Try our new research platform with insights from 80,000+ expert users
Picus Security Logo

Picus Security Reviews

Vendor: Picus Security
4.5 out of 5
Leave a review

What is Picus Security?

Independent from any vendor or technology, the unparalleled Picus Platform is designed to continuously measure the effectiveness of security defenses by using emerging threat samples in production environments. Created by a team that’s been working together more than 10 years already and has proven their expertise in enterprise cybersecurity, Picus is trusted by many large multinational corporations and government agencies.

Get the Picus Security Buyer's Guide and find out what your peers are saying about Picus Security, Pentera, Cymulate and more!
Picus Security is the #3 ranked solution in Breach and Attack Simulation vendors. PeerSpot users give Picus Security an average rating of 9.0 out of 10. Picus Security is most commonly compared to Pentera: Picus Security vs Pentera. Picus Security is popular among the large enterprise segment, accounting for 62% of users researching this solution on PeerSpot. The top industry researching this solution are professionals from a financial services firm, accounting for 18% of all views.
Buyer's Guide
Picus Security
August 2025
Get the report
Helped 867,497 peers since 2012

Featured Picus Security reviews

Read more reviews

Picus Security mindshare

As of September 2025, the mindshare of Picus Security in the Breach and Attack Simulation (BAS) category stands at 17.5%, down from 18.5% compared to the previous year, according to calculations based on PeerSpot user engagement data.
Breach and Attack Simulation (BAS) Market Share Distribution
ProductMarket Share (%)
Picus Security17.5%
Pentera28.5%
Cymulate20.5%
Other33.5%
Breach and Attack Simulation (BAS)

PeerResearch reports based on Picus Security reviews

TypeTitleDate
CategoryBreach and Attack Simulation (BAS)Sep 18, 2025Download
ProductReviews, tips, and advice from real usersSep 18, 2025Download
ComparisonPicus Security vs CymulateSep 18, 2025Download
ComparisonPicus Security vs PenteraSep 18, 2025Download
ComparisonPicus Security vs The NodeZero PlatformSep 18, 2025Download
Suggested products
TitleRatingMindshareRecommending
Pentera4.028.5%100%9 interviewsAdd to research
Cymulate4.320.5%100%5 interviewsAdd to research
 
 
Key learnings from peers

Valuable Features

Picus Security's most important features include vulnerability detection, threat intelligence, security control validation, and comprehensive integration. Users benefit from real attack simulations without affecting production systems, allowing them to manage and configure firewalls, IPS, and WAF. Customizable attack executions enable adaptation to specific environments. Detection capabilities extend to alarms and logs from SIEM tools. Threat intelligence assists in blocking and preventing attacks by identifying malicious files and providing threat IDs. Comprehensive network, endpoint, and email vector coverage offers a complete security approach.
  • "It provides good reports and offers signature-based solutions."
  • "The most valuable feature of Picus Security is its threat intelligence, providing suggestions to block and prevent attacks by identifying malicious files and providing threat IDs."
  • "The most valuable feature of the solution is its integration capabilities with the other security tools."

Room for Improvement

Picus Security users highlighted the need for precise identification of attack bypass locations and enhanced patching capabilities. They noted a lack of integration options and called for improved data analysis and attack path validation. Scalability and automated processes were also areas of concern. Some felt that the company needed a local data center in India and faster customer support response times to improve trust and market presence.
  • "There is room for improvement in the response rate provided by customer support."
  • "To improve, Picus Security could consider establishing a data center in India to address trust issues and increase interest from Indian customers."
  • "The amount of integrations that the product can handle is an area of concern, making it one of the aspects where improvements are required."

Pricing

Enterprise buyers find Picus Security's pricing fair and in line with market competitors. Pricing varies based on regions, use cases, applications, and yearly licenses correlated to the number of vectors deployed. Distributors may adjust prices, with possible discounts available due to regional customer acquisition efforts. Overall, the pricing is considered moderate, scoring around seven out of ten, and is viewed as offering good value for money.
  • "There is a yearly license according to the number of vectors. The pricing is moderate."
  • "They have certain price ranges for their products, depending upon the use cases, and the number of applications the customer wants to try."

Popular Use Cases

Picus Security is primarily utilized by clients in the Middle East for validating security controls and assessing infrastructure strength. It offers breach and attack simulation, enabling verification of network security through simulated attacks and prevention measures such as URL bypass blocking. Clients use it for continuous security validation, both on-premises and in cloud environments, to ensure controls effectively stop and mitigate attacks. Military clients and companies simulating network security scenarios benefit from its frequent dictionary updates.

Service and Support

Picus Security excels in customer service and support, consistently receiving high ratings. Their support team is described as responsive and highly available, with quick resource assignment. Although they offer effective technical assistance, reaching support can be challenging due to time differences, as assistance primarily comes from the US and UK. Users suggest enhancing local support presence and speeding up response times. Overall ratings average between 8 and 10 out of 10.

Deployment

The initial setup for Picus Security is described as straightforward and well-documented. Users find it easy with the assistance of detailed guidance and support. Configuration can sometimes be complex due to the need for customer-specific network design choices, involving different segments like cloud and internal networks. Deployment is generally quick, often taking just one day, and most users rate the process highly. The installation typically requires minimal personnel, enhancing simplicity and efficiency.

Scalability

Picus Security's scalability is highly rated, supporting installation on multiple servers to distribute attack traffic effectively. It is deemed suitable for both large and medium-scale infrastructures. Users highlight the platform's capability to support different use cases through various agents, though some still require manual configuration. The scalability receives strong praise with little noted limitations, serving both enterprise and SMB markets effectively.

Stability

Picus Security is highly stable, performing well on Linux systems, with management servers on CentOS. Users report minimal issues, including some capacity problems and minor bugs, but describe it as highly reliable, often rating stability nine out of ten. As a next-generation platform, it's trusted by those prioritizing security, requiring reliable internet, and some prefer on-premise deployment for privacy. Bugs are scarce, and stability is a strong point praised by many.
These insights are based on the in-depth reviews provided by peers to help you make a better buying decision.
Download our Picus Security Buyer's Guide for additional reliable information.

Top industries

By visitors reading reviews
Financial Services Firm
18%
Computer Software Company
10%
Manufacturing Company
8%
Retailer
6%
Government
6%
Energy/Utilities Company
6%
Hospitality Company
5%
Educational Organization
3%
Healthcare Company
3%
Insurance Company
3%
Media Company
3%
Real Estate/Law Firm
3%
Logistics Company
3%
Comms Service Provider
2%
Performing Arts
2%
Construction Company
2%
Transportation Company
2%
Outsourcing Company
2%
Wholesaler/Distributor
2%
Non Profit
2%
University
2%
Security Firm
1%
Recreational Facilities/Services Company
1%
Consumer Goods Company
1%
Legal Firm
1%
Pharma/Biotech Company
1%
Leisure / Travel Company
1%

Compare Picus Security with alternative products

Go!

Learn more about Picus Security

Picus Security customers

Akbank, Exclusive Networks, Garanti, ING Bank, QNB Finansbank, Turkcell, Vodafone, Yapı Kredi

Related questions

  • 15
When evaluating Breach and Attack Simulation (BAS), what aspect do you think is the most important to look for?
  • 170
What are the best practices to prevent a Brute Force attack via remote access?
  • 20
Twilio discloses a data breach. What could be done better to prevent it in the future?
  • 6
What are the best tools to simulate attacks?
  • 34
Which BAS tool is better and why: Cymulate vs SafeBreach?
  • 12
Why is Breach and Attack Simulation (BAS) important for companies?

Product Categories

Product Categories
Breach and Attack Simulation (BAS)

Popular Comparisons

Popular Comparisons
Pentera vs Picus Security Logo
Pentera vs Picus Security
Cymulate vs Picus Security Logo
Cymulate vs Picus Security
The NodeZero Platform vs Picus Security Logo
The NodeZero Platform vs Picus Security
SafeBreach vs Picus Security Logo
SafeBreach vs Picus Security
AttackIQ vs Picus Security Logo
AttackIQ vs Picus Security
Verodin vs Picus Security Logo
Verodin vs Picus Security
SCYTHE vs Picus Security Logo
SCYTHE vs Picus Security
See all alternatives
 
Picus Security Reviews Summary
Author infoRatingReview Summary
Information Security System Manager at CS-Consulting4.5I use Picus Security for continuous security validation and appreciate its integration capabilities with other security tools. However, I find the number of integrations it supports to be limited, which could benefit from improvement.
Cyber Security Consultant at GBS IT Services5.0I use Picus Security to simulate attacks in my live environment, validating my security controls and receiving valuable reports. While customer support response times need improvement, it shows a good ROI of 30-40%. Previously, I used Sophos.
Cybersecurity Operations Engineer at a tech services company with 201-500 employees4.5No summary available
Cybersecurity Customer Service Manager and Technical Account Manager at Cybersel4.0I use Picus Security to verify security controls, and I find its detection capabilities valuable, especially with SIEM alarms. However, improvements are needed in reporting, data analysis, attack path validation, scalability, and automation for enhanced functionality.
Solutions Architect Cybersecurity2.5No summary available
Security Engineer at a tech services company with 201-500 employees4.5I use Picus Security for BAS to simulate cloud-based network attacks and improve our security layers. The threat intelligence feature identifies and prevents vulnerabilities, while establishing a data center in India could boost trust and revenue.