Nessus

Avantages

Really comprehensive and tons of scan and reporting options, easy to start a basic scan or get into the weeds with customizing a more complex scan

Inconvénients

The cost, the more advanced options are harder to set up and not always clear exactly what you are doing

Avantages

This is a really useful scanning software to help us detect any vulnerabilities in our network that need to be patched.

Inconvénients

The software can be difficult to use sometimes and it doesn't always scan with the credentials needed to have compliant scans.

Avantages

API support for automation and integration into CI/CD pipelines. Great scanning capabilities with form based and token based authentication. Reporting of results with CVSS scoring are accurate and remediation fixes are provided by this tool itself

Inconvénients

Handling of dynamic applications with complex authentication needs improvement. Scan timings takes more than ETA

Avantages

User Interface , Scan Profiling , Policy creation is easy and straightforward

Inconvénients

Reporting features could be improved upon

Avantages

Nessus is hands down the most popular vulnerability scanner for good reason. It runs incredibly comprehensive vulnerability scans, catching everything from outdated software to complex misconfigurations. It's quick, efficient, and can be installed almost anywhere, which is a huge plus. The free version for personal use, covering up to 16 hosts, is more than enough for home networks or small businesses to get started.

Inconvénients

No cons I can think of. It has all the features that a decent vulnerability scanner should have.

Avantages

A Professional tool that gives stellar results

Inconvénients

Price can be a bit steep for small businesses

Avantages

Nessus allows you to have vulnerability dashboards and allows rapid remediation

Inconvénients

nessus is complicated to configure but also is a fairly expensive product

Avantages

Vulnerability scanning in Nessus is very accurate, it rarely gets anything wrong. It is also easy to deploy.

Inconvénients

The only downsides of Nessus that I have experienced are that sometimes it gets false positives, but not very often, and that the UI of the website can be finicky sometimes.

Avantages

Most i liked about this product is that its designed to be user friendly ,making it usable for both experienced and intermediate who are less familiar with vulnerabilities and next important is their frequent updates system which helps in making the security system more effective

Inconvénients

1. Scanning time is bit high
2. Sometimes false positives
3.Cost factor

Avantages

Nessus provides very valuable insight into network vulnerabilities and the remediation required to address the vulnerabilities. Nessus is and has been an industry leader for along time and is tried, tested, and true. Very good program that helps keep industries safe.

Inconvénients

Nessus can be cost prohibitive and difficult to initially setup. Having employees with good technical knowledge will be important if implementing Nessus software, otherwise, outsourcing is a good option as well.

Avantages

We love the overall ease of use and the amount of details that scans have along with the findings for quick remediation. Our auditors love the reporting.

Inconvénients

Sometimes there are limitations in the scan exclusions. We would also like to see integrations with ticketing systems.

Avantages

Its interface is intuitive and offers various scanning options for the various areas to be analyzed, such as networks, web systems or applications.

Inconvénients

Its price can be considered high, compared to other free or lower cost tools.

Avantages

I like the ability to scan everything on the network and get a report on vulnerabilities.

Inconvénients

Sometimes the vulnerability scan is a little too picky.

Avantages

I use Nessus for external vulnerabilities. It is reliable and easy to implement.

Inconvénients

I don't think there is anything I don't like so far.

Avantages

I used Nessus with nmap for testing the vulnerability of virtualized networks in controlled environments. The main motivation behind the selection of Nessus is to have a user-friendly vulnerability report with categorized network exploits and OS weaknesses. Nessus provides accurate results (though some false positives are noticed in hardened Linux environments). The advanced reporting capabilities in Nessus makes the vulnerability results easily exported and documented to relational databases. Moreover, the various Nessus reports can be compared after hardening the OS with different security configurations.

Inconvénients

Nessus is very accurate but sometimes, especially with latest versions of Ubuntu, many false positives are noticed. Still Nessus results are considered highly informative and the false positives can be autonomously filtered to provide more accurate vulnerability analysis and reporting.

Avantages

Nessus allows you to run vulnerability scans to multiple networks simultaneously. It has various features that can be used for specific scans (web, PCI DSS, etc), as well as generic scans. Very easy to use. The reporting feature is also great, as it is very well formatted and it's possible to export the results into various formats.

Inconvénients

Everything is great as is in Nessus, especially if compared to other competitors. Nothing negative to say about it.

Avantages

Nessus proved to be an effective solution for identifying potential security weaknesses and ensuring compliance across our infrastructure. With advanced detection techniques and detailed reporting capabilities, Nessus facilitated streamlined remediation of identified issues.

Inconvénients

For a small organization, the cost of the product can be too high to bear. At times the most recent CIS benchmarks may not be available to conduct compliance scans.

Avantages

Perfect tool for consultants as you can load it on a laptop and move from client to client. Without paying for more licenses

Inconvénients

Reporting is a little lacking and can do with some rework.

Avantages

The way thet the nessus scanner scans the web applications and the range of networks effectively and provides the analysis of the vulnerability present with the CVE codes and the ways to mitigate the vulnerability with the proper documentation report for the same which builds the trust on the nessus software and this capabilities are the main reason we recommend nessus scanner to each and every security teams

Inconvénients

The nessus comes with the best available functionality and it is preferable over other tools but it also comes with the huge cost that is very high compared to other scanners

Avantages

Administrator can simply use predefined policy and easy to apply related product as a template.
Also the reporting is 99.99% accuracy and easy to understand and easy to find a solutions.

Inconvénients

When we define a bulk scan, Nessus tool is getting more Computer/Server resources.

Avantages

Nessus professional is a leading vulnerability scanner and can be easily deployed. It can be installed on both windows and Linux environments. Interfaces are simple and easy to navigate. It provides vulnerabilities and recommendation with detail descriptions. You can purchase the product according to the size of your network. Nessus professional supports integration with SIEMs . Nessus agents are doing great job and can be used to continuously monitor the network.

Inconvénients

Nessus professional doesn't provide overall visibility of an asset with the time. No trend information available and cannot track whether asset has reduce vulnerabilities over the time. I'm not satisfied with given reports and need to improve the reports. It is better if they can fine tune the compliance reports. Web assessments area is still weak on Nessus. It can not conduct comprehensive assessments against web applications. Card data discover plugin is bit difficult to configure and we didn't get the expected results.

Avantages

Nessus is still the industry leader in this arena, and the ability for the product to identify vulnerabilities accurately is still the high water mark to beat. You can be up and running in just a few minutes, and the ability to have recurring scans is a great way for this product to help you with your security program. The "Plugin Output" fields help greatly when trying to determine if tests are a false positive, and lends additional credence to your system administrators when you can show them exactly *why* something has been detected as a vulnerability.

Inconvénients

There are no ways to track vulnerabilities or your efforts to monitor them over time; this truly is just a point-in-time view of your environment unless you upgrade to a much more expensive product.

Avantages

The application is very useful in findings for vulnerabilities in the network assets and reporting them with quality reports containing where exactly the issues are found and its mitigation.
The tool updates are very relevant and even reports zero day vulnerabilities for particular software and technologies made use by the network asset. It covers almost all the security issues present in a network device or servers with proper credentialed scans.

Inconvénients

The application has to be kept up to date for covering all the latest patch vulnerabilities and it lists even ssl and ssh related vulnerabilities for database servers or internal routers, so our team has to identify the necessary findings to report to customer.

Avantages

Simple interface, even end-user can use it. Easy to install.

Inconvénients

Everything is good, but since they stop nessus manager, I can not find the way to do automation.

Avantages

This product is one of the best network scanners on the market. After properly installing the server with the scanner in the network and placing the credentials of the administrator, the system works perfectly. Vulnerability scanning and compliance scanning are executed properly, all the standards included in Nessus are very useful.

Inconvénients

The vulnerability scanner is not totally accurate in some situations and some results must be checked to verify the vulnerability. Therefore, it is possible that there are false positives. Many times the supplements are not updated in a timely manner and this hurts even more with the false positives generated.

Avantages

It has up to date plugins to scan latest vulnerabilities or malwares are in the market.
Plugins are updated every week to cover latest vulnerabilities.
It can scan the scope system based on various standards like PCI DSS and HIPAA which other scanners in the market don't have.
It performs credentials scans which other scanners like Qualys,Openvas doesn’t offer.

Inconvénients

Nessus doesn’t detect any active protection on scope system which can block the credential scan.
It cannot scan device if the 2FA is implemented on the scope system.

Avantages

That it was really easy to implement and use

Inconvénients

The reports are very basic and need to improve.

Avantages

A very low false positive rate and a very intuitive interface

Inconvénients

It would be desirable to make comparisons possible between different audits over time

Avantages

What I like most about Nessus is that they have many plugins available for the various vulnerabilities that are out there. The ability to scan static and dynamic asset lists is great. The ability to schedule recurring scan jobs is helpful and aids in the scanning of systems. Integration with ticketing systems such as ServiceNow is also great.

Inconvénients

It would be nice if their website had the published or revised date of their plugins. Resolving issues related to their Nessus Agents would also be nice. The UI could be improved so that queries didn't take so long. It would be nice if there was an easy way to purge old data associated with particular IPs.

Avantages

Great scannerOld pro version was a perfect choiceAbility to rescan one item

Inconvénients

Tenable kept removing core functionsWeak web scanning capabilities

Avantages

It did what it was advertised to do and did it well. The updates to the plugins were done regularly and it found everything out there that was a vulnerability

Inconvénients

Lacked reporting module that helped show more of the picture for non technical people and pretty graphs. To get those you needed to move to Tenable.io or SecurityCenter.

Avantages

I use this scanner often to scan web application and also to run other scans. It provides the best results and it is really helpful as this also saves some time. There's are variety of scanning types available in this scanner and after scanning it gives a full report including the url when scanning a web application.

Inconvénients

It takes a really long time when doing a scan but

Avantages

Easy to set up, use and report on. We started using this application after our first major client security audit a few years ago. It's a been great tool.

Inconvénients

Not much to dislike with Nessus. Maybe some better reports, and the cost could always be better, although it's not bad.

Alternatives envisagées 

Pourquoi passer à Nessus

Avantages

Nessus is great about releasing new plugins for vulns. It's lightweight and has an agent option or a hardware scanner option. The cost is pretty standard.

Inconvénients

The reports that tenable can generate are lack luster at best. We use the API to pull the info we want, but that takes more work and development time than we like

Avantages

Nessus is the gold standard of vulnerability scanning. A robust solution, highly customizable for every organization with cloud, on prem and client install options.

Inconvénients

Without the local client or group policy that shuts off wifi when your on wired you may get hit with 2 licenses per device because it sees both the wireless and wired instance. Something to know going into it if you are buying.

Avantages

Does what it is supposed to. Provides a good overview of vulnerabilities across systems for internal security assessments and audits. Easy to deploy MSI package

Inconvénients

Support is something to be desired. During initial setup in our environment, there were several complications when attempting to connect machines to the tenable.io cloud and provide the client machines with updates. The support group couldn't provide necessary assistance and we ultimately left to troubleshoot on our own.

Avantages

This is a one of best software for the vulnerability assessments. It ha lot of functions and features to do the tasks.

Inconvénients

Sometimes it's getting slow to conduct the scans and also I think it need to contain more attractive reporting methods.

Avantages

Easy to use, and seems to find vuln's on more things than other scanners. Also seems to be updated more frequently.

Inconvénients

I wish there was a way to combine data from multiple scanners into one report or view.

Avantages

It is relatively straightforward to scan an entire enterprise network due to the ease-of-use with the policies that are available. Customized creation enhances the overall process.

Inconvénients

Configuration expertise is required when it comes to specifically tailored assessments in separate domains. This can be slightly tedious with expected results; but once you get it right, the scans are highly effective.

Avantages

Nessus has the largest database of vulnerabilities and will most likely find any known vulnerability.

Inconvénients

In some cases, Nessus assumes that a service is vulnerable to a vulnerability just because it is listening for incoming connections, so you always have to go through the results and carefully double check each finding.

Avantages

Ease of use and simplicity. Rarely have had to reference online documentation. They make it very easy to figure out and use right away. For more specific sets of scans or devices, the documentation is helpful. There is also a very active community on their forums. Reporting is very informative, and scheduling makes it so you don't have to interact much after everything is all set.

Inconvénients

Sometimes there are some false positives that take time to realize. Also seems to think many of the things they mark as medium risk are low risk. This depends on your situation and network, but for me most of the medium risks can be disregarded.

Avantages

We use Nessus because is very good tool to manage you vulnerabilities. Fast scan and easy to make reports and to monitor vulnerabilities. Easy to adjust the profile scan, easy to add scan targets. Good price and a lot of features.

Inconvénients

We did not find any problems with the Nessus vulnerability management.

Alternatives envisagées 

Pourquoi passer à Nessus

Avantages

We are currently trying out Tenable.io and using the Nessus scanner to run local vulnerability scans and remediation at our company. I like the ease of setup and use of the Nessus scanner and the detailed reporting that is available with Tenable.io (cloud version).

Inconvénients

The Nessus scanner does utilize a lot of system resources and the scan (less than 50 nodes) can take up to 2 days to complete. It would be nice if the scan was faster.

Avantages

The soft is very useful to identify and manage vulnerabilities. The implementation was fast. Easy to scan and easy to generate reports. Predefined report for the management. Also you can generate compliance reports.

Inconvénients

We did not find problems. Nessus is working very well.

Alternatives envisagées 

Pourquoi passer à Nessus

Avantages

That I can analyze networks, web applications, elements in the cloud and customize the type of output or analysis that will be executed, either manually or I can program it.
Additionally I like the section to make scanners and comply with PCI policies.

Inconvénients

So far the tool has covered my expectations. So far the tool has covered my expectations. I usually use it to perform advanced scans where I can select which elements I want to enable.

Avantages

It is easy to use very intuitive, completely modular, mature and highly scalable from small networks to operational networks critical for security

Inconvénients

The License schema need be modular according to the user's need.

Avantages

Very handy, powerful and easy to use software for vulnerability scanning. This can be also utilize for web application scanning and system configuration review. One can schedule the scanning and get the report. It gives standard and custom reports which are helpful for presentation purpose. Nessus scanning reports suggest the required patch for their respective vulnerabilities. To get the best possible result plugins should be up to date with latest release.

Inconvénients

Report doesn't show in graphical format. It doesn't scan system with 2FA enabled.

Avantages

Nessus is the state of the art on automating vulnerability scans for networks and infrastructure. It has lots of customization options and can be deployed locally to make an active scan on the internal infra. or through the cloud.

Inconvénients

It can be expensive to keep it running for smaller business. Also, many false positives can be encountered and then depends on the analyst to interpret and classify each vulnerability along with a more appropriate severity.

Avantages

Probably the best vulnerability scanner out there. There are plugins for every vulnerability, and it can scan either credentialed or uncredentialed. It is very easy to use, and generates really good reports and provides good feedback.

Inconvénients

Some things on the website are rather slow, and there could be better flexibility to manage older data, like from hosts that are no longer in service.

Avantages

Ease of use
Reporting

Inconvénients

Lacking in application security