injection attacks which can be hard to pinpoint in an otherwise big website. The recommendations provided to fix the vulnerabilities are helpful. Review collected by and hosted on G2.com.

The inbuilt login feature doesn't work. The pentest reports of different applications feel generic. The tool sometimes fails to include vulnerabilities otherwise found in OwaspZAP. Lastly, the tool lacks to find a vulnerability that could seriously compromise the application. Review collected by and hosted on G2.com.