Capterra’s researchers use a mix of verified reviews, independent research and objective methodologies to bring you selection and ranking information you can trust. While we may earn a referral fee when you visit a provider through our links or speak to an advisor, this has no influence on our research or methodology.
Capterra carefully verified over 2 million reviews to bring you authentic software and services experiences from real users. Our human moderators verify that reviewers are real people and that reviews are authentic. They use leading tech to analyze text quality and to detect plagiarism and generative AI. Learn more.
Capterra lists all providers across its website—not just those that pay us—so that users can make informed purchase decisions. Capterra is free for users. Software and service providers pay us for sponsored profiles to receive web traffic and sales opportunities. Sponsored profiles include a link-out icon that takes users to the provider’s website. Learn more.
Ideal for security practitioners, consultants and pen testers.
Large and medium sized enterprises as well as 'born in the cloud' companies in industries such as SaaS, FinTech, retail, internet, media, ad tech, and cloud.
We implemented Nessus very easy, with the support from the vendor. Good price and very good solution.
Also seems to think many of the things they mark as medium risk are low risk. This depends on your situation and network, but for me most of the medium risks can be disregarded.
The application is very useful in findings for vulnerabilities in the network assets and reporting them with quality reports containing where exactly the issues are found and its mitigation.
You are not aware that a specific device or service can be sensitive to Nessus untill you finish with the service stopped or the performance of a service gets compromised.
Is a great product to scan systems for vulnerabilities, nice GUI and easy to manage. Customer support has also been great to us.
Nessus in the Pro version is limited to one user. Not follow up or comparison between latest scan and recent.
The ability to schedule recurring scan jobs is helpful and aids in the scanning of systems. Integration with ticketing systems such as ServiceNow is also great.
The professional version of this tool is very costly. It yet doesn’t support credential based scan for machines which have 2 factor authentication implemented on it.
Support - Wonderful support and leadership team that cares about their customers. Open API - Rich and open API that allows you to extend and build on top of the product.
The only dislikes of Orca that I have emphasized to their support team is around vulnerability management reporting and navigation within the tool.
Ontop of being a great product, their support has been outstanding in answering all of our questions, fixing bugs, and expediting our open cases.
Without it, we wouldn't have been able to triage log4j, see malware in our environments, investigate vulnerable cloud instances, and a range of other basic but tricky cloud problems.
The Orca UI is clean and provides a good overview, the alerts are relevant, and the export functionality is very useful.
It would also be useful if older alerts were automatically dismissed after a while when the vulnerability is no longer detected.
Very innovative and responsive team, enjoy working with them to improve the product.
Lack of on-prem/legacy scanning is a real bummer.
Nessus
Orca Security
Nessus
--
Orca Security
Products similar to those you're currently comparing: