Bleach Cyber reviews

You know how some things in your stack need a post grad doctorate in engineering to sign in and set up. And by the time you're finished, you forgot why you bought it and it lost the value add?

That's not this. I am the worst for putting off difficult, annoying or cumbersome tasks. I regret putting this off for so long. It's so user friendly and really intuitive. I know it's sold out now, but honestly it's worth the subscription amount - it really is. A lot of effort has gone into this, and a lot of effort has been put into lowering the barrier to entry (for non techy people).

I am really stoked with it.

I did not expect to see what I saw when I logged in.
I thought maybe they would give us a collection of nmap and nessus-like reporting of external assets.
Nope, the approach here is to get the business properly certified by following best practices of cloud infrastructure. That impressed me because this is pretty hard to do unless you really know your stuff.

I have no doubt they will get the sweeper modules' scanning and vulnerability assessment to a competitive level soon. I see they have agents on the roadmap too!

Overall, I am impressed with what I see so far. There are a few basic things that I want to see improved, but my gut says this is a good company that has a good chance to become a name in the cybersecurity sector.

Easy to onboard, so happy to see a solution like this for non-enterprise companies. Automated reports are really nice.

Execution of the UI was very thoughtful, and it's so appreciated! Founder has been responsive to user feedback (overall, not from me), and provided updates and improvements where we need it the most.

Lost more I could say, but I'll sum it up with: I'd buy higher than Tier 3, if I could.

I deploy my apps and webs in AWS in multiple ways. Now I start the certification with Azure. Bleach teach and help me to secure my infraestructure. And the support with Steve is amazing.
They are super fast at replying and always willing to help.

Omg, what a difficult birth I had with Bleach.

To clarify, here's the initial situation:

I use an ancient Microsoft account that has been through Microsoft's account migrations several times to manage my Azure services.

My purpose of Azure is to host Static Web Apps and related Azure Functions. I wanted to use Bleach to achieve an increase in general security here.

I had actually already summarised my experiences with Bleach in a previous review and only gave a single taco. Here is the original review:

-----------------------------------------------------------------------------------------------------------------------------------------------------------

I had problems registering straight away. My email address was not accepted and the registration process on the AppSumo site was completed. Steave Daniels wanted to take care of the problem. So far so good, unfortunately he never told me that the problem was solved or how I should proceed. So I just tried to register again with my e-mail. Lo and behold, it worked. Unfortunately, without an AppSumo licence. Another attempt to contact support resulted in Steve linking the account to the licence, unfortunately again without informing me.

Now everything should actually be done and working. Wrong thought, again connection problems. In fact, I have not been able to connect to Azure to this day. Contacting the support team has not helped either and, as usual, communication is virtually non-existent. I was initially asked about the error message, which I provided and have heard nothing more since then. This was on 15.04.2024

Now due to my bad experience with my last purchase I have no more patience and write the review directly. Not like this, if the whole thing doesn't improve, this will be a refund.

-----------------------------------------------------------------------------------------------------------------------------------------------------------

So, what has changed since then that I feel compelled to delete my old review and write a new one?

The Support has improved significantly! Unfortunately, still not with a standardised process via a ticket system. (I know they have one, but communication was exclusively via email or video calls)

I had direct contact with Steave for several days, who really made an effort to get Bleach up and running for me. In fact, the problem was not with Bleach but, once again, with Microsoft's terrible and half-hearted account migrations. Without these video calls, it would probably not have been possible to set up the whole thing.

Now that everything is working, I can see the point behind the software and also see a benefit for me, even if only a small one. All in all, I'm grateful for the tips and tricks I've been given to make my services more secure.

Yes, the Bleach user interface definitely needs more work. In my opinion, the "Virtual Tour Guide" should be completely removed or at least a purely text-based alternative should be provided. If they put a little more work into user-friendliness, standardise their support more and make it more historically comprehensible, then this software will definitely have a great future.

I would therefore give it 4.5 out of 5 tacos. The last 0.5 are the extra bonus, i.e. user-friendliness.

Hello Craig, I met with Steve today. Thanks for taking the time to meet with me to address my questions and concerns. I look forward to continuing our conversation throughout this journey.

Rufus

As an MSSP, we often look for technology solutions which makes it easier to assess the security posture of our customers. There's many ways to do so, including using vendor specific tools, scripts and APIs to collect the information. Bleach Cyber makes it easy to get a single view into what issues exists on a customer's environment, and provides helpful steps to resolve. Especially for SMB customers, who always struggle with cybersecurity and associated budgets, this is a complete no-brainer.

Keep up the great work, Craig & Steve, looking forward to the new features in the coming months!

I was sceptical at first but after a one on one with the founders I can say three things:

1. massive skill and trust levels with this company. They worked for huge enterprises on a serious level!
2. I was surprised to see my own stack was not compliant!!! Jikes! Super glad I found this tool!
3. I now learned that I know “nothing” about proper security and that this tool finds “gaps” and trains me in understanding extremely important things!

In short, everyone should buy this! I know, it’s all vague if you don’t know anything about security, but this is one of those gems you must have. Tier 3 it is!!

As someone who previously held a CISO position I evaluate such tools by two main factors:
1. Simplicity
2. Value for money

I think that Bleach is a wonderful tool and ranks high in both. It is relatively easy to add assets, the insights are useful and easy to understand.

Why only 4 stars then?
1. I couldn’t add my Azure subscription. Kept getting invalid id
2. I got a few alerts that aren’t valid for the asset type (in other words, they only apply to users, not shared mailboxes, but they were still listed as a major issue on all shared mailboxes).
3. Most issues didn’t include a link or a reference to the solution, sending me to Google “how to fix”. I’m not expecting automatic fix for everything, but at least a link to the relevant article.
4. Unfortunately, I couldn’t get any “asset” scanning to work.

Having said that, this deal value-for-money is insane. For example if you are to fix just one issue in about 20 minutes from signing up. That alone is enough to justify the price.

Great job by Bleach team and I hope to see many improvements in the near future.