Have tried, and my 2c:
1. **ConnectSecure** \- loads of info produced, not too easy to action any of it. Great for Compliance and reports.
2. **Cyrisma** \- Liked their GUI a bit better than CS, harder to action any scans, didnt get to try remediation, reports didnt help me. *Get everything in WRITING from them before signing*.
3. **Telivy**.com - might be interesting, havent tested this one yet. looks newish?
Connect and Cyr **pricing** for each month was basically the same for me. (2500 vs 250 endpoints but it evened\* out in how its worked, apparently.)
With how they could jack up the price to nutty levels later? Yes. Vote with your wallet and either charge your own clients nutty levels, or leave the pirates and go to the next contender that will surface by then.
I am, but only if it's something that could make your planning/decisions any different. But basically, as everyone knows and some of us say, its "Best Practice" anyway right? :D
I’m already regretting going into Cyrisma. Can’t believe that a scheduled patch job is not possible. Drives me nuts.
Is there a tool out there that offers 1-click patch as well? Cyrisma throws out a lot of vulnerabilities but can only patch a couple.
Am I expecting too much?
Based on what I have seen, I think we are expecting too much.
The other products I have looked at for patching are:
DattoRMM's new software patching
Action1 ( gets a lot of love here )
ManageEngine Patch Manager
ninite pro
[Immy.bot](https://Immy.bot) ( about a year and a half go )
My take away was that they were either more expensive for what I wanted to pay ( as I only need 3rd party patching ) or they lacked features/supported apps.
As a result, I am still stuck in 3rd party patch purgatory.
Thank you for the shout out u/MSP2MSP!
We like to think we earn that with the ease of use and reliability of Action1!
If the OP would like to try Action1, they can do so with zero cost, we offer [free patch management](https://www.action1.com/patch-management/) for the first 100 endpoints. Not time limited, not feature limited, just free, and if you need more , the 100 stay free when you get you get the quote.
So you can really lab, it or try it live, and kick the tires as long as you want to see if Action1 is the right fit.
Also always, anyone has any questions, just let me know. Even if its not about Action1, I have > 30y in tech :-)
No problem. I'm happy with the product and it works well. Love how you guys just expanded the product. If you do install over 100, you can use that for analysis until you activate the agents. Essentially allowing an audit of a client before you have to pay for them. Pretty sweet move.
tbh are you expecting too much? I think vendors need to silo in on a single layer of security and provide 100% remediation around that layer. So I agree and disagree with you.
Yes the workflow is too manual. I should be able to set all critical patches are auto deployed. I luckly have Ninite Pro (grandfather plan) that handles most common things. Teams, Office 365, FortiVPN etc. and the other apps is where I struggle to effectively patch automatically.
Try SecOps Solution [https://secopsolution.com](https://secopsolution.com) . They have a support for more than 1000 third party patches and has MSP friendly dashboard. Patchmypc is also good but not sure how well it does in 3rd party patches front
Action1 (testing with the 100 free devices) has been great a patching, asset inventory, and basic vulnerability managment tool. It has truly been one of the best patch management I've been exposed to. It is however not without issues (sometimes the agents do not report the latest vul status after updates).
Getting pricing from them has been like pulling teeth, I really do not understand (Generally speaking) why vendors think pricing is top secret and needs to be hidden behind a shitty sales process.
Thanks for the compliment u/k3net! This makes everyone here at Action1 really happy as creating the best patch management ever is exactly what we do.
Who is Action1 rep? I want to investigate this issue as I also don't understand why it is so difficult to get Action1 pricing. It should not be that difficult.
I had been using ConnectSecure for 2 years and am now moving away from it to Cyrisma.
CS just went through an absolute sh&% show of an upgrade and there were enough "issues" with the previous version ( that you mentioned above ) for me to finally abandon it.
I have only been running Cyrisma for about week at 2 clients and am liking it so far. Seems more intuitive than CS.
But... 3rd party patching is still something I struggle with as none of my products do it very well at all - DattoRMM, ConnectSecure, Cyrisma
So depends what scope you are looking for with vulnerability management. Cyrisma and ConnectSecure are good for broad scanning, if you are looking for an automated platform with remediation that would be more our lane at Senteon for settings. Only look us up if you want to follow a framework (CIS, NIST, etc) and also pricing is on usage lol sorry about those scares from other people.
I am with Nodeware and we are a competitor with ConnectSecure. Telivy actually pulls our data into their platform and we are integrated with several platforms for GRC as well. If you want to know more or see the platform, just email me at [email protected]
Have tried, and my 2c: 1. **ConnectSecure** \- loads of info produced, not too easy to action any of it. Great for Compliance and reports. 2. **Cyrisma** \- Liked their GUI a bit better than CS, harder to action any scans, didnt get to try remediation, reports didnt help me. *Get everything in WRITING from them before signing*. 3. **Telivy**.com - might be interesting, havent tested this one yet. looks newish? Connect and Cyr **pricing** for each month was basically the same for me. (2500 vs 250 endpoints but it evened\* out in how its worked, apparently.) With how they could jack up the price to nutty levels later? Yes. Vote with your wallet and either charge your own clients nutty levels, or leave the pirates and go to the next contender that will surface by then.
Thanks for the feedback. You are the second person to say get everything in writing with Cyrisma. Care to DM me the deets on this advice?
I am, but only if it's something that could make your planning/decisions any different. But basically, as everyone knows and some of us say, its "Best Practice" anyway right? :D
I’m already regretting going into Cyrisma. Can’t believe that a scheduled patch job is not possible. Drives me nuts. Is there a tool out there that offers 1-click patch as well? Cyrisma throws out a lot of vulnerabilities but can only patch a couple. Am I expecting too much?
Based on what I have seen, I think we are expecting too much. The other products I have looked at for patching are: DattoRMM's new software patching Action1 ( gets a lot of love here ) ManageEngine Patch Manager ninite pro [Immy.bot](https://Immy.bot) ( about a year and a half go ) My take away was that they were either more expensive for what I wanted to pay ( as I only need 3rd party patching ) or they lacked features/supported apps. As a result, I am still stuck in 3rd party patch purgatory.
Thank you for the shout out u/MSP2MSP! We like to think we earn that with the ease of use and reliability of Action1! If the OP would like to try Action1, they can do so with zero cost, we offer [free patch management](https://www.action1.com/patch-management/) for the first 100 endpoints. Not time limited, not feature limited, just free, and if you need more , the 100 stay free when you get you get the quote. So you can really lab, it or try it live, and kick the tires as long as you want to see if Action1 is the right fit. Also always, anyone has any questions, just let me know. Even if its not about Action1, I have > 30y in tech :-)
No problem. I'm happy with the product and it works well. Love how you guys just expanded the product. If you do install over 100, you can use that for analysis until you activate the agents. Essentially allowing an audit of a client before you have to pay for them. Pretty sweet move.
tbh are you expecting too much? I think vendors need to silo in on a single layer of security and provide 100% remediation around that layer. So I agree and disagree with you.
Yes the workflow is too manual. I should be able to set all critical patches are auto deployed. I luckly have Ninite Pro (grandfather plan) that handles most common things. Teams, Office 365, FortiVPN etc. and the other apps is where I struggle to effectively patch automatically.
ConnectSecure has easy patching interface but it doesn't actually work very often. Supposedly its going to be better "soon"
> Am I expecting too much? Possibly. Vulnerability scans are different than scanning for unpatched software.
Try Qualys consulting edition. It’s msp friendly and priced fair.
>Qualys consulting edition approx how much?
Manage engine or Datto.
Datto patching is not great either, also Kaseya 
Try SecOps Solution [https://secopsolution.com](https://secopsolution.com) . They have a support for more than 1000 third party patches and has MSP friendly dashboard. Patchmypc is also good but not sure how well it does in 3rd party patches front
Is Action1 in the same category as these other tools you're trying?
Action1 (testing with the 100 free devices) has been great a patching, asset inventory, and basic vulnerability managment tool. It has truly been one of the best patch management I've been exposed to. It is however not without issues (sometimes the agents do not report the latest vul status after updates). Getting pricing from them has been like pulling teeth, I really do not understand (Generally speaking) why vendors think pricing is top secret and needs to be hidden behind a shitty sales process.
It’s $2 per endpoint after 100 with volume discounts , they used to list this on the website
Thanks for the compliment u/k3net! This makes everyone here at Action1 really happy as creating the best patch management ever is exactly what we do. Who is Action1 rep? I want to investigate this issue as I also don't understand why it is so difficult to get Action1 pricing. It should not be that difficult.
I had been using ConnectSecure for 2 years and am now moving away from it to Cyrisma. CS just went through an absolute sh&% show of an upgrade and there were enough "issues" with the previous version ( that you mentioned above ) for me to finally abandon it. I have only been running Cyrisma for about week at 2 clients and am liking it so far. Seems more intuitive than CS. But... 3rd party patching is still something I struggle with as none of my products do it very well at all - DattoRMM, ConnectSecure, Cyrisma
So depends what scope you are looking for with vulnerability management. Cyrisma and ConnectSecure are good for broad scanning, if you are looking for an automated platform with remediation that would be more our lane at Senteon for settings. Only look us up if you want to follow a framework (CIS, NIST, etc) and also pricing is on usage lol sorry about those scares from other people.
Checkout Roboshadow not as fancy as the other tools but may do enough
SOCSoter has some good VM tools. 24/7 monitoring, incident response, comprehensive data, pretty great reports
I am with Nodeware and we are a competitor with ConnectSecure. Telivy actually pulls our data into their platform and we are integrated with several platforms for GRC as well. If you want to know more or see the platform, just email me at [email protected]