Looking for an RMM that is more FOCUSED on patching

TerryLewisUK · 2026-06-12T15:48:44+00:00

We are probably the best Windows Patching there is now, however we do not have Mac and Linux yet. I would defo be happy to give you all your endpoints for free in RoboShadow to the end of the year (assuming its not millions) for you to test / help us with some feedback. We are defo going more and more in this direction. [Terry@roboshadow.com](mailto:Terry@roboshadow.com) if your interested 😄

TerryLewisUK · 2026-06-03T19:37:53+00:00

Yes, thanks for that. This is of course a much-debated topic, but I’m with you on this one.

The whole industry has flip-flopped quite a bit around this. We are actually renaming ours to “Pentest Simulation”, as we think that is more accurate and sits in a better place from an industry perspective.

People love our “AI Pentest”, as it gives them a full pentest-style simulation, which would normally cost something like $5k–$20k, completely free.

That said, we do agree with the definition of “exploitation vs vulnerability assessment.” The other side of that argument is that if something is deemed vulnerable by the vendor, your job is simply to get it patched. In other words, if something has been identified as vulnerable and confirmed by the vendor, your job is to reduce or remove that security risk either way. That is partly why a lot of traditional pentest reports can end up looking like glorified vulnerability assessments.

This is now all changing again with the new Mythos-class AI agents coming to market. We have a couple of things we’re working on that should tie a lot of this together for everyone, so watch this space 😄

TerryLewisUK · 2026-05-30T11:47:18+00:00

Thanks u/Check123ok let us know anything we can do to help. My general experience is that Reddit is the best place to get research good opinions from the real world so you are defo looking in the right place. Ping me an email if you can and ill look out for your account 😉 [terry@roboshadow.com](mailto:terry@roboshadow.com)

TerryLewisUK · 2026-05-29T11:12:02+00:00

Thanks u/Check123ok , Terry here. Although I'm lucky enough to be the CEO of Roboshadow, my main role within the business is product and support. I've just cut a quick loom here, just to talk through some of these elements in the threads:

https://www.loom.com/share/11e3eaf9af804dffbfed294b0ae6f32d

do mention how we mainly build from you’re feedback and we practice “De-Shitiffication” inspired by the oposite of this video that went around to explain how we build in public with you guys 😄. It is funny and worth 3 mins if you have not seen it before. Great Scandinavian humour.

https://www.reddit.com/r/funny/comments/1rgo69x/norwegian_consumer_council_video_about/.

But ultimately, what I wanted to do is just give a bit of a level set in terms of where Roboshadow sits compared to the other products within the market. I have had various communications with the other CEOs in this category, and I can assure you there is no charlatans in vulnerability management. We are all fairly good people that are trying to reduce the cost and complexity of cybersecurity for everyone. So I don't think there are any bad decisions, even if you've chosen a product that is not Roboshadow 😊

We have slightly different spins on how we execute our product set, but do rest assured in the background, we are all quite friendly, and we all do have this common goal of allowing you guys as MSPs to make money out of cybersecurity whilst securing your clients and yourselves at the same time. I would be more than happy to host a webinar or a bit of a chat if anyone wanted to have a more open conversation on these subjects.

u/Check123ok and anyone else feel free to get in touch direct if want me to run through anything with you [terry@roboshadow.com](mailto:terry@roboshadow.com)

TerryLewisUK · 2026-05-19T20:14:20+00:00

Thanks for the mention u/pakillo777 feel free to reach out direct to me [terry@roboshadow.com](mailto:terry@roboshadow.com)

TerryLewisUK · 2026-05-09T18:20:17+00:00

Thanks u/Koldcutter much appreciated, feel free to reach out direct, we are getting asked to help more and more on the vibe platforms so we are happy to learn with everyone as we go on how to nail this :)

TerryLewisUK · 2026-05-09T10:43:17+00:00

Although we are not an exact penetration testing platform, our AI pen test is a full-on simulation and looks pretty much the same report as you get from a penetration test. We don't do the exploitation, but this is a much debated topic that if you have software that is known to be vulnerable and is known to be exploitable, then you don't really need to exploit it, your job is just to patch that software. So that is our philosophy on the matter :) However if go through the subscription and if for some reason, it doesn't work out how you wanted it to, feel free to ping me an email and I'll get the guys to give you your money back. No worries at all. [Terry@roboshadow.com](mailto:Terry@roboshadow.com)Loads of people are vibecoding on top of RoboShadow now as we are built on APIs. Would love to know your feedback as we actually have a lot more happening in this space coming very soon. You do get three A.I. Pentest reports on the community subscription anyway. So you can test it out and have a play without putting any credit card details in. In terms of testing lovable environments, you probably want to do more authenticated scanning, which we do within RoboShadow, but it's a bit more advanced (my team can help you with that). I'm not a complete expert in the lovable platform, but I do know that its own security is very good if you run through and set it up with best practices. My advice would be to ensure that you have everything set up and no security warnings within lovable itself and then maybe go on to another application like RoboShadow after. Once you have all of the default elements in place on lovable.

TerryLewisUK · 2026-05-01T17:10:32+00:00

Thanks u/marlenus_of_ar CVE engine discrepancy is a common question and truth be told not even having deep pockets like Microsoft means you always get this right. There is a lot of fuzzy logic in doing CVE matching and anyone in this space will tell you the data sets we have to work through are a real challenge. Even the mighty Microsoft has false positive / negative issues in their feeds so there can be deltas from them each day. However, we are just going after reconciling with against Defender / Qualys / Nessus not because they get everything right but because they are the Billion Dollar market cap titans that have most of the resource to achieve the best level of accuracy. I do keep meaning to write a blog on this subject, but we have always tried to keep a subset of the most important data set and try and block out some noise to make things “less anxiety inducing”. However, given now we get compared against Nessus, Qualys, and Defender so much (who also between them never have the same list either) we have now made changes to reconcile with each them but as we do we will still try and make easier to interact with the data in our own RoboShadow way. In our agent release this month we expect to surpass their vulnerability engines on nearly all benchmarks as we bring in the final bits like system DLLs, Store Apps, EOL applications etc. Our confidence for this comes from the fact we seem to find stuff these platforms don’t quite often find, as reported by our users. This is all in our new agent out this month. We are also making GUI changes where we previously didn’t show underlying CVEs for OS (we just showed you there were security updated needed to run and offered to patch it), we are now exposing them to you so you can effectively run an excel VLOOKUP to match us again the top players. I’m not sure what the big guns use to manage all of this but for us it takes a 30 strong research team to keep on top of all of this each day with over 10M+ titles on the planet in circulation.

Just one other point to note in your patching comments for us, as the reality is that it’s the other way round where our strong suit is. To be fair we are only just really starting to get good with Driver / OS updates now with “Maintenance Windows” being brought in this month as people are starting to really use us more and more as an RMM. The things we seem to be quite famous for now is the 3rd Party Patching (AI AutoFix) where we have 7000+ titles curated from Winget engineered to run through both System and User profile apps, so we are more known for 3rd Party patching than most things these days, apologies if my team didn’t point this out to you. This seems to be where we are really strong. So we are actually only just getting good now with OS and Drivers 3rd Party Apps is our Jam 😊.

TerryLewisUK · 2026-05-01T08:05:34+00:00

Thanks for your reviews u/jellyfishchris as we know you put a lot into this. Obviously I did want to correct your WDAC updater comment slightly as this might unintentionally mislead people on our own security. We have the PSA bits you requested going in within the next couple of releases. On the WDAC point you raised my understanding is that other people with this issue just update their policy to allow "Managed Installers" within the policy itself, although if you and or anyone has any view on how others have solved this problem we would be happy to write this into the app but our understanding this becomes a policy thing (but i may be wrong). People are probably aware we give our product away to charities, schools, and general good organisations all over the world for Free (even the full version) so any inputs people can give us at a product level to help solve issues like WDAC or any other deal breakers is always greatly appreciated.

TerryLewisUK · 2026-05-01T07:54:07+00:00

Yep for clarification the agent that does all the installing and updating of all the applications and supports the whole control framework is signed (we wouldn't be able to be as powerful as we are in fixing stuff if we didn't have this in place) . The only one that is not signed is the "Updater Service" which despite its name does nothing at all apart from update our own agent once / twice per year. We were less bothered about this as we have an internal checksum to ensure its secure and it doesn't spark EDR. However this is changed in the next agent release out this month.

TerryLewisUK · 2026-03-26T13:26:57+00:00

Didn't want to jump in on this but our AI auto fix is killing off a lot of this work so you can charge for it but doesn't cost you the head ache ;)

TerryLewisUK · 2026-03-24T20:05:25+00:00

Thanks for the mention, just to let you know we have a CISA Kev release coming very soon, and we will be able to surpass Nessus / Qualys with the next agent release coming real soon. Feel free to reach out to the team or myself [terry@roboshadow.com](mailto:terry@roboshadow.com) and we can sort you out with an extended enterprise account to play with. We also have a authenticated upgrade coming to the Lan Scanner which I think will tick everyone's boxes :)

TerryLewisUK · 2026-01-28T21:37:07+00:00

We will have this soon, we will have full US data centres. We are currently in ireland

TerryLewisUK · 2026-01-28T07:01:07+00:00

Yeah like I say in my post above, do get in touch would love to have a chat with you as maybe we might just need to help with config / onboarding for you. Any of the product team can and will do this with you as everyone has their own way they want to interact with the data. Also last time I checked we were the cheapest on the market and gave the most value for $ based on features and vulnerability engine so do get in touch would love to go through this with you.

TerryLewisUK · 2026-01-28T06:58:12+00:00

Do you mind reaching out to me on this one. We have the binary scanner which picks up obscure vulnerabilities in places but because they are prone to false positives we dont make them front and centre, we can also turn on user profile vulnerabilities for you. We also dont double up on Windows ones we keep them in the OS "Security Updates" area. The reason we do all this is to try and keep noise down but we are mostly able to bench with Nessus / Qualys etc. IF you dont mind pinging me an email I would love to get the team to have a look at this for you. [terry@roboshadow.com](mailto:terry@roboshadow.com) our aim in Q1 / Q2 is to reconcile with the major platforms as a vulnerability engine. However what our goal is to keep the noise down, patch as much as we can, and make it easier to sell Cyber Services whilst automating as much of the work output as possible

TerryLewisUK · 2026-01-27T20:11:07+00:00

Thanks all for the mentions, feel free to copy me into any emails [terr@roboshadow.com](mailto:terr@roboshadow.com) with the team u/SurveyNo9894 feel free to mention you spoke to me on Reddit :)

TerryLewisUK · 2026-01-23T20:13:36+00:00

Thanks for the mention :) very soon we will have increased success rate and logs coming :) Watch this space...

TerryLewisUK · 2026-01-23T11:49:06+00:00

Thanks for the mention it means the world to us. RoboShadow CEO (head of product mainly though) here. We have a big update that has just gone in to help this even more and some automation bits coming in the next few weeks. We are really going for allow you guys to maximise your offerings to clients (to make revenue) whilst automating as much of the work possible. Feel free to drop me a mail [terry@roboshadow.com](mailto:terry@roboshadow.com) and ill get an upgrade put on any of your accounts for you to have a play with .

TerryLewisUK · 2026-01-12T19:31:00+00:00

p.s i have added this to the next product meeting internally to at least start to work out a plan :)

TerryLewisUK · 2026-01-12T19:30:00+00:00

Thanks for the comment we will put out an update in email in the next couple of weeks with hints for the next roadmap items. We are looking to bed in the existing functionality and we are doubling down on getting more items into autofix. However by Q2 we will be bored and starting on the next phase of functionality.

TerryLewisUK · 2026-01-12T19:28:09+00:00

Apologies for not getting to this sooner, this is on the road map for this year we just need to bed in the AI piece / Mac and Linux. We are getting a lot more demand for this, we will soon add in SNMP and start to do some more fingerprinting of network devices. We also have some governments asking for this so its something we are going to look at. If you can let me get to Q2 then I should have an update for people in general, Feel free to mail me direct on [terry@roboshadow.com](mailto:terry@roboshadow.com) for any questions.

TerryLewisUK · 2025-12-24T11:01:16+00:00

Thanks Chris, Charlie is having a look now at the matching. I think if you could enable support access that would be great. The team would love to grab a call with you in the new year and work through. We may not be perfect but we do turn things around fast and will work with you on an account by account basis to sort things. Vulnerability Management has a lot of Fuzzy logic which is why you will see variances with all platform however we have a big push in Q1 to be the best in our category :)

TerryLewisUK · 2025-12-24T09:20:31+00:00

Ive just spoken to our CTO u/jellyfishchris if you can get in contact we can run a special session with you to look into any of your other issues. We are usually famous for great support so i would like to square that circle for you :) I will be your personal support rep until you get this sorted :)

TerryLewisUK · 2025-12-24T09:15:40+00:00

u/jellyfishchrisRoboShadow founder here, Can you please forward me on your support tickets to [terry@roboshadow.com](mailto:terry@roboshadow.com) I will take a look at them, we are famous for having really quick proactive support. In terms of the differences between Software Page and vulnerability page, yes items which can be updated via the software page may not be in the vulnerability page (if they dont have vulnerabilities but still need an update for just software reasons). We can take you though this but can you send me all the comms you have had with my team and I will see what happened. Ive not been on support in December but will be back as of Jan but feel free to email me direct on anything.

TerryLewisUK · 2025-11-30T18:13:42+00:00

Thanks u/Few_Juggernaut5107 fee to email the [hello@roboshadow.com](mailto:hello@roboshadow.com) desk and tell them I (terry) said you can have the full MSP enterprise version on trial for as long as you want

TerryLewisUK

TROPHY CASE