No more typing reviews! Try our Samantha, our new voice AI agent.

Menlo Secure vs Prowler comparison

 

Comparison Buyer's Guide

Executive Summary

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Menlo Secure
Ranking in Cloud Security Remediation
9th
Average Rating
9.2
Reviews Sentiment
6.7
Number of Reviews
5
Ranking in other categories
Secure Web Gateways (SWG) (26th), Firewalls (52nd), ZTNA (25th)
Prowler
Ranking in Cloud Security Remediation
3rd
Average Rating
8.0
Number of Reviews
4
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of July 2026, in the Cloud Security Remediation category, the mindshare of Menlo Secure is 5.5%. The mindshare of Prowler is 13.4%, up from 5.7% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Cloud Security Remediation Mindshare Distribution
ProductMindshare (%)
Prowler13.4%
Menlo Secure5.5%
Other81.1%
Cloud Security Remediation
 

Featured Reviews

reviewer2701794 - PeerSpot reviewer
Head Of Bluechip Enterprise at a manufacturing company with 51-200 employees
Provides strong protection and multiple use cases but struggles with market recognition
There aren't specific areas for improvement; however, they're not as well known as the big vendors such as Palo Alto. Menlo Secure is a smaller company with limited resources and funding, which makes it challenging to compete with larger companies such as Palo and Cisco. What can be improved is market awareness and adoption of the technology. When selling it in the channel, regardless of how good the technology might be, success depends more on market adoption and awareness.
Anubhav Bhardwaj - PeerSpot reviewer
Cloud DevOps Engineer at Businessnext
Centralized cloud posture has strengthened security and now needs richer AI remediation features
Prowler currently focuses on cloud services and big vendors, specifically AWS and GCP, but we can improve by including EC2-specific checks, such as identifying open RDP ports. While Prowler supports that, it lacks a suppress feature for false positives reported by users, so this is an area for improvement. The flow of traffic information is vital, as Prowler requires read-only access to resources. Any user can pinpoint using the network and facilitate remediation. There should also be a dashboard for attack vectors to manage incoming traffic and enhance infrastructure security, making these enhancements beneficial for Prowler's future. I give Prowler a score of seven or eight due to its inclusion of multiple security policies and the lack of a feature for adding false positives. Additionally, the network architecture features are incomplete even after recent revisions. Improving AI-sourced security posture features would enhance Prowler's value significantly, as would the option to allow automatic remediation for identified issues. Prowler's AI capabilities are good but just starting, as significant improvements are still needed on that front. I find the AI features reliable and accurate; we rely on the recommendations provided. However, if Prowler could also include remediation capabilities for users, it would significantly reduce manual efforts, showcasing the potential of AI. It currently summarizes data from Security Hub and AWS documentation, and improving this would be beneficial.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The solution is invisible to our end users, so it doesn't have any impact on their work or performance."
"We are not aware of a single compromise from the web since implementing the solution."
"This security technology addresses risk and enables people to conduct business without that risk, which is where the ROI is realized."
"It has reduced security events to follow up on. While it is not 100%, there has been probably a 90% or more reduction. We were getting hit left, right, and center constantly from people browsing the Internet and hitting bad websites. It was not just bad websites that were stood up to be malicious, but good sites that were compromised."
"The fact that it is a cloud proxy solution is another feature we like. For example, if you acquire a new company, you can use it to protect that new company without the need to install anything physically on their networks."
"Accessing the internet with a proxy from anywhere is the most valuable feature. It ensures that users are only able to browse legitimate websites. If they happen to go to a legitimate website with a malicious payload, the isolation feature will take care of that."
"For us, the primary goal is protection on the web, and that's extremely important. We're not using any of the other services at this time. The web part is key to the success of the organization. It gives us the ability to protect. It can isolate. It opens the session in an isolated format so that the code isn't running locally. It is running over in the Menlo environment, not in ours. It is not running on the local computer, whereas if you were to go to a normal website, it would run Java or something else on the local machine and potentially execute the malicious code locally. So, it does give us that level of protection."
"We have definitely seen ROI, as we save a ton of money and time because the numerous hits that we were receiving from our security tools prior to implementing them had to all be chased down, dispositioned, and endpoints had to be reimaged."
"Prowler has saved us a lot of time, as our engineers previously wasted time manually checking all the configurations of cloud resources maintained in Excel sheets; after switching to Prowler, we save 60 to 70% of our engineers' time, as they no longer need to check each cloud account and resource individually."
"Before using Prowler, we were spending hours of our engineers' efforts on compliance and misconfiguration checks, saving that configuration in Excel sheets, and after switching to Prowler, these processes are super smooth and easy, and we are currently saving our engineers' time."
"Prowler offers real-time scanning, which is crucial when improving our cloud security posture, as updates can be immediately reflected on the scoreboard."
"Prowler has positively impacted my organization by helping us on the security front by improving compliance."
 

Cons

"Currently, I don't have a good way to see which of my rules are being used in the access control lists. I have numerous entries, but are they all still needed? A report that would show me my list of who is allowed and whether we're actually using it would be useful because I can then go clean up my list. It would be easier to manage. We would eliminate the vulnerability of unused services."
"In the best of all worlds, we wouldn't have to make any exceptions. However, that is a big ask because a lot of that depends on how websites are constructed. For example, there are some very complex, application-oriented sites that we end up making exceptions for. It is really not that big an issue for us to make the exceptions. We feel like we are doing that without a huge impact on our security posture, but we do have to make some exceptions for complex sites, e.g., mostly SaaS-type sites and applications."
"The user monitoring could still be improved."
"Currently, I don't have a good way to see which of my rules are being used in the access control lists."
"Menlo Secure is a smaller company with limited resources and funding, which makes it challenging to compete with larger companies such as Palo and Cisco."
"We are now transitioning to another solution. The main reason for that is that managing all of the exceptions and troubleshooting all of the issues our users have had connecting to the internet has become too significant in terms of workload, compared to what we hope we will have with another solution."
"For the reports, Prowler does not provide PDF reports for all compliances; it only gives reports for the Prowler configuration."
"One limitation is that after scanning the cloud account, Prowler provides reports of compliance frameworks such as SOC 2 Type 2 and ISO certified, but we only receive an Excel sheet; I think a PDF report along with remediation steps is needed to help us improve our cloud accounts better."
"I give Prowler a score of seven or eight due to its inclusion of multiple security policies and the lack of a feature for adding false positives."
"Some of the findings in Prowler are not that critical but come in the critical category, so that could be improved."
 

Pricing and Cost Advice

"It is appropriately priced for what they're doing for us. Considering the protection provided, I feel their pricing is spot-on."
"We save a ton of money and time. Previously, the numerous hits that we were receiving from our security tools, prior to implementing them, had to all be chased down, dispositioned, and endpoints had to be reimaged. It was just a ton of effort to do all that. That is where the savings from time and money come in."
"The solution is expensive. It's more expensive than the solution I previously used. Compared with the other cloud-based solutions, it's very competitive."
Information not available
report
Use our free recommendation engine to learn which Cloud Security Remediation solutions are best for your needs.
902,894 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Manufacturing Company
14%
Construction Company
9%
Retailer
9%
Computer Software Company
8%
No data available
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
No data available
 

Questions from the Community

What needs improvement with Menlo Security Secure Web Gateway?
There aren't specific areas for improvement; however, they're not as well known as the big vendors such as Palo Alto. Menlo Secure is a smaller company with limited resources and funding, which mak...
What is your primary use case for Menlo Security Secure Web Gateway?
People are mainly using it for zero trust web access. Menlo Secure is built from the ground up to provide zero basic access, and by doing it that way, it has multiple use cases. For example, it man...
What advice do you have for others considering Menlo Security Secure Web Gateway?
Secure file sharing and data protection is not exactly what Menlo Secure is designed to do. While it can handle some of these functions, people typically choose another technology for those specifi...
What is your experience regarding pricing and costs for Prowler?
I have not deep dived into the pricing and setup cost, but the setup cost is very minimal, and using Prowler's cloud platform requires a small amount of money for securing and complying with our cl...
What needs improvement with Prowler?
For the reports, Prowler does not provide PDF reports for all compliances; it only gives reports for the Prowler configuration. Prowler could include PDFs for all the compliances, which would be su...
What is your primary use case for Prowler?
We have been using Prowler for one year. The main use case of Prowler is to ensure we are ready with compliance, and we can also check our configurations of cloud environments. We can check our mis...
 

Also Known As

Menlo Security Web Security, Menlo Web Security
No data available
 

Overview

Find out what your peers are saying about Menlo Secure vs. Prowler and other solutions. Updated: June 2026.
902,894 professionals have used our research since 2012.