Tenable Network Security

Nessus


4.5 / 5
24 reviews


Average Ratings

24 Reviews

  • 4.5 / 5
    Overall

  • 4.5 / 5
    Ease of Use

  • 4 / 5
    Customer Service

Product Details

  • Starting Price
    $2,190.00
  • Free Trial
    Yes
  • Deployment
    Cloud, SaaS, Web
    Installed - Windows

Vendor Details

  • Tenable Network Security
  • www.tenable.com/

About Nessus

Nessus, the industry's most widely deployed vulnerability management solutions, helps you reduce your organizations attack surface and ensure compliance. Nessus features high-speed asset discovery, configuration auditing, target profiling, malware detection, sensitive data discovery, and more. With the world's largest continuously-updated library of vulnerability and configuration checks, Nessus sets the standard for vulnerability scanning speed and accuracy.


Spotlight-media-placeholder

Nessus Features

  • Asset Discovery
  • Asset Tagging
  • Network Scanning
  • Patch Management
  • Policy Management
  • Prioritization
  • Risk Management
  • Vulnerability Assessment
  • Web Scanning

Nessus Reviews Recently Reviewed!


Easy to Use Vulnerability Scanner

Sep 05, 2017
5/5
Overall

3 / 5
Ease of Use

3 / 5
Features & Functionality

3 / 5
Customer Support

4 / 5
Value for Money
Likelihood to Recommend: 10.0/10 Not
Likely
Extremely
Likely

Pros: What I like most about Nessus is that they have many plugins available for the various vulnerabilities that are out there. The ability to scan static and dynamic asset lists is great. The ability to schedule recurring scan jobs is helpful and aids in the scanning of systems. Integration with ticketing systems such as ServiceNow is also great.

Cons: It would be nice if their website had the published or revised date of their plugins. Resolving issues related to their Nessus Agents would also be nice. The UI could be improved so that queries didn't take so long. It would be nice if there was an easy way to purge old data associated with particular IPs.

Overall: Good canned reports and dashboards, which show where your critical risks are. Ability to export date into CSV or Excel format was welcome and made manipulating data easier.

Best tool in the market for Vulnerability scanning

Aug 25, 2018
5/5
Overall

5 / 5
Ease of Use

5 / 5
Features & Functionality

5 / 5
Customer Support

5 / 5
Value for Money
Likelihood to Recommend: 9.0/10 Not
Likely
Extremely
Likely

Pros: It has up to date plugins to scan latest vulnerabilities or malwares are in the market.

Plugins are updated every week to cover latest vulnerabilities.

It can scan the scope system based on various standards like PCI DSS and HIPAA which other scanners in the market don't have.

It performs credentials scans which other scanners like Qualys,Openvas doesn't offer.

Cons: Nessus doesn't detect any active protection on scope system which can block the credential scan.

It cannot scan device if the 2FA is implemented on the scope system.

Overall: It is very much efficient than any other tools offered by the competitors in scanning.

Overall Value for money solution for VA scans in enterprise

Capterra-loader

Vulnerability Management from the Pioneers of VM

Jun 04, 2018
4/5
Overall

5 / 5
Ease of Use

3 / 5
Features & Functionality

4 / 5
Customer Support

5 / 5
Value for Money
Likelihood to Recommend: 10.0/10 Not
Likely
Extremely
Likely

Pros: Trust on leader on VM market and movement

Plugins updated daily so, threats and breaches can be identified as they are scanned into the environment

Using Nessus Manager you can deploy scanners and agents across subnets, you can schedule multiple scans in your environment

Best in class configuration audit data base for compliance check

Credential and uncredential scans

Agents for sensitive devices or services that can be affected by an active scan or are in transit

Cons: Nessus in the Pro version is limited to one user

Not follow up or comparison between latest scan and recent

IP address Change on the network or location increase the IP count even when it is the same device

reports customizing can be difficult depending on what is expected to have

invasive scan.

you are not aware that a specific device or service can be sensitive to Nessus untill you finish with the service stopped or the performance of a service gets compromised.

Overall: Vulnerabilities across the network, devices and the whole environment. Secyrity needs to be based on several systems that can consolidate data about your security posture and with NEssus is a great place to start when you do not have visibility on what is happening further that your PC and internet.

Capterra-loader

Great vulnerability assessment tool

Sep 02, 2018
5/5
Overall

4 / 5
Ease of Use

5 / 5
Features & Functionality

4 / 5
Customer Support

5 / 5
Value for Money
Likelihood to Recommend: 9.0/10 Not
Likely
Extremely
Likely

Pros: It supports from simple host discovery scans to detailed vulnerability scans like malware scan, credential path audit. This tool can also perform scan to test the latest vulnerabilities like Meltdown and Spectre and WannaCry ransomware etc.

This vulnerability scanner has almost up-to-date plugins. The plugins are updated almost daily to weekly to scan the latest vulnerabilities in the market.

Nessus scanner can perform the vulnerability scan for various operating systems like: Windows, Amazon linux, CentOS, FreeBSD, MacOS, Redhat, Debian etc

It also supports vulnerability scan for various compliance standards like PCI DSS.

This scanner can also perform credential based scan on the target machine.

The major advantage is, this scanner gives the most accurate vulnerability details about the machine with very few false positives which other scanners in the market fails to do.

Cons: The professional version of this tool is very costly.

It yet doesn't support credential based scan for machines which have 2 factor authentication implemented on it.

Overall: Very good tool to perform vulnerability assessment for home users to business users.

Great audit tool

Aug 27, 2018
5/5
Overall

5 / 5
Ease of Use

5 / 5
Features & Functionality

4 / 5
Customer Support
Likelihood to Recommend: 9.0/10 Not
Likely
Extremely
Likely

Pros: A very low false positive rate and a very intuitive interface

Cons: It would be desirable to make comparisons possible between different audits over time

Overall: After comparing it with other tools, in relation to quality / price it is a great tool beating its competitors in price

Capterra-loader

Enterprise-grade vulnerability scanner

Feb 26, 2018
5/5
Overall

5 / 5
Ease of Use

4 / 5
Features & Functionality

4 / 5
Customer Support

5 / 5
Value for Money
Likelihood to Recommend: 10.0/10 Not
Likely
Extremely
Likely

Pros: Very easy to use. Very easy to configure a scan. Very easy to export a report and data about a scan. Very easy to customize scan templates. You can also create your own audit templates, so you can customize this tool for the specific policies of the organization. If you get to know the ins and outs of the scanner, you can get the most value from it.

Cons: Most of the time the documentation is incomplete if you get picky with the use cases. Support via Tenable Support Portal has been very slow lately, it seems like if they had a single person to handle all the support cases they have everyday. It used to be slow, but that's been improved a lot in the latest version I've used (7.0.2).

Overall: Nessus provides me with an in-depth overview of the vulnerabilities of every asset in the organization. The vulnerability management system integrated with it makes prioritization very easy, so you can quick work progressively towards a secure environment.

Nessus Professional On Premise

Oct 10, 2018
5/5
Overall

5 / 5
Ease of Use

4 / 5
Features & Functionality

4 / 5
Customer Support

5 / 5
Value for Money
Likelihood to Recommend: 8.0/10 Not
Likely
Extremely
Likely

Pros: Very frequent vulnerability database updates

Easy to use

Good pricing

Cons: Some false positives

Some false negatives

Running it in a virtual machine in NAT configuration sometimes does not give results as good as in bridge mode

The reporting phase could be much better and should be more customizable

Overall: I currently use it to perform vulnerability assessments towards the customers' targets.

The results are usually accurate but it's always better to evaluate them manually to confirm/deny their existence.

The readability of the results is much easier through the Nessus interface than via the exported reports (PDF or HTML).

Fully Featured Network Scanning Tool

Sep 27, 2018
4/5
Overall

5 / 5
Ease of Use

4 / 5
Features & Functionality

4 / 5
Customer Support

4 / 5
Value for Money
Likelihood to Recommend: 8.0/10 Not
Likely
Extremely
Likely

Pros: This is really helpful me to scan and fix the compliance and patch audit of our servers.

Cons: The ultimate result sheet is pretty good.But need more diagrams to display the final results.

Overall: I've more than one year industrial experience with this tool.I have used basic, advanced, compliance and patch audit features in this tool.This tool done it well with accurate results.

Great product and easy to set up and use.

Mar 07, 2018
4/5
Overall

4 / 5
Ease of Use

5 / 5
Features & Functionality

5 / 5
Customer Support

5 / 5
Value for Money
Likelihood to Recommend: 9.0/10 Not
Likely
Extremely
Likely

Pros: It did what it was advertised to do and did it well. The updates to the plugins were done regularly and it found everything out there that was a vulnerability

Cons: Lacked reporting module that helped show more of the picture for non technical people and pretty graphs. To get those you needed to move to Tenable.io or SecurityCenter.

Capterra-loader

Essential tool for Vulnerability scanning

Oct 05, 2018
5/5
Overall

5 / 5
Ease of Use

4 / 5
Features & Functionality

3 / 5
Customer Support

5 / 5
Value for Money
Likelihood to Recommend: 10.0/10 Not
Likely
Extremely
Likely

Pros: It's Simplicity of use to the user, great tool for vulnerability scanning for any enterprise. the reports are detailed and easy to understand

Cons: So far there is not much but if it has the function to record the previous records it will be better

Overall: Overall it is a great tool for basic vulnerability scanning and because of plug and play ready to use feature of it Security teams use it often.

Scanning and reporting by setting a schedule

Mar 07, 2018
5/5
Overall

5 / 5
Ease of Use

5 / 5
Features & Functionality

5 / 5
Customer Support

5 / 5
Value for Money
Likelihood to Recommend: 10.0/10 Not
Likely
Extremely
Likely

Pros: We have an amazing scanning functionality with NESSUS and it's scheduled so all I have to do is look at the report then can use that to report to the committees

Cons: It can be troublesome to setup the very first time but when it is set up it is a breeze to use

Good network scanner

Oct 10, 2017
4/5
Overall

4 / 5
Ease of Use

5 / 5
Features & Functionality

3 / 5
Customer Support

3 / 5
Value for Money
Likelihood to Recommend: 9.0/10 Not
Likely
Extremely
Likely

Pros: This is a really useful scanning software to help us detect any vulnerabilities in our network that need to be patched.

Cons: The software can be difficult to use sometimes and it doesn't always scan with the credentials needed to have compliant scans.

Great Vulnerability Management Solution

Feb 16, 2017
5/5
Overall

5 / 5
Ease of Use

5 / 5
Features & Functionality

5 / 5
Customer Support

5 / 5
Value for Money
Likelihood to Recommend: 10.0/10 Not
Likely
Extremely
Likely

Pros: Ease of use

Reporting

Cons: Lacking in application security

Overall: Tenable offers great vulnerability management products and Security Center is very easy to use. Great reporting capabilities and an overall great product.

Capterra-loader

Nessus is the best tool for vulnerability assessments

Aug 20, 2018
5/5
Overall

5 / 5
Ease of Use

5 / 5
Features & Functionality

4 / 5
Customer Support

4 / 5
Value for Money
Likelihood to Recommend: 10.0/10 Not
Likely
Extremely
Likely

Pros: Nessus has the largest database of vulnerabilities and will most likely find any known vulnerability.

Cons: In some cases, Nessus assumes that a service is vulnerable to a vulnerability just because it is listening for incoming connections, so you always have to go through the results and carefully double check each finding.

Capterra-loader

Amazing Security Tool

Sep 26, 2018
5/5
Overall

4 / 5
Ease of Use

4 / 5
Features & Functionality
Likelihood to Recommend: 9.0/10 Not
Likely
Extremely
Likely

Pros: Nessus is very easy to use and it houses a lot of known vulnerabilities. Reporting from a scan couldn't be easier. Timely updates are also necessary for any vulnerability scanner worth its salt, and Nessus updates regularly to cover any emerging threats in a timely manner.

Cons: For the paid version its pricey but you can't put a price tag on keeping things secure. My experience lies in the free version that is available for home use. It requires you to request a key, which is fine but it took close to 3 days for the email to be sent with the key. I'm hoping this was a fluke but it was unfortunate.

Occasional bugs have also occurred, but what software doesn't have the occasional bug.

Overall: Overall Nessus is incredibly powerful, it seems better setup for corporate environments and I think in that environment you could not ask for a better software.

Worth it

Jun 13, 2018
4/5
Overall

5 / 5
Ease of Use

5 / 5
Features & Functionality

4 / 5
Value for Money
Likelihood to Recommend: 8.0/10 Not
Likely
Extremely
Likely

Pros: I've been using Nessus since it's very beginning. Frankly speaking, I like the older implementations more. But the recent developments are more mainstream and corporate ready

It's fast, comprehensive, and up to date vulnerability scanner that save huge deal of manual testing

Cons: Some plugins are buggy and can crash the testing system. Also licensing is a bit of a turn off, even though it's really worth it for professionals

Overall: A very good vulnerability scanner

Capterra-loader

excellent tool to mitigate security breaches

Jul 25, 2018
4/5
Overall

5 / 5
Ease of Use

5 / 5
Features & Functionality

5 / 5
Customer Support

5 / 5
Value for Money
Likelihood to Recommend: 10.0/10 Not
Likely
Extremely
Likely

Pros: That I can analyze networks, web applications, elements in the cloud and customize the type of output or analysis that will be executed, either manually or I can program it.

Additionally I like the section to make scanners and comply with PCI policies.

Cons: So far the tool has covered my expectations. So far the tool has covered my expectations. I usually use it to perform advanced scans where I can select which elements I want to enable.

Overall: With this software it is possible to perform network analysis to determine if there are vulnerabilities in the systems, malware, among other types of ramsomware. It also allows analyzing web environments and ensuring that companies know what threats and vulnerabilities are present in their information assets.

Great vulnerability audit tool

Sep 22, 2018
4/5
Overall

4 / 5
Ease of Use

4 / 5
Features & Functionality

4 / 5
Customer Support
Likelihood to Recommend: 8.0/10 Not
Likely
Extremely
Likely

Pros: Probably the best vulnerability scanner out there. There are plugins for every vulnerability, and it can scan either credentialed or uncredentialed. It is very easy to use, and generates really good reports and provides good feedback.

Cons: Some things on the website are rather slow, and there could be better flexibility to manage older data, like from hosts that are no longer in service.

Great security product which gives good vulnerability scores across your estate

Apr 20, 2018
4/5
Overall

4 / 5
Ease of Use

5 / 5
Features & Functionality

5 / 5
Customer Support

4 / 5
Value for Money

Pros: Excellent security dashboards, provides detailed vulnerability reports for each of your assests, with links to resolutions

Cons: Sometimes can take a few scans to recognise that all the vulnerabilities have been addressed on an assest

Excellent Vulnerability Scanning Software

Oct 06, 2018
5/5
Overall

5 / 5
Ease of Use

5 / 5
Features & Functionality
Likelihood to Recommend: 10.0/10 Not
Likely
Extremely
Likely

Pros: Ease to use, simple but meaningful reports, good support, clean interface.

Cons: Some of the templates can be abit basic, but these can be edited to suit.

Comprehensive VA tool

Jan 17, 2017
5/5
Overall

5 / 5
Ease of Use

4 / 5
Features & Functionality

5 / 5
Customer Support

4 / 5
Value for Money

Comments: Performs security and vulnerability assessment of a wide scope of devices and OS. Very helpful customer support that provides definite solutions to all the queries. Highly recommended for all corporate and enterprise environment.

Great vulnerability assessment tool that is widely used in the industry

Mar 27, 2018
5/5
Overall

4 / 5
Ease of Use

4 / 5
Features & Functionality

5 / 5
Value for Money

Pros: Tenable Nessus is a great tool to perform security vulnerability assessment. Scans are fairly simple to run and result in a detailed report of vulnerabilities across the scanned network.

Cons: I am still new to Nessus and have not experienced any negative results while using the tool through my training and testing.

Quick, simple but with more features becomes more difficult.

May 21, 2018
5/5
Overall

5 / 5
Ease of Use

4 / 5
Features & Functionality

5 / 5
Customer Support

5 / 5
Value for Money

Pros: To setup and run this is a quick program.

The program provides great detail on the vulnerabilities on each computer

Cons: Without more than basic setup the scans can be picked up by virus scanners.

the Features are full but not complete.

Capterra-loader

Excellent vulnerability scanner

May 15, 2018
5/5
Overall

5 / 5
Ease of Use

4 / 5
Features & Functionality

4 / 5
Customer Support

5 / 5
Value for Money
Likelihood to Recommend: 10.0/10 Not
Likely
Extremely
Likely

Pros: Easy to use and configure no matter if you are not an expert on the vulnerabilities topics. The dashboard gives you a real time data about the risks on your network . You can integrate this solution with for example ServiceNow to improve your Sercurity Response Times.

Cons: You must know that as any sotware that goes through the network you must have valid credentials is order to obtain good results.

Overall: Excellent option to help organization improve their security issues and their security response times.