Logo of Cobalt

Cobalt

Website LinkedIn Twitter

Last updated on

Company health

Employee growth
7% increase in the last year
Web traffic
17% increase in the last quarter
Financing
May 2020 - $37M

Ratings

G2
4.7/5
(79)
Glassdoor
3.1/5
(109)

Cobalt description

Cobalt offers Pentest as a Service (PtaaS), providing on-demand security testing for applications, networks, cloud systems, and devices. It combines a SaaS platform with a community of security experts to help you find and fix vulnerabilities. Cobalt helps organizations of all sizes implement continuous security testing, manage security throughout their software development lifecycle, and improve their overall security posture.

Who is Cobalt best for

Cobalt is a penetration testing platform ideal for small to mid-sized businesses seeking to enhance their security posture. It combines a SaaS platform with expert pentesters to identify and fix vulnerabilities. Users praise Cobalt's easy scheduling, fast turnaround times, and detailed reports. However, some users have noted inconsistent findings and a complex pricing model.

  • Best for small to mid-sized businesses.

  • Suitable for various industries seeking enhanced security.

Cobalt features

Type in the name of the feature or in your own words tell us what you need
Supported

Cobalt offers cross-site scripting (XSS) testing as part of penetration testing services.
Supported

Cobalt supports API scanning for vulnerabilities.
Supported

Cobalt offers tools and methodologies to assess authentication bypass vulnerabilities.
Supported

Cobalt supports testing applications behind firewalls.
Supported

Cobalt supports manual exploit testing with tools like Burp Suite and OWASP ZAP.
Supported

Cobalt offers SQL injection testing as part of its penetration testing services.

Cobalt reviews

We've summarised 74 Cobalt reviews (Cobalt G2 reviews) and summarised the main points below.

Pros of Cobalt
  • Easy to schedule and manage penetration tests.
  • Fast turnaround times for tests and retests.
  • Platform facilitates easy communication with pentesters.
  • Detailed reports with actionable remediation advice.
  • Flexible testing options, including agile and full penetration tests.
Cons of Cobalt
  • Inconsistent quality of findings and coverage.
  • Penetration testers sometimes lack deep expertise.
  • Pricing model can be confusing, especially the credit system.
  • Limited integrations with project management tools beyond Jira.
  • Post-test support can be unresponsive.

Cobalt pricing

The commentary is based on 6 reviews from Cobalt G2 reviews.

Cobalt's pricing model offers flexible pentesting options at a reasonable cost. However, some reviewers found the credit system confusing and the pricing scheme unsuitable for scaling businesses. Others wished for unlimited DAST scans with their subscriptions.

See the Cobalt pricing page.

Standard

Custom

For teams in need of a speedy, annual pentest to meet a compliance need or client request.

Premium

Custom

For teams looking to build a structured pentest program to meet compliance needs and improve overall security.

Enterprise

Custom

For teams looking to scale their pentest programs to meet compliance needs, increase testing frequency, and improve overall security.

Cobalt alternatives

  • Logo of Synack
    Synack
    Better for enterprise companies. Has slower momentum.
    Read more
  • Logo of Astra Pentest
    Astra Pentest
    Better fit for medium and large businesses, especially in software and SaaS. Provides compliance reporting for standards like ISO 27001, SOC2, and HIPAA. Offers web, iOS, and Android security testing. Astra Pentest has significantly more momentum than Cobalt. A Cobalt alternative and competitor.
    Read more
  • Logo of Breachlock
    Breachlock
    Better ratings and growing faster. A strong Cobalt competitor for mid-sized companies.
    Read more
  • Logo of Securily Pentest
    Securily Pentest
    Better fit for small businesses. Has significantly more momentum based on LinkedIn employee growth. More affordable pricing plans available. A Securily Pentest alternative and competitor.
    Read more
  • Logo of Bright Security
    Bright Security
    Better fit for enterprise companies and developer-centric security. Focuses on web and API security with seamless DevOps integrations. Provides accurate results with few false positives, improving developer efficiency. A Cobalt alternative and competitor.
    Read more
  • Logo of SOOS
    SOOS
    Better fit for mid-sized companies. Focuses on open-source software vulnerability detection, license tracking, and SBOM generation. Offers a free plan and affordable pricing. Easy setup and integration with various platforms. A good Cobalt competitor for those prioritizing open-source security and compliance.
    Read more

Cobalt FAQ

  • What is Cobalt and what does Cobalt do?

    Cobalt is a Pentest as a Service (PtaaS) platform providing on-demand security testing. It combines a SaaS platform with a community of expert pentesters to identify and remediate vulnerabilities in applications, networks, cloud systems, and devices, enabling continuous security testing and improved security posture.

  • How does Cobalt integrate with other tools?

    Cobalt integrates with Jira for project management, enabling streamlined vulnerability tracking and remediation within development workflows. However, users note limited integrations with other project management tools, which may pose a challenge for some teams.

  • What the main competitors of Cobalt?

    Top alternatives to Cobalt include Synack, Astra Pentest, Breachlock, and Bright Security. These platforms offer similar penetration testing services, often combining automated scanning with expert manual testing to identify and help remediate security vulnerabilities.

  • Is Cobalt legit?

    Cobalt is a legitimate Pentest as a Service (PtaaS) provider. User reviews praise Cobalt's efficient platform, fast turnaround times, and detailed reports. However, some users note inconsistencies in expertise and pricing complexities. If considering Cobalt, explore alternatives like Synack or Astra Pentest.

  • How much does Cobalt cost?

    Cobalt's pricing is custom for all its plans (Standard, Premium, and Enterprise) and is based on credits purchased annually. Each credit covers 8 hours of penetration testing. Contact Cobalt for specific pricing to determine if the product is worth it for your needs.

  • Is Cobalt customer service good?

    Cobalt's customer service receives positive feedback overall. Users praise the helpful and responsive customer service team, especially during onboarding and setup. While some users mention occasional delays in post-test support, the overall sentiment towards Cobalt's customer service is favorable.

Reviewed by

MK
Michal Kaczor
CEO at Gralio

Michal has worked at startups for many years and writes about topics relating to software selection and IT management. As a former consultant for Bain, a business advisory company, he also knows how to understand needs of any business and find solutions to its problems.

TT
Tymon Terlikiewicz
CTO at Gralio

Tymon is a seasoned CTO who loves finding the perfect tools for any task. He recently headed up the tech department at Batmaid, a well-known Swiss company, where he managed about 60 software purchases, including CX, HR, Payroll, Marketing automation and various developer tools.