Nessus (BYOL)
Tenable, Inc. | 10.7.2Linux/Unix, Amazon Linux 20240318 - 64-bit Amazon Machine Image (AMI)
External reviews
External reviews are not included in the AWS star rating for the product.
Enterprise User
What do you like best about the product?
The Nessus web interface is very intuitive.
What do you dislike about the product?
There is not much to dislike in Nessus today.
What problems is the product solving and how is that benefiting you?
Discovery, vulnerability, and compliance scanning.
- Leave a Comment |
- Mark review as helpful
Great tool for self-assessments and scanning new deployments
What do you like best about the product?
Great interface, portable (I run it on a laptop), and the reporting format has been great for developing a methodology with which I can track my organization's security posture over time.
What do you dislike about the product?
Very little to dislike here. I think the only thing I'd like to see is a summary interface that does some of my reporting work for me, instead of me having to review the reports and create totals for each vulnerability category (critical, high, etc.).
What problems is the product solving and how is that benefiting you?
I can scan new systems before they go into production, I can monitor our security posture over time as new threats emerge and we deal with existing ones, and I have used the data from the reports to track our security for over four years running now.
Recommendations to others considering the product:
You should consider this a must-have in your security toolbox. You can use it to self-assess as well as a check against third party assessments.
Nessus is a great value
What do you like best about the product?
We have been using Nessus for several years, performing professional pen-testing and vulnerability assessments. This has been an invaluable tool for our business. It has helped us bring security solutions to many clients.
What do you dislike about the product?
Unfortunately, the pricing has been steadily increasing year over year. Within the next couple years, other tools may prove to be a better value.
What problems is the product solving and how is that benefiting you?
Nessus helps us identify security risks and determine a path to remediation. It doesn't provide remediation instructions, but the details are very helpful for us to plan remediation.
Recommendations to others considering the product:
Be cognizant of increasing renewal prices
Director of IT/Operations
What do you like best about the product?
Real-Time vulnerability check and sensitive data searches
What do you dislike about the product?
Plugins and using reports are a bit challenging.
What problems is the product solving and how is that benefiting you?
Primarily for security compliance
Great Product
What do you like best about the product?
I like the user friendliness of the interface
What do you dislike about the product?
I'm not sure I like the new vulnerability grouping that shows for each host (purple color)
What problems is the product solving and how is that benefiting you?
We mostly use Nessus to see what known security patches have not been applied yet. This allows us to enforce patching of all systems (Windows and Linux). This has allowed us to have a monthly dashboard highlighting vulnerable systems and has enabled us to ensure that all systems have all known security patches within a 60 day window.
Fantastic Vulnerability Scanner
What do you like best about the product?
I liked the simplicity of the readout from the vulnerability scanner
What do you dislike about the product?
Unfortunately, the only thing I had an issue with was the pricing model. It is priced lower than most, but I am working in a non profit organization where budget is extremely tight.
What problems is the product solving and how is that benefiting you?
Vulnerability of business systems
Recommendations to others considering the product:
n/a
De Facto Standard in Vulnerbility Scanners - Best Vulnerbility Scanner for the price.
What do you like best about the product?
Nessus Professional is an Intelligent and highly customizable security product. Our team gets very accurate scan results. The security plugins are always current. The compliance templates provided can be customized to reflect the our regulatory and security needs.
What do you dislike about the product?
Improve the Web GUI:
The Nessus Web GUI does take some getting used to. Additionally, advanced configuration settings could be better organized and contextual help should be added / improved when navigating the web GUI. More report customization would aid in providing better management reporting. Disk space utilization and system health should be added to the web GUI as this would help to alert administrators and users if and when system logs require pruning or to proactively clean old scan jobs that are consuming disk space.
Security Compliance:
The security compliance templates are very useful but the compliance templates could be expanded to cover more vendor products and the compliance templates should be maintained at current levels to reflect changing compliance standards.
Mobile App:
There are times when I am away from my desk and we would like to have a mobile version that would run on a portable platform such as a Android phone or tablet.
The Nessus Web GUI does take some getting used to. Additionally, advanced configuration settings could be better organized and contextual help should be added / improved when navigating the web GUI. More report customization would aid in providing better management reporting. Disk space utilization and system health should be added to the web GUI as this would help to alert administrators and users if and when system logs require pruning or to proactively clean old scan jobs that are consuming disk space.
Security Compliance:
The security compliance templates are very useful but the compliance templates could be expanded to cover more vendor products and the compliance templates should be maintained at current levels to reflect changing compliance standards.
Mobile App:
There are times when I am away from my desk and we would like to have a mobile version that would run on a portable platform such as a Android phone or tablet.
What problems is the product solving and how is that benefiting you?
With respect to patch management, we use Nessus to validate new server and network appliance builds. As a government organization, we are required to adhere to security policies pertaining to security compliance and cyber security. To us, Nessus definitely fills are security compliance needs.
Recommendations to others considering the product:
Must be comfortable with customizations. Should have a strong understanding of networking technologies.
Nessus Pro/Manager on-prem review
What do you like best about the product?
Configuration is simple. There aren't a ton of little-used features crowding UIs. Scans are fast.
What do you dislike about the product?
Some plugins are still validating CVE resolution by looking for daemon banner version #s. With a lot of linux distros, the banner versions never line up with the backported security patches. Thus, some packages will seem vulnerable for months and months even though the vendor has patched the CVE.
What problems is the product solving and how is that benefiting you?
Infrastructure vulnerability scans
Better than most
What do you like best about the product?
I like the plugin feed, it is very robust. I also like the ability to upload compliance audit files directly from Tenable.
What do you dislike about the product?
I don't feel like the scanners do a great job of compliance checks, I prefer to use ePO instead of the Nessus scanner to obtain the credential data I need. Could be operator error though ;)
What problems is the product solving and how is that benefiting you?
We are currently resolving FISMA scorecards with the use of our scanner as well as web testing certain applications that are coming into our environment
Nesssus Rocks!
What do you like best about the product?
The flexibility in scan entire networks and for specific vulnerabilities.
What do you dislike about the product?
That the free license is no longer available for home and personal use.
What problems is the product solving and how is that benefiting you?
Filling gaps of employment. We don't have the budget for a security team so the infrastructure team fills both roles. Nessus make our jobs easier to scan for vulnerabilities without paying for FTES or yearly pen test.
showing 231 - 240