Nessus (BYOL)
Tenable, Inc. | 10.7.2Linux/Unix, Amazon Linux 20240318 - 64-bit Amazon Machine Image (AMI)
External reviews
External reviews are not included in the AWS star rating for the product.
Nessus is one of the mandatory tools for security assessments of all types
What do you like best about the product?
Nessus is a quick and easy way to find known vulnerabilities in platforms. It is also excellent for spot-checking for specific vulnerabilities, such as Log4J, MSDT, etc. The audit capability is also excellent, allowing for configuration checks and compliance checks to be accomplished.
What do you dislike about the product?
Coverage of databases, web applications and IoT could be stronger.
What problems is the product solving and how is that benefiting you?
Nessus provides insight into vulnerabilities and version information across the enterprise. There are also numerous useful informational items, such as administrative user lits, lists fo running processes, attached devices, etc. that make determining the security posture of a device easier. These same checks can also be useful in incident response.
Recommendations to others considering the product:
Nessus should be part of any standard security toolkit.
- Leave a Comment |
- Mark review as helpful
Comprehensive tool to manage the vulnerabilities
What do you like best about the product?
Scan the OS patches and also the installed apps.
What do you dislike about the product?
Reports should have more intuitive format
What problems is the product solving and how is that benefiting you?
It scans the vuls for OS and Apps, gives the detailed results. So we can follow the instruction to mitigate the issue.
Best vulnerability assessment tool
What do you like best about the product?
tool performance and the way that nessus show the results its great for auditors and pentesters, I have been user of nessus for more than 10 years and every year its getting better and better
What do you dislike about the product?
maybe the tool needs more graphics and reports
What problems is the product solving and how is that benefiting you?
All the configurations audits based in compliance and vulnerability assessment Im doing it with nessus for all my clients
Almost perfect
What do you like best about the product?
The fact that you can set diferentes scans at the same time, and the database for vulnerability updates fast.
What do you dislike about the product?
I have to change to classic layout a lot some options are not easy to find in the new layout, PCI ASV in particular
What problems is the product solving and how is that benefiting you?
We are required to have inter vulnerability scans l.
Performance Solutiion
What do you like best about the product?
The easy way to manage and handle the solution
What do you dislike about the product?
not much to dislike from the platform and interface
What problems is the product solving and how is that benefiting you?
Help to organize the gathered information
Wonderful Vulnerability Analysis tool specially for Network and Host vulnerability analysis
What do you like best about the product?
this is the best and 100% accurate acutomatic tool for network and host vulnerability assessment tool. it's a very easy and useful tool for finding any loophole in the network and host with a minimal false-positive result.
What do you dislike about the product?
nothing to dislike about this tools but the only thing is that it takes some time to give result because they scan every vulnerability so its take time otherwise it works well and gives a very accurate result.
What problems is the product solving and how is that benefiting you?
I use this tool for my day-to-day client site project and use this tool to find vulnerabilities in the network and endpoints (host). and solve very complex vulnerabilities in less time and secure my client's infrastructure from hackers.
Vulnerability Assessment Tool
What do you like best about the product?
Nessus use for vulnerability assessment purpose and fulfill compliance, upto date database, a great list of predefined templates and plugins, and can find out zero days vulnerabilities with accuracy. Nessus almost cover the Vulnerability Assessment of Network devices such endpoint, servers and virtulization platform and cloud infra. Nessus multiple Report templete such as Technical and Exective Summery. Perform a credential scan and non credential scan, when you perform credentail scan, find out more depth vulnerabilities. Nessus suggest solutions to fix the vulnerability and a community version is available.
What do you dislike about the product?
I can't dislike this product because every product has some limitations, so please ignore it. Nessus scans are more time taking to complete the assessment, and the license is very costly. Nessus checks network-infa to find out the vulnerabilities/loopholes that malicious hackers/attackers could exploit and get into your system
What problems is the product solving and how is that benefiting you?
Using for Vulnerability assessment and deep analysis of network infrastructure to find the security flaws.
- Fulfill the compliance requirement
- Find out gaps
We use the Nessus scanner to scan the computers to know whether the products/applications installed on the system requirements to be patched with the latest updates/upgrades. Nessus team working very hard, day by day they improving their product, I hope they can't inconvenient their customer.
- I'll recommend Nessus documentation
- Blogs
- Security Guidelines
- Community resources
- Fulfill the compliance requirement
- Find out gaps
We use the Nessus scanner to scan the computers to know whether the products/applications installed on the system requirements to be patched with the latest updates/upgrades. Nessus team working very hard, day by day they improving their product, I hope they can't inconvenient their customer.
- I'll recommend Nessus documentation
- Blogs
- Security Guidelines
- Community resources
Recommendations to others considering the product:
My recommendation for those who are working in the corporate sector, and vendor side. This product can use a vulnerability analyst, Penetration Tester, Network analyst, DevOps team during development.
Nessus professional
What do you like best about the product?
Nessus professional is easy to use. Just add your ip list or add a subnet. Nessus is a number one vulnerability scanner with vast CVE numbers. One other scanner can compete for Nessus in terms of CVE database
What do you dislike about the product?
I have no dislike for Nessus because the 1-year subscription is 2000+$ and user-friendly. several options for scan
What problems is the product solving and how is that benefiting you?
Vulnerability Assessment Report for my ISO27001-2013 audit.
Nessus Security Platform - Vulnerability Management
What do you like best about the product?
Nessus is one of the most straightforward tools available to handle VMS operations.
Low budget enterprise tool which every organization can afford.
Nessus VA scan covers all standard network devices like endpoint, servers, network devices, virtualization platforms as well as a cloud environment.
They provide plugins for every vulnerability and can scan with authenticated or unauthenticated scans. It is straightforward to use, generates an excellent report (various options available to customize).
Low budget enterprise tool which every organization can afford.
Nessus VA scan covers all standard network devices like endpoint, servers, network devices, virtualization platforms as well as a cloud environment.
They provide plugins for every vulnerability and can scan with authenticated or unauthenticated scans. It is straightforward to use, generates an excellent report (various options available to customize).
What do you dislike about the product?
If you compare Nessus to other VM tools like Nexpose or Qualys, Nessus has minimal features, and customization & Integration in Nessus is also not very helpful for organizations, where they need to customize their data set per their requirements.
Vulnerability fingerprinting also needs some enhancement. For some devices like Cisco, it flagged the exposure based on the iOS version running on the target machine but not based on the vulnerable configuration present on the device. Which further needs manual assessment to validate if the fingerprinted vulnerability is false positive or not.
Vulnerability fingerprinting also needs some enhancement. For some devices like Cisco, it flagged the exposure based on the iOS version running on the target machine but not based on the vulnerable configuration present on the device. Which further needs manual assessment to validate if the fingerprinted vulnerability is false positive or not.
What problems is the product solving and how is that benefiting you?
Frequent and constant product updates.
Easy to use, configurations are not overly complex.
Reasonable price compared to other players.
Easy to use, configurations are not overly complex.
Reasonable price compared to other players.
Very comprehensive, flexible management of vulnerabilities.
What do you like best about the product?
In depth quick scanning and up to date database of vulnerabilities.
What do you dislike about the product?
Using the API to run scans remotely and extract the data into another system.
What problems is the product solving and how is that benefiting you?
Pinpoint various vulnerability devices on the network and identify the critical missing patches and outdated vulnerabilities patches. Allows schedule daily, weekly and monthly scanning reports.
Recommendations to others considering the product:
Very detail scanning capabilities and always have the latest security update and vulnerabilities scan
showing 51 - 60