Nessus (BYOL)
Tenable, Inc. | 10.8.4Linux/Unix, Amazon Linux 20250405 - 64-bit Amazon Machine Image (AMI)
External reviews
External reviews are not included in the AWS star rating for the product.
Great
What do you like best about the product?
Ease to select the scan template and customise the same. The graphicsl representation of findings and its description.
What do you dislike about the product?
Having an auto pause and resume scan feature will be helpfull.
What problems is the product solving and how is that benefiting you?
Helps in Vulnerability Assessment, server reviews, network device config audits.
- Leave a Comment |
- Mark review as helpful
Improved UI and easy templates to launch the scan
What do you like best about the product?
Custom templates to launch scan instantly. Use case based templates like log4shell are handy
What do you dislike about the product?
Report customization is limited. Allowing custom XSLT templates to customize reports will be useful
What problems is the product solving and how is that benefiting you?
Continuous network and application scanning.
Nessus Security Platform - Vulnerability Management
What do you like best about the product?
Nessus is one of the most straightforward tools available to handle VMS operations.
Low budget enterprise tool which every organization can afford.
Nessus VA scan covers all standard network devices like endpoint, servers, network devices, virtualization platforms as well as a cloud environment.
They provide plugins for every vulnerability and can scan with authenticated or unauthenticated scans. It is straightforward to use, generates an excellent report (various options available to customize).
Low budget enterprise tool which every organization can afford.
Nessus VA scan covers all standard network devices like endpoint, servers, network devices, virtualization platforms as well as a cloud environment.
They provide plugins for every vulnerability and can scan with authenticated or unauthenticated scans. It is straightforward to use, generates an excellent report (various options available to customize).
What do you dislike about the product?
If you compare Nessus to other VM tools like Nexpose or Qualys, Nessus has minimal features, and customization & Integration in Nessus is also not very helpful for organizations, where they need to customize their data set per their requirements.
Vulnerability fingerprinting also needs some enhancement. For some devices like Cisco, it flagged the exposure based on the iOS version running on the target machine but not based on the vulnerable configuration present on the device. Which further needs manual assessment to validate if the fingerprinted vulnerability is false positive or not.
Vulnerability fingerprinting also needs some enhancement. For some devices like Cisco, it flagged the exposure based on the iOS version running on the target machine but not based on the vulnerable configuration present on the device. Which further needs manual assessment to validate if the fingerprinted vulnerability is false positive or not.
What problems is the product solving and how is that benefiting you?
Frequent and constant product updates.
Easy to use, configurations are not overly complex.
Reasonable price compared to other players.
Easy to use, configurations are not overly complex.
Reasonable price compared to other players.
Nessus - The VA Scanner
What do you like best about the product?
Nessus is a very user-friendly application, and it even has pre-defined templates to select which profile to be used for vulnerability scanning.
What do you dislike about the product?
When it scans very large data sets and applications, it takes a considerable time and becomes a bit laggy.
What problems is the product solving and how is that benefiting you?
A very common burden that System Admins have is patch management. Nessus helps to address this issue very smoothly with automated scans and reports
Recommendations to others considering the product:
If you are trying to keep your organization consistently compliant, this is a must-have tool.
Easy to Use tools for web application and Network vul Testing
What do you like best about the product?
Simplicity, friendly user interface, Lightweight
What do you dislike about the product?
Should have the Functanalities like OWASP tools
What problems is the product solving and how is that benefiting you?
Web application testing and deep Network Scanning
Recommendations to others considering the product:
Indian support is lacking
Nessus Professional - Good Value & Great Product
What do you like best about the product?
Unlimited scans of IP addresses, easy customization of scans, detailed descriptions, and references of findings. Multiple pre-built templates. Scans just about anything to identify a security weakness.
What do you dislike about the product?
Authenticated scans aren't the easiest to execute. Configuration review feature provides numerous false positives. Unable to perform business logic tests. Unable to open IP address of host directly from Nessus. Web App scans are not the most robust, a dedicated DAST tool is more value.
What problems is the product solving and how is that benefiting you?
Security Advisory services for my clients and internally. Nessus provides insight into weaknesses within the IT environment.
Recommendations to others considering the product:
It is a leader in its field compared to other vulnerability scanners, it is also easy to use and setup.
Nessus Review
What do you like best about the product?
Nessus is a comprehensive solution to test enterprises, easy to use and understand. Its authorized scanning is powerful
What do you dislike about the product?
I'm not too fond of its reports that have a lot of false positive
What problems is the product solving and how is that benefiting you?
Nessus allows me not to miss a vulnerability during a penetration testing assessment
A total game changer-Nessus
What do you like best about the product?
Multi-tasking: Nessus employs efficient memory usage to implement multitasking.
Credentialed Scanning: Executing a credentialed Nessus Scan allows you to get a deeper depth of information about your target. Constantly being updated. One of the few Vulnerability scanners with more than expected features and support for the community version.
Credentialed Scanning: Executing a credentialed Nessus Scan allows you to get a deeper depth of information about your target. Constantly being updated. One of the few Vulnerability scanners with more than expected features and support for the community version.
What do you dislike about the product?
Nessus Pro restricted to just a single client makes it scarcely moderate for medium scale organizations. The characterization (high, medium, low, and so forth) are based on the finding and not your current circumstance. A high might be low for your situation and the other way around. Like many tools, even Nessus does have its own limitations and is not necessary that it may find all the vulnerabilities associated with the target provided. Ordinarily, the enhancements are not refreshed in an opportune way and this damages much more with the bogus positives produced
What problems is the product solving and how is that benefiting you?
Booking Report Quality Speed Ease of establishment. Automated tasks help to complete a VAPT and a pentesting project much faster.
Recommendations to others considering the product:
Nessus is a great vulnerability scanner tool, but if you are looking for something in specific to scan, such as a webapp, you should rather go for a web-app scanner.
Nessus Vulnerability Scanning Review
What do you like best about the product?
Nessus Scanning covers almost all the vulnerabilities related to 3rd Party APPs, OS Level vulnerabilities, Container vulnerabilities, MisConfiguration and related issues, etc. I like it being a one stop solution.
What do you dislike about the product?
There are a lot of concerns with Nessus Agents. Like, it will require Nessus Relinking, once the agent stops to report to Nessus Manager, Tagging concerns for ephemeral environments where servers are coming up and downs, etc. Its highly recommended for static environments but messy for ephemeral/dynamic environments. Always requires some sort of scripting automation to relink, untag and tag again. Some instances (5-10%) show concerns when Nessus Agents are auth(n) fine but still Nessus Manager fails to recognize the same. These issues need to be raised to Nessus Engineering teams to provided a tool which can check back and forth for Nessus Connections and do the same stuff for us, should not just be an overhead for the customer.
What problems is the product solving and how is that benefiting you?
Problems mostly related to vuln scans. No other Security Vuln. scanner is close to Nessus. Tried some opensource solutions and cloud solutions as well, but no comparison to Nessus.
User friendly, Simple yet powerful scanner for Network Scans
What do you like best about the product?
Feasibility of Configuration - very simple UI to configure vulnerability Scan
Compliance scan files - provides exhaustive list of default audit files for compliance checks. Also has option for uploading custom audit files.
Vulnerability Reports - Reports provide detailed yet specific information on issues. Executive summary option is very helpful
Compliance scan files - provides exhaustive list of default audit files for compliance checks. Also has option for uploading custom audit files.
Vulnerability Reports - Reports provide detailed yet specific information on issues. Executive summary option is very helpful
What do you dislike about the product?
APIs - APIs are not that matured compared to other tools like Qualls
Inventory Management - Inventory management is not impressive. Need to rely on manual update.
Inventory Management - Inventory management is not impressive. Need to rely on manual update.
What problems is the product solving and how is that benefiting you?
To analyze the security posture of organization's infrastructure
showing 11 - 20