Try our new research platform with insights from 80,000+ expert users

Runecast vs Vicarius vRx comparison

Sponsored
 

Comparison Buyer's Guide

Executive Summary

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Zafran Security
Sponsored
Ranking in Vulnerability Management
18th
Average Rating
9.4
Reviews Sentiment
8.2
Number of Reviews
5
Ranking in other categories
Continuous Threat Exposure Management (CTEM) (2nd)
Runecast
Ranking in Vulnerability Management
38th
Average Rating
9.0
Reviews Sentiment
7.0
Number of Reviews
1
Ranking in other categories
GRC (18th), Container Security (30th), Cloud Workload Protection Platforms (CWPP) (20th), Cloud Security Posture Management (CSPM) (25th), Cloud-Native Application Protection Platforms (CNAPP) (19th), Compliance Management (10th)
Vicarius vRx
Ranking in Vulnerability Management
15th
Average Rating
8.0
Reviews Sentiment
7.6
Number of Reviews
21
Ranking in other categories
Patch Management (7th), Risk-Based Vulnerability Management (6th)
 

Mindshare comparison

As of July 2025, in the Vulnerability Management category, the mindshare of Zafran Security is 0.8%, up from 0.0% compared to the previous year. The mindshare of Runecast is 0.1%, down from 0.1% compared to the previous year. The mindshare of Vicarius vRx is 0.9%, up from 0.2% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Vulnerability Management
 

Featured Reviews

Israel Cavazos Landini - PeerSpot reviewer
Weekly insights and risk analysis facilitate informed security decisions
I appreciate the weekly insights Zafran provides, which include critical topics for networks and IT security, allowing us to evaluate which insights apply to our environment. The organization score feature is valuable to keep the leadership team updated on how our infrastructure fares security-wise. The applicable risk level versus base risk level feature is beneficial because prior to Zafran, we only used the base risk level, but now understand that risk depends on the asset itself. Zafran is an excellent tool.
Burak AKCAGUN - PeerSpot reviewer
Helps with risk assessments for containers, assessing security, and ensuring container compliance
I rate the overall product a nine out of ten. Customers can conveniently view all companies in a single dashboard if they have different companies. This feature eliminates the need for different solutions and separate installations. Moreover, the solution extends beyond servers, encompassing various platforms such as VMware and Kubernetes. Additionally, end-users can install the solution from their client's perspective.
OrenBen Shalom - PeerSpot reviewer
Consolidates vulnerability discovery, prioritization, and remediation in a single platform
Vicarius vRx offers several advantages, especially for organizations with diverse operating systems and applications requiring frequent patching. The platform helps prioritize patch installation by identifying high-risk vulnerabilities, allowing IT teams to focus on critical threats first. This prioritization is crucial because it prevents IT teams from being overwhelmed by the constant influx of patches, enabling them to create a manageable plan and allocate resources effectively. By distinguishing between critical, high-risk, and medium-risk vulnerabilities, Vicarius vRx empowers IT teams to address the most urgent threats promptly and schedule less critical patches for later. Both native operating system updates and Vicarius vRx offer vulnerability remediation. Native OS updates allow for the patching of system vulnerabilities on Windows, macOS, and Linux. However, Vicarius vRx provides a single solution for installing both operating system and application updates by also discovering application vulnerabilities. Another valuable feature is virtual patching, which allows us to protect an asset from a specific vulnerability without installing a patch. Sometimes, installing a patch alone is insufficient and requires restarting the asset. However, production servers often cannot be restarted during the day, restricting restarts to specific timeslots. Virtual patching creates a network-based protection layer that prevents exploitation of a vulnerability, offering a temporary safeguard. While not a foolproof solution for long-term use, it's a valuable tool that reduces tension between IT and security teams by providing time to properly install patches.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"We are able to see the real risk of a vulnerability on our environment with our security tools."
"Zafran is an excellent tool."
"Zafran has become an indispensable tool in our cybersecurity arsenal."
"We saw benefits from Zafran Security almost immediately after deploying it."
"Overall, we have seen about eighty-seven percent reduction of the number of vulnerabilities that require urgency to remediate, specifically the number of criticals."
"Runecast is a good partner for VMware. Once we have installed it, we can see all the problems and issues. It also has VMware knowledge-based articles."
"Vicarius vRx's primary strength is its user-friendly interface."
"The other products we looked at had patching tagged on another product, whereas this solely looked after the patching and vulnerabilities, which is good. We did not see any other products with such capability."
"vRx seemed to be user-friendly and very easy to use."
"Vicarius vRx consolidates vulnerability discovery, prioritization, and remediation in a single platform."
"While other vulnerability scanners overwhelm us with a huge list of problems after a scan, Vicarius vRx goes beyond that."
"The system prioritizes vulnerabilities, identifying high, medium, and low risks, allowing us to focus on high-risk applications. It allows us to focus on high-risk applications and do the updates."
"We can easily deploy patches for third-party applications. It automatically downloads the patches for you. You do not have to download them, upload them to the solution, and configure your own scripts or anything like that. It is all automatic."
"The strongest advantage of Vicarius vRx is its intuitive interface, which requires minimal explanation or support, even for first-time users."
 

Cons

"Initially, we were somewhat concerned about the scalability of Zafran due to our large asset count and the substantial amount of information we needed to process."
"I think the ability to have some enhanced reporting capabilities is something they can improve on, as they have good reports but we have asked for some specific reporting enhancements."
"The dashboarding and reporting functionality of Zafran Security is an area that definitely could use some improvements."
"The product lacks network assessment capabilities. We cannot view our network assets or scan switches, routers, or IPs for vulnerabilities and issues."
"We are now in the process of trying to get our money back because the tool does not work."
"The multi-tenant portal has room for improvement."
"They do have a search function for device names. They already have a list of all our devices, however, if I'm looking for something, sometimes the name does not come up at the top of the list."
"There can be more scripting capability and more filtering capability. We should be able to filter more granular details in the operating system such as whether it is a service, application, executable, or something like that. For the most part, we are satisfied with what we are able to filter."
"The patchless protection feature is currently difficult to understand and could be made more user-friendly."
"It would be good if there were more login options. At the moment, it sends you an email to verify your email address, and then you can log in. It would be beneficial to have other options for signing in, like MFA or maybe security keys, especially since it is a security product."
"I don't like logging in. The portal could be a better process. You could use some third-party push notification rather than sending an email, waiting for the link to generate, and clicking on it. That would be good. It's somewhat frustrating when I need to log in."
"The user interface for deploying patches can be improved, as it appears complicated when launching patches."
 

Pricing and Cost Advice

Information not available
"Runecast's pricing is cheaper than that of its competitors."
"Vicarius vRx is reasonably priced."
"Vicarius vRx's per-asset pricing makes it easy for me to market to clients as it scales with their needs."
"Vicarius vRx offers a competitive price point for the features it provides."
"In the past, Vicarius vRx was cheap, but now they have adjusted their pricing policy, resulting in higher renewal costs. We have had some conversations with them regarding a smaller jump in the renewal cost."
"It is in the middle. It is not the cheapest solution, but it is also not terribly expensive. We found it to be a good fit. It is fairly priced."
"From a pricing perspective, Vicarius was cheaper compared to other competitors."
"The pricing is great because we are a reseller of the product. It is really up to us and Vicarius, and they are very easy to work with."
"The pricing is fair."
report
Use our free recommendation engine to learn which Vulnerability Management solutions are best for your needs.
860,825 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
11%
Financial Services Firm
11%
Manufacturing Company
7%
Healthcare Company
6%
Computer Software Company
18%
Educational Organization
16%
Government
14%
Financial Services Firm
10%
Computer Software Company
15%
Media Company
11%
Non Profit
10%
Manufacturing Company
9%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
No data available
 

Questions from the Community

What is your experience regarding pricing and costs for Zafran Security?
The current pricing of Zafran Security is fair overall. They were good to work with to accommodate our organization w...
What needs improvement with Zafran Security?
The dashboarding and reporting functionality of Zafran Security is an area that definitely could use some improvement...
What is your primary use case for Zafran Security?
Zafran Security is helping reduce the amount of critical vulnerabilities in our environments that require prompt reme...
What do you like most about Runecast?
Runecast is a good partner for VMware. Once we have installed it, we can see all the problems and issues. It also has...
What is your experience regarding pricing and costs for Runecast?
Runecast's pricing is cheaper than that of its competitors.
What needs improvement with Runecast?
The product lacks network assessment capabilities. We cannot view our network assets or scan switches, routers, or IP...
What is your experience regarding pricing and costs for Vicarius vRx?
I do not use other solutions, so I cannot compare its pricing to others, but its price seems okay.
What needs improvement with Vicarius vRx?
I would be happy if the patch update could be downloaded to the Vicarius server and then implemented on the client. C...
What is your primary use case for Vicarius vRx?
We use Vicarius vRx to manage all third-party software updates. Previously, we could manage Windows updates, but thir...
 

Also Known As

No data available
Runecast Analyzer
No data available
 

Overview

 

Sample Customers

Information Not Available
Our customers tell us regularly how Runecast benefits CIOs, CISOs, and both Security and Operations teams across verticals with a proactive approach that results in major time and cost savings, increased uptime and security standards complianceSuccess Highlight 75-85% troubleshooting time savings – Kiel Municipal Hospital90% time savings on reactive troubleshooting – Near East Bank90% time savings in upgrade planning– FLEXdata80% reduction in monthly incidents and issues – University of St Andrews78,000 EUR/year minimum annual cost savings – Notino100s of hours saved on security compliance with remediation scripts alone – Kiel Municipal Hospital75% time saved on troubleshooting and root cause analysis – de Volksbank
Information Not Available
Find out what your peers are saying about Qualys, Wiz, Tenable and others in Vulnerability Management. Updated: June 2025.
860,825 professionals have used our research since 2012.