Nessus (BYOL)
Tenable, Inc. | 10.8.3Linux/Unix, Amazon Linux 20240903 - 64-bit Amazon Machine Image (AMI)
External reviews
External reviews are not included in the AWS star rating for the product.
One of the best vulnerability scanner I've ever used
What do you like best about the product?
What I most like about nessus is customization when using scans. We can add credentials, set IP ranges and ports and etc. We can use different scan methods for different purposes. Also it gives best scanning results and those scanning results can be exported as HTML, PDF or CSV reports. Also the report can be customize when exporting. When nessus gives me a report it also providing the introduction of vulnerabilites, impact of the vulnerability to the host and mitigation methods and reference to find more about the vulnerabilites.
What do you dislike about the product?
What I dont like this Nessus proffesional version is some time it gives false positives. As an example when nessus gives me a scan results of an web application vulnerability scan usually I seach for those vulnearabilities for testing purposes. That required time. If those results are false possitive, all the search time and testing times are wasted.
What problems is the product solving and how is that benefiting you?
When I pentesting first tool I use is Nessus. I use different scanning methods for different purposes. As an example I mostly use network scans, web application scans, policy compliance audting scans, and advanced dynamic scans. Nessus also can be used as malware scan Nessus helped me to find lot of vulnerabilities using different scans.
Recommendations to others considering the product:
If you are in Cyber security side. This is a best vulnerabilty scanner that worth your every penny. I've used it. It gives the best scanning resutls so we can follow those results to test vulnerabilities.
- Leave a Comment |
- Mark review as helpful
Great product
What do you like best about the product?
Makes vulnerability assessment and reporting very painless
What do you dislike about the product?
No dislikes at this time. have always enjoyed
What problems is the product solving and how is that benefiting you?
Patch audits, vulnerability assessments,
Recommendations to others considering the product:
Like the cereal commercial, try it, you will like it
Nessus Professional Review
What do you like best about the product?
Setup can be very simple.
Support is usually pretty quick to respond to tickets.
Support is usually pretty quick to respond to tickets.
What do you dislike about the product?
Lots of Issues over the past year.
No Real Feature Updates. All Features are being updated to Tenable.io & Tenable.sc
No Real Feature Updates. All Features are being updated to Tenable.io & Tenable.sc
What problems is the product solving and how is that benefiting you?
Identifying Patches
Recommendations to others considering the product:
When it works correctly, it's great, but when it doesn't it can really cause a chain reaction.
Nessus Compliance Scanning
What do you like best about the product?
The ease of use for compliance reporting
What do you dislike about the product?
Drill down on errors should be a little more cleaner.
What problems is the product solving and how is that benefiting you?
Compliance Reporting
Nessus is a great tool for our security department
What do you like best about the product?
Nessus has really helped our newly formed security department hit the ground running by identifying and pinpointing specific vulnerabilities on our network for remediation.
What do you dislike about the product?
There are a lot of false positives, including untrusted CAs. The remediations/solutions provided for each vulnerability could also be more specific.
What problems is the product solving and how is that benefiting you?
We have been able to upgrade outdated OSs, identify and install missing server patches, and show progress on vulnerability management from week to week.
Recommendations to others considering the product:
Be sure to not only scan on a regular basis, but also check the scans thoroughly and learn each vulnerability in order to get a better idea how to remediate the risk, accept it, or determine if it is a false positive.
Really like the technology and capability, but disappointed by feature limitations
What do you like best about the product?
Nessus has always been the most well-rounded vulnerability scanning solution. It does a better job across various OS, application, etc. platforms where other scanners often fall short.
What do you dislike about the product?
Tenable has crippled Nessus Professional by disallowing scans to be configured/managed via API, and restricting the ability to create multiple users. As a professional services firm, these capabilities have made the use of Nessus Pro more challenging.
What problems is the product solving and how is that benefiting you?
Identifying vulnerabilities.
Comprehensive and customizeable
What do you like best about the product?
Comprehensive scanning and ability to see the exposed vulnerability and the corresponding remediation - also the single remediation suggestion that would get the most value that
What do you dislike about the product?
Loss of the API from previous version - we could get powershell scripts to obtain specific report results
What problems is the product solving and how is that benefiting you?
Patch management confirmations and exceptions - the ability to identify what hosts are being excepted out of patch management has been able to allow us to perform a more accurate risk assessment
Recommendations to others considering the product:
For performing the PCI assessment, this product made the checking of our hosts and that of the hosting provider's equipment so easy. Remember to VERIFY all of the hosts in the environment first, verify they are alive, use nessus to check for "undocumented hosts", and then run the vuln scanner. Always use creds to check the hosts for completeness.
Great Insight Into Our Network!
What do you like best about the product?
I like the feature of having multiple scan scheduled for different areas, for e.g. local desktops, linux, windows, etc.
What do you dislike about the product?
User interface gets stuck at times and keeps spinning and not accessible until restarting of services on local machine
What problems is the product solving and how is that benefiting you?
Network vulnerabilities, patch management
Recommendations to others considering the product:
Great product and easy to implement and use
Nessus at Providence College
What do you like best about the product?
Nessus Professional has a very easy-to-use interface and requires little technical expertise to operate. Scan scopes are easy to define and results are searchable and exportable.
What do you dislike about the product?
Nessus generates a large amount of false positives, particularly on Linux systems for applications like Apache, Tomcat, etc. It generally only reads the banners, and even if you run an authenticated scan, it often times does not detect patches that are backported by the distribution. This leads to a lot of heartburn when working with server administrators.
On a separate note, Nessus does not have in-application remediation tracking like some other vulnerability scanning platforms.
On a separate note, Nessus does not have in-application remediation tracking like some other vulnerability scanning platforms.
What problems is the product solving and how is that benefiting you?
Minimizing "technical debt" is the largest benefit. The institution has not always had an ongoing vulnerability management program, and as such, a large amount of vulnerabilities and other issues had piled up over time. Nessus has allowed us to gain insight on these issues and move towards a more mature process.
Nessus Pro Review
What do you like best about the product?
Nessus really makes it easy to see problem areas in your environment. You can quickly allocate resources to mitigate those areas where critical vulnerabilities exist. Being able to schedule scans and having the reports emailed to you creates an automated workflow without ever logging in.
What do you dislike about the product?
Functionality is awesome. I would like to be able to change my theme. I really like the darker themes because it's easier on the eyes.
What problems is the product solving and how is that benefiting you?
We now have visibility of vulnerabilities across our environment. We're able to measure the effectiveness of our patch deployments. Another benefit is that we can detect new vulnerabilities when Nessus updates the plugins.
showing 141 - 150