External reviews
228 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Powerful security insights in your cloud environment
What do you like best about the product?
Side scanning our live images is really the bread and butter, and best feature of the product
What do you dislike about the product?
The only real complaint is occasional website glitches, usually solved simply by refreshing
What problems is the product solving and how is that benefiting you?
It keeps us updated on missing patches, which machines are vulnerable, and has insights on how to fix them
Recommendations to others considering the product:
An excellent tool for analyzing your infrastructure.
Terrific Product
What do you like best about the product?
As a GRC analyst, I love how easy it is to generate detailed vulnerability/alert reports and the other compliance features that come with the tool.
What do you dislike about the product?
Nothing that I have found yet, it's a great product
What problems is the product solving and how is that benefiting you?
Maintaining PCI DSS internal vulnerability scanning requirements, makes it very easy to monitor compliance
Recommendations to others considering the product:
It's the most advanced vulnerability scanner I've used in my career. Cutting-edge technology combined with terrific support.
Customer
What do you like best about the product?
Great tool, really helpful. Got a lot of different use-cases. It feels like several tools combined in one, with really great inventory management and searches system.
What do you dislike about the product?
As this is startup documentation can be a little behind the new futures but their support/ customer sucess team is helpful in those cases.
What problems is the product solving and how is that benefiting you?
Inventory management, patch management, threat landscape. Give us full visibility on new threats and ways to understand and work on minimizing attack surface and improving security posture.
Recommendations to others considering the product:
Best cloud security tool I have ever used.
Effective Risk Based Vulnerability Management
What do you like best about the product?
Ease of use and support we receive. The ability to quickly identify vulnerabilities and provide actionable information to our engineering teams is critical to our success.
What do you dislike about the product?
At the moment nothing. I would like to see more historical data past 12 weeks. In addition, I'd like to see a more intuitive way to interact with all the data (although this could be a user problem, not a tool problem).
What problems is the product solving and how is that benefiting you?
We are quickly able to identify vulnerabilities that have a real impact on the business and get them to engineering for quick remediation. We've seen our engineering teams be more willing to remediate based on this actionable information.
Recommendations to others considering the product:
Great product!
Just what I needed!
What do you like best about the product?
Ease of setup and a nice overview of all accounts
What do you dislike about the product?
UI had some unusual workflows initially but those have since been resolved
What problems is the product solving and how is that benefiting you?
Security and risk assessment of cloud infrasrtucture
Recommendations to others considering the product:
great tool that is easy to set up and brings great visibility to cloud environment
Frictionless actionable insights within a day. Fantastic for M&A due diligence
What do you like best about the product?
Orca is an agentless deployment that allows you to gain insights into your cloud environments within an incredibly short time frame. It also helps prioritize its findings for maximum security value.
What do you dislike about the product?
Because it's an agentless deployment, it does not compete with traditional enterprise-grade security tooling. Instead, it delivers 80% of that value with only 20% (if even that) of the effort.
What problems is the product solving and how is that benefiting you?
We solve the problem of immediate insights into potential and recent acquisitions. This allows us to scope the level of effort required to bring acquisition security postures up to our standards.
Inexpensive yet critical and mandatory part of my cyber security strategy roadmap
What do you like best about the product?
Inexpensive, up-to-date in terms of vulnerability assessments, ease of use.
What do you dislike about the product?
Nothing at this point. If I had to nitpick, no dark mode.
What problems is the product solving and how is that benefiting you?
With Orca Security, I am able to have real-time vulnerability assessment into my containers and instances on AWS.
Great product, easy to use and set up
What do you like best about the product?
Orca is extremely easy to set up and we got our 27 AWS accounts onboarded within minutes. The findings from Orca are very relevant and pertinent recommendations were provided for remediation, including links to external documentation when relevant.
Orca is also great at providing peace of mind when it comes to staying on top of new threats and vulnerabilities as it automatically scans our assets when new vulnerabilities are published. Automated scanning for the log4j vulnerabilities were available within a couple of days of disclosure.
Orca is also great at providing peace of mind when it comes to staying on top of new threats and vulnerabilities as it automatically scans our assets when new vulnerabilities are published. Automated scanning for the log4j vulnerabilities were available within a couple of days of disclosure.
What do you dislike about the product?
A few bugs in the UI, which are being addressed quickly.
The UI is also still evolving at a rapid pace, which can make it hard from time to time to find what you are looking for.
The UI is also still evolving at a rapid pace, which can make it hard from time to time to find what you are looking for.
What problems is the product solving and how is that benefiting you?
Cloud Security Posture Management.
Misconfigurations, vulnerability scanning, permission issues, etc...
Misconfigurations, vulnerability scanning, permission issues, etc...
Recommendations to others considering the product:
Overall our experience with Orca has been great and their support team is really on top of their game. So far Orca is ticking all the boxes for us and has quickly become a trusted tool in our security arsenal.
MR Orca's Review
What do you like best about the product?
The Portal is magnificent, ease-of-use, the and from news where it pint points the vulnerabilities and assets impacted by it, and the ability to auto remediate any issue
What do you dislike about the product?
sometimes findings are listed in multiple categories since each category has its own unique orca id, it is frustrating that I have to go to multiple categories to manually resolve the issue
What problems is the product solving and how is that benefiting you?
having a single point of view of all my risks, being able to be a platform-centric rather than tools centric, simplifies compliance and risk mitigation from a security prospective
Recommendations to others considering the product:
I strongly recommend it for any company that is looking for a security and compliance platform.
Very quick implementation and drastically reduced false positives over former DAST tool.
What do you like best about the product?
Ease of of implementation, extended visibility, speed to add celebrity vulnerabilities, ability to affect UI changes. Orca was pretty ground breaking to us over previous tools. But by far the biggest benefit is previously we had to know about something through discovery scans or inventory to evaluate. Orca knows about anything that is created and has already evaluated it before we even come in for the day. No more shadow IT.
What do you dislike about the product?
Not much compared to former tools we have used. It still creates the occasional false positive but sure no tool will be without since there is always some aspect that the tool can't see, like firewall restricting to VPN access.
What problems is the product solving and how is that benefiting you?
Configuration vulnerabilities is a primary business use. On three occasions, Orca identified malware that landed on a server. One occasion it was a completely exposed server that was spun up for weekend testing.
showing 81 - 90