Nessus (BYOL)
Tenable, Inc. | 10.8.3Linux/Unix, Amazon Linux 20240903 - 64-bit Amazon Machine Image (AMI)
External reviews
External reviews are not included in the AWS star rating for the product.
Nessus Review
What do you like best about the product?
Vulnerability scanning is great. Reporting is good.
What do you dislike about the product?
Compliance scans, to many false positives.
What problems is the product solving and how is that benefiting you?
Vulnerability and Compliance scanning to meet compliance regulations.
Recommendations to others considering the product:
Get the compliance to elevate so many false positives.
- Leave a Comment |
- Mark review as helpful
Powerful Vulnerability assessmnent tool at a more than reasonable cost
What do you like best about the product?
Speed! I can get accurate results from a Nessus scan much faster than I get from other products costing 1000% more. The interface is extremely intuitive and I can configure a scan quickly compared to my other tools. It is my 'Go To' system when a client requests a scan to validate patches of config changes.
What do you dislike about the product?
What I dislike has nothing to do with the tool itself. I dislike that my manager feels the cost of the tool is indicative of its overall worth and reputation.
What problems is the product solving and how is that benefiting you?
I use Nessus Pro to complement our vulnerability assessment program and to validate detections in order to determine false positives. I consider this tool as an invaluable asset in hardening our PCI and DMZ environments.
Excellent software
What do you like best about the product?
provides insight on your environment. Easy to install and to operate. Reporting add a lot of value for upper management.
What do you dislike about the product?
Once the vulnerabilities are identified, we must fix and re-scan to validate they disappeared. Sometimes Nessus is still showing the vulnerability even if the fix is applied
What problems is the product solving and how is that benefiting you?
Security and Compliance
Recommendations to others considering the product:
great product.
Nessus review
What do you like best about the product?
Cost is the biggest factor, the functionality is on par with other commercial solutions but at a reasonable price point and licensing model. The solution is also extremely stable. The information presented in reports is easy to understand and can be put infront of a non-technical audience, a junior admin, network engineer or audit team.
What do you dislike about the product?
Nessus professional lacks robust data management and compression, scan history can grow rapidly out of control. We have been forced to implement so scripting outside of the tool to perform housekeeping activities that would be better served natively.
What problems is the product solving and how is that benefiting you?
Nessus is our primary risk analysis tool and is the foundation of how we demonstrate risk mitigation to our Clients. We can rapidly get Client security buy in to go live once we present the Nessus compliance and vulnerability reports. By reducing the time to get Client sign off we are able to realize revenue sooner.
Recommendations to others considering the product:
Evaluate what you plan to do with the information you receive from the tool, prioritize information that is highest risk and be sure to get support from you business to move toward integrating Nessus into your risk programs life cycle
Product scan
What do you like best about the product?
auto update of plugins and the representation
What do you dislike about the product?
Nothing as of now but in case if i see anything in future i'll update Nessus team
What problems is the product solving and how is that benefiting you?
identifies all the vulnerabilities present in our product due to 3rd party software
Great scanning application. Exactly what I need for PCI
What do you like best about the product?
Scheduled scanning, reports are detailed with all the information for issues as well as a "how-to" on resolving.
What do you dislike about the product?
Nothing really. Nessus meets my company's needs in a user friendly format. Couldn't be happier.
What problems is the product solving and how is that benefiting you?
We're meeting our PCI requirements with Nessus. It allows me to see what security gaps and updates are necessary to maintain compliance.
Great tool for self-assessments and scanning new deployments
What do you like best about the product?
Great interface, portable (I run it on a laptop), and the reporting format has been great for developing a methodology with which I can track my organization's security posture over time.
What do you dislike about the product?
Very little to dislike here. I think the only thing I'd like to see is a summary interface that does some of my reporting work for me, instead of me having to review the reports and create totals for each vulnerability category (critical, high, etc.).
What problems is the product solving and how is that benefiting you?
I can scan new systems before they go into production, I can monitor our security posture over time as new threats emerge and we deal with existing ones, and I have used the data from the reports to track our security for over four years running now.
Recommendations to others considering the product:
You should consider this a must-have in your security toolbox. You can use it to self-assess as well as a check against third party assessments.
Nessus is a great value
What do you like best about the product?
We have been using Nessus for several years, performing professional pen-testing and vulnerability assessments. This has been an invaluable tool for our business. It has helped us bring security solutions to many clients.
What do you dislike about the product?
Unfortunately, the pricing has been steadily increasing year over year. Within the next couple years, other tools may prove to be a better value.
What problems is the product solving and how is that benefiting you?
Nessus helps us identify security risks and determine a path to remediation. It doesn't provide remediation instructions, but the details are very helpful for us to plan remediation.
Recommendations to others considering the product:
Be cognizant of increasing renewal prices
De Facto Standard in Vulnerbility Scanners - Best Vulnerbility Scanner for the price.
What do you like best about the product?
Nessus Professional is an Intelligent and highly customizable security product. Our team gets very accurate scan results. The security plugins are always current. The compliance templates provided can be customized to reflect the our regulatory and security needs.
What do you dislike about the product?
Improve the Web GUI:
The Nessus Web GUI does take some getting used to. Additionally, advanced configuration settings could be better organized and contextual help should be added / improved when navigating the web GUI. More report customization would aid in providing better management reporting. Disk space utilization and system health should be added to the web GUI as this would help to alert administrators and users if and when system logs require pruning or to proactively clean old scan jobs that are consuming disk space.
Security Compliance:
The security compliance templates are very useful but the compliance templates could be expanded to cover more vendor products and the compliance templates should be maintained at current levels to reflect changing compliance standards.
Mobile App:
There are times when I am away from my desk and we would like to have a mobile version that would run on a portable platform such as a Android phone or tablet.
The Nessus Web GUI does take some getting used to. Additionally, advanced configuration settings could be better organized and contextual help should be added / improved when navigating the web GUI. More report customization would aid in providing better management reporting. Disk space utilization and system health should be added to the web GUI as this would help to alert administrators and users if and when system logs require pruning or to proactively clean old scan jobs that are consuming disk space.
Security Compliance:
The security compliance templates are very useful but the compliance templates could be expanded to cover more vendor products and the compliance templates should be maintained at current levels to reflect changing compliance standards.
Mobile App:
There are times when I am away from my desk and we would like to have a mobile version that would run on a portable platform such as a Android phone or tablet.
What problems is the product solving and how is that benefiting you?
With respect to patch management, we use Nessus to validate new server and network appliance builds. As a government organization, we are required to adhere to security policies pertaining to security compliance and cyber security. To us, Nessus definitely fills are security compliance needs.
Recommendations to others considering the product:
Must be comfortable with customizations. Should have a strong understanding of networking technologies.
Nesssus Rocks!
What do you like best about the product?
The flexibility in scan entire networks and for specific vulnerabilities.
What do you dislike about the product?
That the free license is no longer available for home and personal use.
What problems is the product solving and how is that benefiting you?
Filling gaps of employment. We don't have the budget for a security team so the infrastructure team fills both roles. Nessus make our jobs easier to scan for vulnerabilities without paying for FTES or yearly pen test.
showing 101 - 110