Capterra’s researchers use a mix of verified reviews, independent research and objective methodologies to bring you selection and ranking information you can trust. While we may earn a referral fee when you visit a provider through our links or speak to an advisor, this has no influence on our research or methodology.
Capterra carefully verified over 2 million reviews to bring you authentic software and services experiences from real users. Our human moderators verify that reviewers are real people and that reviews are authentic. They use leading tech to analyze text quality and to detect plagiarism and generative AI. Learn more.
Capterra lists all providers across its website—not just those that pay us—so that users can make informed purchase decisions. Capterra is free for users. Software and service providers pay us for sponsored profiles to receive web traffic and sales opportunities. Sponsored profiles include a link-out icon that takes users to the provider’s website. Learn more.
Built for security practitioners, by security professionals, Nessus Professional is the de-facto industry standard for vulnerability assessment. Nessus performs point-in-time assessments to help security professionals quickly identify and fix vulnerabilities, including software flaws, missing patches, malware, and misconfigurations. With features such as pre-built policies and templates, group snooze functionality, and real-time updates, it makes vulnerability assessment easy and intuitive.
Provider
Tenable Network Security
Located In
United States
Foundation
2002
Open API
Unverified
Deployment
Cloud, SaaS, Web-Based
Training
Documentation, Live Online, In Person, Webinars
Support
Knowledge Base, Chat, Email/Help Desk, Phone Support, FAQs/Forum
Ideal for security practitioners, consultants and pen testers.
Content Source: Nessus
Green rating bars show the winning product based on the average rating and number of reviews.
Reviewers find Nessus's network scanning features beneficial due to the fast scans and ease of setup, which streamline the scanning process. They mention that configuring the scanner and adding scan targets is straightforward, and the detailed reports generated are highly appreciated. However, users also note issues with credential scans, weak web assessments, and the time-consuming nature of some scans, which can hinder the overall efficiency of the scanning process.
Users commend Nessus for its accurate and customizable reporting, which is essential for presenting clear and concise vulnerability data. They appreciate the standard and custom reports that facilitate easy understanding and solution finding. On the other hand, some reviewers feel that the reporting could be improved, citing the need for better customization options and expressing dissatisfaction with the basic nature of some reports, which sometimes require additional API work to extract the necessary information.
Pros
The application is very useful in findings for vulnerabilities in the network assets and reporting them with quality reports containing where exactly the issues are found and its mitigation.
Is a great product to scan systems for vulnerabilities, nice GUI and easy to manage. Customer support has also been great to us.
We implemented Nessus very easy, with the support from the vendor. Good price and very good solution.
Tenable offers great vulnerability management products and Security Center is very easy to use. Great reporting capabilities and an overall great product.
Cons
Also seems to think many of the things they mark as medium risk are low risk. This depends on your situation and network, but for me most of the medium risks can be disregarded.
The professional version of this tool is very costly. It yet doesn’t support credential based scan for machines which have 2 factor authentication implemented on it.
You are not aware that a specific device or service can be sensitive to Nessus untill you finish with the service stopped or the performance of a service gets compromised.
Nessus in the Pro version is limited to one user. Not follow up or comparison between latest scan and recent.
"Nessus Vulnerability Management - Thorough Scan of your Network"
Overall: Used Nessus for quite some time now. Excellent product .
Pros: User Interface , Scan Profiling , Policy creation is easy and straightforward
Cons: Reporting features could be improved upon
"Nessus: Vulnerability Scanner with Appealing Reporting Capabilities"
Overall: Nessus is a must for network security testing and vulnerability analysis. Together with Nmap, Nessus gives a much better penetration testing and vulnerability analysis of networks and virtualized cloud infrastructures.
Pros: I used Nessus with nmap for testing the vulnerability of virtualized networks in controlled environments. The main motivation behind the selection of Nessus is to have a user-friendly vulnerability report with categorized network exploits and OS weaknesses. Nessus provides accurate results (though some false positives are noticed in hardened Linux environments). The advanced reporting capabilities in Nessus makes the vulnerability results easily exported and documented to relational databases. Moreover, the various Nessus reports can be compared after hardening the OS with different security configurations.
Cons: Nessus is very accurate but sometimes, especially with latest versions of Ubuntu, many false positives are noticed. Still Nessus results are considered highly informative and the false positives can be autonomously filtered to provide more accurate vulnerability analysis and reporting.
"Great vulnerability scanner"
Overall: My overall experience with Nessus has been extremely positive. It's reliable, regularly updated, and the scan reports are easy to read and actionable. The speed at which it identifies vulnerabilities is impressive, and it's saved me countless hours of manual checks.
Pros: Nessus is hands down the most popular vulnerability scanner for good reason. It runs incredibly comprehensive vulnerability scans, catching everything from outdated software to complex misconfigurations. It's quick, efficient, and can be installed almost anywhere, which is a huge plus. The free version for personal use, covering up to 16 hosts, is more than enough for home networks or small businesses to get started.
Cons: No cons I can think of. It has all the features that a decent vulnerability scanner should have.
"Good Choice for some"
Pros: Great scannerOld pro version was a perfect choiceAbility to rescan one item
Cons: Tenable kept removing core functionsWeak web scanning capabilities
"A Must have for MSSP"
Pros: A Professional tool that gives stellar results
Cons: Price can be a bit steep for small businesses