Nessus (BYOL)
Tenable, Inc.External reviews
300 reviews
from
External reviews are not included in the AWS star rating for the product.
Nessus works well
What do you like best about the product?
The amount/variety of plugins that cover just about everything you need to scan for, both new/0 day threats and past.
What do you dislike about the product?
Reporting could be better in Nessus Pro (I don't have exposure to other levels to see if there is better reporting)
What problems is the product solving and how is that benefiting you?
Making sure systems are updated with the necessary patches. A nice benefit is seeing the biggest bang for our buck (deploy one patch will fix 80% of critical issues for example)
Recommendations to others considering the product:
Make sure the reporting matches your needs, otherwise it's great
Solid product for security and compliance
What do you like best about the product?
The job scheduling features make it easy for me to run scans quarterly.
What do you dislike about the product?
Sometimes, I feel it is a little slow with the scans, the machine is pretty robust that we run it on.
What problems is the product solving and how is that benefiting you?
Compliance issues with ISO and SOC
Great Pro tool for scannig
What do you like best about the product?
Variety of tools, not only vulnerabilities, compliance scans as well
What do you dislike about the product?
Price, it would be great that this can be modular so price can be less
What problems is the product solving and how is that benefiting you?
It helps a lot with our PCI-DSS audits
Recommendations to others considering the product:
Buy it !!
Great for Compliance
What do you like best about the product?
I like that you can set the scans up manual and have them scheduled. I love the customer support.
What do you dislike about the product?
I do not like that you cannot scan applications or webservers.
What problems is the product solving and how is that benefiting you?
scanning applications and webservers. I like the reporting tools and compliance validity of the compliance control sets via the same set the IRS uses. That makes it definitely more valuable than using any other vulnerability tool. This tool tells you what controls are missing as well as what controls need to have improvement and if you use the same files as the IRS uses you are sure to pass any safeguard review/audit. I have my security administrator use it just because of that reason. I wish Nessus could run scans on different types of software but I'm not sure how that is even possible. If there were any improvements to be made it would be on webservers and applications. However, if your just checking your audits against safeguard reviews, this will get you passed.
Recommendations to others considering the product:
I WOULD try to figure out how to have Nessus run vulnerability scans on software, if that is possible. If I could improve Nessus I would find a way to make it take up less band with when doing network scans, find a way to get it to scan different types of software and also, get it to scan webservers. Nessus for me needs to keep staying in compliance with the IRS publication 1075 and NIST 800-53 series. If Nessus can do that then it will continue to hold its excessive valuableness. Federal guidelines are the way that I would go if I were a Nessus developer/tester.
Nessus review
What do you like best about the product?
Cost is the biggest factor, the functionality is on par with other commercial solutions but at a reasonable price point and licensing model. The solution is also extremely stable. The information presented in reports is easy to understand and can be put infront of a non-technical audience, a junior admin, network engineer or audit team.
What do you dislike about the product?
Nessus professional lacks robust data management and compression, scan history can grow rapidly out of control. We have been forced to implement so scripting outside of the tool to perform housekeeping activities that would be better served natively.
What problems is the product solving and how is that benefiting you?
Nessus is our primary risk analysis tool and is the foundation of how we demonstrate risk mitigation to our Clients. We can rapidly get Client security buy in to go live once we present the Nessus compliance and vulnerability reports. By reducing the time to get Client sign off we are able to realize revenue sooner.
Recommendations to others considering the product:
Evaluate what you plan to do with the information you receive from the tool, prioritize information that is highest risk and be sure to get support from you business to move toward integrating Nessus into your risk programs life cycle
SQL Developer
What do you like best about the product?
Slick UI, export to Excel option is great for data management
What do you dislike about the product?
We do weekly scans and false positives in general around Windows 10 are a bit annoying. Tenable is pretty quick to update their plugins however.
What problems is the product solving and how is that benefiting you?
Find out of compliance machines for security patching, other new issues we didn't know about.
Nessus price to features
What do you like best about the product?
Cost and Control.
Allot of flexibility in a single application that we can host ourselves.
Allot of flexibility in a single application that we can host ourselves.
What do you dislike about the product?
Licensing and the restrictions in the latest release.
What problems is the product solving and how is that benefiting you?
Compliance certification readiness and overall system hardening based on results.
Recommendations to others considering the product:
Seems with the new licensing, they are going back in the wrong direction
Straight forward and easy to use.
What do you like best about the product?
Important information readily accessible from reports and thus easy for management to read. Flexible scanning options and easy to passively scan many test VMs under development.
What do you dislike about the product?
No multi-year discount for contracts. 2 or 3 year contract is the same price/yr
What problems is the product solving and how is that benefiting you?
Vulnerability scanning with an industry standard tool. Customers recognize and accept Nessus as part of our cybersecurity program.
A big part of the toolkit for Vulnerability assessments
What do you like best about the product?
Nessus has gathered a wide range of templates and policies to help conduct and track Vulnerability assessments.
What do you dislike about the product?
I don't think there is really anything on this list.
What problems is the product solving and how is that benefiting you?
The ability to show how we measure up against industry standards.
Nessus Professional review
What do you like best about the product?
Is easy to understand the learning curve is it not difficult. The interface is easy to use. It helps with the efficiency and vulnerability management.
What do you dislike about the product?
The plugins and they are removing the API support for Nessus Pro 7 so we wont be able to integrate some processes into vulnerability scanning
What problems is the product solving and how is that benefiting you?
vulnerability management
showing 241 - 250