Nessus

4,7 (64)
Vulnerability assessment solution for security practitioners

Overall rating

4,7 /5
(64)
Value for Money
4,6/5
Features
4,6/5
Ease of Use
4,6/5
Customer Support
4,3/5

100%
recommended this app

64 Reviews

Héctor joel B.
Overall rating
  • Industry: Information Technology & Services
  • Company size: 11-50 Employees
  • Used Daily for 1+ year
  • Review Source

Overall rating

  • Value for Money
  • Ease of Use
  • Customer Support
  • Likelihood to recommend 9.0 /10

Nessus, a great tool for the analysis and remediation of vulnerabilities

Reviewed on 2019/01/07

Tenable, in its variety of versions has a large section to train its customers, it is not a surprise that escalate positions with the passage of time and with every improvement that creates true expectations.

Within the company we have deployed Nesss and it really has been helpful to fin every vulnerability that the scans throw at us, the information is very complete from the discovery stages, we feel very satisfied, that the tool has been implemented in other infrastructure and the results are very heplful.

Pros

Nessus and its graphical interface is attractive, I would say that minimalist but punctual and charming, it is very clean, it should be applauded that in each version they improve it and include some types of scans that can bring you more complete results when you carry out an analysis. It is very remarkable that the plugins in your database are up to date and that your community generates an adequate response on time.

Cons

For now all the experience I have with Nessus has been nice, with the constancy that you have in your team working every day to improve it I know it will be a good tool for vulnerability detection.

Kevin H.
Overall rating
  • Industry: Telecommunications
  • Company size: 51-200 Employees
  • Used Daily for 2+ years
  • Review Source

Overall rating

  • Value for Money
  • Ease of Use
  • Customer Support
  • Likelihood to recommend 10.0 /10

Nessus Professional Gets The Job Done

Reviewed on 2020/08/25

This product does a great job of informing your IT and security groups on what may be vulnerable in your environment. Especially if your organization is looking to begin a program, start small and use this service to build up your processes and program before sinking large amounts of money into other services or products.

Pros

Nessus is still the industry leader in this arena, and the ability for the product to identify vulnerabilities accurately is still the high water mark to beat. You can be up and running in just a few minutes, and the ability to have recurring scans is a great way for this product to help you with your security program. The "Plugin Output" fields help greatly when trying to determine if tests are a false positive, and lends additional credence to your system administrators when you can show them exactly *why* something has been detected as a vulnerability.

Cons

There are no ways to track vulnerabilities or your efforts to monitor them over time; this truly is just a point-in-time view of your environment unless you upgrade to a much more expensive product.

Verified Reviewer
Overall rating
  • Industry: Construction
  • Company size: 501-1 000 Employees
  • Used Weekly for 6-12 months
  • Review Source

Overall rating

  • Ease of Use
  • Customer Support
  • Likelihood to recommend 5.0 /10

It's a vulnerability scanner

Reviewed on 2020/12/10

The client side agent is lightweight and easy to deploy once you get it successfully installed and reporting in. The adminstrative console is somewhat confusing, but provides very detailed reports that you can customize to your liking.

Pros

Does what it is supposed to. Provides a good overview of vulnerabilities across systems for internal security assessments and audits. Easy to deploy MSI package

Cons

Support is something to be desired. During initial setup in our environment, there were several complications when attempting to connect machines to the tenable.io cloud and provide the client machines with updates. The support group couldn't provide necessary assistance and we ultimately left to troubleshoot on our own.

Nguyen H.
Overall rating
  • Industry: Information Technology & Services
  • Company size: 51-200 Employees
  • Used Daily for 2+ years
  • Review Source

Overall rating

  • Value for Money
  • Ease of Use
  • Customer Support
  • Likelihood to recommend 9.0 /10

The quality is OK but they should support more API call to do automation

Reviewed on 2019/11/15

Simple, the quality of report also good. The price is reasonable for Pro version.

Pros

Simple interface, even end-user can use it. Easy to install.

Cons

Everything is good, but since they stop nessus manager, I can not find the way to do automation.

Geoffrey R.
Overall rating
  • Industry: Law Practice
  • Company size: 201-500 Employees
  • Used Weekly for 2+ years
  • Review Source

Overall rating

  • Value for Money
  • Ease of Use
  • Customer Support
  • Likelihood to recommend 10.0 /10

Nessus for vulnerability scanning

Reviewed on 2019/07/17

After our first major client security audit, we implemented Nessus to run weekly internal and external vulnerability scans. Not only does this help satisfy our client demands, but it helps us find vulnerabilities in our systems and helps us find patches and solutions to the vulnerabilities.

Pros

Easy to set up, use and report on. We started using this application after our first major client security audit a few years ago. It's a been great tool.

Cons

Not much to dislike with Nessus. Maybe some better reports, and the cost could always be better, although it's not bad.

Alternatives Considered

Netwrix Auditor

Reasons for Switching to Nessus

It was what several security companies use and it was recommended by the security expert we hired to perform a risk assessment of our network.
Verified Reviewer
Overall rating
  • Industry: Banking
  • Company size: 1 001-5 000 Employees
  • Used Weekly for 2+ years
  • Review Source

Overall rating

  • Value for Money
  • Ease of Use
  • Customer Support
  • Likelihood to recommend 10.0 /10

Nessus Vulnarability Scanning Tool

Reviewed on 2021/06/22

Nessus is #1 Vulnerability scanning tool which I ever seen and also Nessus tool has given fullest support to get PCIDSS certificate to our organization.

I strongly commanding others to protect there organization with Nessus tool.

Pros

Administrator can simply use predefined policy and easy to apply related product as a template.
Also the reporting is 99.99% accuracy and easy to understand and easy to find a solutions.

Cons

When we define a bulk scan, Nessus tool is getting more Computer/Server resources.

Josh A.
Overall rating
  • Industry: Retail
  • Company size: 51-200 Employees
  • Used Weekly for 1+ year
  • Review Source

Overall rating

  • Value for Money
  • Ease of Use
  • Customer Support
  • Likelihood to recommend 10.0 /10

We use and we like it

Reviewed on 2019/05/23

We implemented Nessus very easy, with the support from the vendor. Good price and very good solution.

Pros

We use Nessus because is very good tool to manage you vulnerabilities. Fast scan and easy to make reports and to monitor vulnerabilities. Easy to adjust the profile scan, easy to add scan targets. Good price and a lot of features.

Cons

We did not find any problems with the Nessus vulnerability management.

Alternatives Considered

Acunetix

Reasons for Switching to Nessus

The features. Easy installation. Mature tool. Very good support from the vendor.
Darius O.
Overall rating
  • Industry: Information Technology & Services
  • Company size: 11-50 Employees
  • Used Weekly for 1+ year
  • Review Source

Overall rating

  • Value for Money
  • Ease of Use
  • Customer Support
  • Likelihood to recommend 10.0 /10

Good vulnerability manager

Reviewed on 2019/05/20

The project was a success. I recommend Nessus.

Pros

The soft is very useful to identify and manage vulnerabilities. The implementation was fast. Easy to scan and easy to generate reports. Predefined report for the management. Also you can generate compliance reports.

Cons

We did not find problems. Nessus is working very well.

Alternatives Considered

Acunetix

Reasons for Switching to Nessus

Very good price. Easy to use. Fast scans. Very good reports.
Verified Reviewer
Overall rating
  • Industry: Utilities
  • Company size: 201-500 Employees
  • Used Daily for 2+ years
  • Review Source

Overall rating

  • Value for Money
  • Ease of Use
  • Customer Support
  • Likelihood to recommend 10.0 /10

Nessus Vulnerability Scanner

Reviewed on 2021/04/12

Pros

I used Nessus everyday and the UI is very friendly and easy to use.

Cons

It took Tenable after placing the order and while to get the license key. It took abit of back and forth to get an admin account but once created it was easy to use and set up team members

Verified Reviewer
Overall rating
  • Industry: Banking
  • Company size: 1 001-5 000 Employees
  • Used Weekly for 2+ years
  • Review Source

Overall rating

  • Value for Money
  • Ease of Use
  • Customer Support
  • Likelihood to recommend 8.0 /10

Nessus - Stay compliant

Reviewed on 2021/07/12

When it comes to compliance, Nessus really plays major roll. Nessus ensures that your network is accurately assessed.

Pros

Nessus gives you scan presets that are designed for each compliance body such as PCI, HIPAA, NIST etc. Administrators can easily select the patch level and run the vulnerability assessments. And even you can customize it as per your requirement too.

Cons

Nessus scanner becomes bit laggy when it comes to scanning of nodes with large data sets and applications.

Verified Reviewer
Overall rating
  • Industry: Financial Services
  • Company size: 1 001-5 000 Employees
  • Used Daily for 2+ years
  • Review Source

Overall rating

  • Value for Money
  • Ease of Use
  • Customer Support
  • Likelihood to recommend 8.0 /10

Nessus made the day easy with vulnerabilities !!!

Reviewed on 2020/09/15

Nessus is excellent for O/S vulnerability detection. Compared to other scanners Nessus provide less false positives. Reports needs to improve. It is better if nessus professional have option to track an assets progress over the time with vulnerability management features. Scanner is quiet faster compared to other scanners and worth for money you pay.

Pros

Nessus professional is a leading vulnerability scanner and can be easily deployed. It can be installed on both windows and Linux environments. Interfaces are simple and easy to navigate. It provides vulnerabilities and recommendation with detail descriptions. You can purchase the product according to the size of your network. Nessus professional supports integration with SIEMs . Nessus agents are doing great job and can be used to continuously monitor the network.

Cons

Nessus professional doesn't provide overall visibility of an asset with the time. No trend information available and cannot track whether asset has reduce vulnerabilities over the time. I'm not satisfied with given reports and need to improve the reports. It is better if they can fine tune the compliance reports. Web assessments area is still weak on Nessus. It can not conduct comprehensive assessments against web applications. Card data discover plugin is bit difficult to configure and we didn't get the expected results.

Verified Reviewer
Overall rating
  • Industry: Information Technology & Services
  • Company size: 501-1 000 Employees
  • Used Daily for 2+ years
  • Review Source

Overall rating

  • Value for Money
  • Ease of Use
  • Customer Support
  • Likelihood to recommend 10.0 /10

Worth the purchase for Vulnerability assessment

Reviewed on 2020/09/23

Overall the scan results are very efficient and reports generated are very effective in securing the network assets of an organization. The setup was easier and application is user-friendly once you get the hang of it.

Pros

The application is very useful in findings for vulnerabilities in the network assets and reporting them with quality reports containing where exactly the issues are found and its mitigation.
The tool updates are very relevant and even reports zero day vulnerabilities for particular software and technologies made use by the network asset. It covers almost all the security issues present in a network device or servers with proper credentialed scans.

Cons

The application has to be kept up to date for covering all the latest patch vulnerabilities and it lists even ssl and ssh related vulnerabilities for database servers or internal routers, so our team has to identify the necessary findings to report to customer.

Christopher C.
Overall rating
  • Industry: Hospital & Health Care
  • Company size: 10 000+ Employees
  • Used Daily for 2+ years
  • Review Source

Overall rating

  • Value for Money
  • Ease of Use
  • Customer Support
  • Likelihood to recommend 10.0 /10

Easy to Use Vulnerability Scanner

Reviewed on 2017/09/06

Good canned reports and dashboards, which show where your critical risks are. Ability to export date into CSV or Excel format was welcome and made manipulating data easier.

Pros

What I like most about Nessus is that they have many plugins available for the various vulnerabilities that are out there. The ability to scan static and dynamic asset lists is great. The ability to schedule recurring scan jobs is helpful and aids in the scanning of systems. Integration with ticketing systems such as ServiceNow is also great.

Cons

It would be nice if their website had the published or revised date of their plugins. Resolving issues related to their Nessus Agents would also be nice. The UI could be improved so that queries didn't take so long. It would be nice if there was an easy way to purge old data associated with particular IPs.

Verified Reviewer
Overall rating
  • Industry: Information Technology & Services
  • Company size: 11-50 Employees
  • Used Daily for 6-12 months
  • Review Source

Overall rating

  • Value for Money
  • Ease of Use
  • Customer Support
  • Likelihood to recommend 9.0 /10

One of the best vulnerability scanners

Reviewed on 2019/01/08

Nessus has allowed us in the company to develop a timely remediation system, since with the results of the scanners our clients can manage the remediation in a more timely manner without needing to apply more invasive policies on the client. Additionally it has helped us that the scans can be done in a short period of time in comparison to others in the market and in this way improve our service.

Pros

This product is one of the best network scanners on the market. After properly installing the server with the scanner in the network and placing the credentials of the administrator, the system works perfectly. Vulnerability scanning and compliance scanning are executed properly, all the standards included in Nessus are very useful.

Cons

The vulnerability scanner is not totally accurate in some situations and some results must be checked to verify the vulnerability. Therefore, it is possible that there are false positives. Many times the supplements are not updated in a timely manner and this hurts even more with the false positives generated.

Leonid G.
Overall rating
  • Industry: Banking
  • Company size: 201-500 Employees
  • Used Daily for 1+ year
  • Review Source

Overall rating

  • Value for Money
  • Ease of Use
  • Likelihood to recommend 10.0 /10

Nessus - best vulnerability manager

Reviewed on 2021/04/02

We use Nessus and we are very satistied.

Pros

The price. Dashboards. Very fast scans and very detailed reports.

Cons

User group management can be more efficient.

Alternatives Considered

Acunetix and IBM Security QRadar SIEM

Reasons for Switching to Nessus

The price and the functionalities.
Verified Reviewer
Overall rating
  • Industry: Information Technology & Services
  • Company size: 51-200 Employees
  • Used Daily for 2+ years
  • Review Source

Overall rating

  • Value for Money
  • Ease of Use
  • Customer Support
  • Likelihood to recommend 10.0 /10

Most comprehensive tool for security and compliance assesments

Reviewed on 2019/03/21

Best money/capabilities balance.

Pros

Tenable products dictates market standard for securty assesment. Nessus Profesional is part of that family. It has simillar capabilities like Tenable.io but can be run inside your datacenter as a stand alone solution. It's easy to configure, reliable and what's most importand it will give you a hint how to solve every voulnerability detected inside your infrastructure.

Cons

It misses some interesting predefined reports and usefull configuration options comparing to Tenable.io.

Verified Reviewer
Overall rating
  • Industry: Computer Software
  • Company size: 51-200 Employees
  • Used Daily for 1+ year
  • Review Source

Overall rating

  • Value for Money
  • Ease of Use
  • Customer Support
  • Likelihood to recommend 9.0 /10

Best tool in the market for Vulnerability scanning

Reviewed on 2018/08/25

It is very much efficient than any other tools offered by the competitors in scanning.
Overall Value for money solution for VA scans in enterprise

Pros

It has up to date plugins to scan latest vulnerabilities or malwares are in the market.
Plugins are updated every week to cover latest vulnerabilities.
It can scan the scope system based on various standards like PCI DSS and HIPAA which other scanners in the market don't have.
It performs credentials scans which other scanners like Qualys,Openvas doesn’t offer.

Cons

Nessus doesn’t detect any active protection on scope system which can block the credential scan.
It cannot scan device if the 2FA is implemented on the scope system.

Chris E.
Overall rating
  • Industry: Hospital & Health Care
  • Company size: 10 000+ Employees
  • Used Daily for 2+ years
  • Review Source

Overall rating

  • Value for Money
  • Ease of Use
  • Customer Support
  • Likelihood to recommend 9.0 /10

Nessus, Finding all those vulnerabilities!

Reviewed on 2019/09/10

Tenable is one of the best scanners out there to me. Easy to use and easy to hire people with experience in it

Pros

Nessus is great about releasing new plugins for vulns. It's lightweight and has an agent option or a hardware scanner option. The cost is pretty standard.

Cons

The reports that tenable can generate are lack luster at best. We use the API to pull the info we want, but that takes more work and development time than we like

Mohit V.
Overall rating
  • Industry: Computer & Network Security
  • Company size: 11-50 Employees
  • Used Daily for 1+ year
  • Review Source

Overall rating

  • Value for Money
  • Ease of Use
  • Customer Support
  • Likelihood to recommend 9.0 /10

Nessus Vulnerability Scanner

Reviewed on 2019/04/03

Its a good tool but in my personal opinion using the free version of software is enough for testing purposes.

Pros

- Ease of use for non-authenticated scans
- Trusted in case of Network Infrastructure Scanning
- Can scan almost everything on a network
- Can take a subnet or range for scanning in one go

Cons

- Needs improvement in case of web application scan and authenticated scan.
- Very difficult to schedule an authenticated scan for a web application
- There are some other tools that take login URL and landing URL. Meanwhile prevents the logout URL for session termination itself which increses ease for users

Jose a G.
Overall rating
  • Company size: 11-50 Employees
  • Used Monthly for 1+ year
  • Review Source

Overall rating

  • Value for Money
  • Ease of Use
  • Customer Support
  • Likelihood to recommend 10.0 /10

Vulnerability Management from the Pioneers of VM

Reviewed on 2018/06/04

Vulnerabilities across the network, devices and the whole environment. Secyrity needs to be based on several systems that can consolidate data about your security posture and with NEssus is a great place to start when you do not have visibility on what is happening further that your PC and internet.

Pros

Trust on leader on VM market and movement
Plugins updated daily so, threats and breaches can be identified as they are scanned into the environment
Using Nessus Manager you can deploy scanners and agents across subnets, you can schedule multiple scans in your environment
Best in class configuration audit data base for compliance check
Credential and uncredential scans
Agents for sensitive devices or services that can be affected by an active scan or are in transit

Cons

Nessus in the Pro version is limited to one user
Not follow up or comparison between latest scan and recent
IP address Change on the network or location increase the IP count even when it is the same device
reports customizing can be difficult depending on what is expected to have
invasive scan.
you are not aware that a specific device or service can be sensitive to Nessus untill you finish with the service stopped or the performance of a service gets compromised.

Tejas G.
Overall rating
  • Industry: Information Technology & Services
  • Company size: 51-200 Employees
  • Used Monthly for 1+ year
  • Review Source

Overall rating

  • Value for Money
  • Ease of Use
  • Customer Support
  • Likelihood to recommend 9.0 /10

Great vulnerability assessment tool

Reviewed on 2018/09/02

Very good tool to perform vulnerability assessment for home users to business users.

Pros

It supports from simple host discovery scans to detailed vulnerability scans like malware scan, credential path audit. This tool can also perform scan to test the latest vulnerabilities like Meltdown and Spectre and WannaCry ransomware etc.

This vulnerability scanner has almost up-to-date plugins. The plugins are updated almost daily to weekly to scan the latest vulnerabilities in the market.

Nessus scanner can perform the vulnerability scan for various operating systems like: Windows, Amazon linux, CentOS, FreeBSD, MacOS, Redhat, Debian etc

It also supports vulnerability scan for various compliance standards like PCI DSS.

This scanner can also perform credential based scan on the target machine.

The major advantage is, this scanner gives the most accurate vulnerability details about the machine with very few false positives which other scanners in the market fails to do.

Cons

The professional version of this tool is very costly.

It yet doesn’t support credential based scan for machines which have 2 factor authentication implemented on it.

Verified Reviewer
Overall rating
  • Industry: Information Technology & Services
  • Company size: 11-50 Employees
  • Used Daily for 1+ year
  • Review Source

Overall rating

  • Value for Money
  • Ease of Use
  • Customer Support
  • Likelihood to recommend 9.0 /10

Nessus An Excellent Tool For The Vulnerability Management Process Of Any Company.

Reviewed on 2019/01/14

Nessus it’s an excellent tool for the vulnerability management process of any company. Its super easy to use and implement on any network, and the tenable university and the community it’s a plus that make it even easier. There are many way how to export the result of any scan, but the best are in HTML and PDF, because are easy to understand and explain to any person. I really like it and going to continue using it

Pros

That it was really easy to implement and use

Cons

The reports are very basic and need to improve.

Verified Reviewer
Overall rating
  • Industry: Security & Investigations
  • Company size: 1 001-5 000 Employees
  • Used Daily for 2+ years
  • Review Source

Overall rating

  • Ease of Use
  • Customer Support
  • Likelihood to recommend 9.0 /10

Great audit tool

Reviewed on 2018/08/27

After comparing it with other tools, in relation to quality / price it is a great tool beating its competitors in price

Pros

A very low false positive rate and a very intuitive interface

Cons

It would be desirable to make comparisons possible between different audits over time

Verified Reviewer
Overall rating
  • Industry: Computer & Network Security
  • Company size: 201-500 Employees
  • Used Weekly for 6-12 months
  • Review Source

Overall rating

  • Value for Money
  • Ease of Use
  • Customer Support
  • Likelihood to recommend 8.0 /10

Nessus Scan - A tool to start your test with.

Reviewed on 2021/09/25

Great tool to meet sudden deadlines and effective reconn tool for Network penetration testing.

Pros

This software is great for new bees and profressionals in network penetration testing. I would like to share some highlights and good points I feel:
1. The UI is really good and easy to use.
2. The results are shown in an organized manner.
3. Reports can be easily shared with excel exports.
4. Vulebrabilities are prioritized for you with Critical, High, Medium and Low. (CVEs results)
5. Scheduling time and date.
6. Sharing it with the team - nice access management.

Cons

With the product proven to be great, some drawbacks of this product are:
1. False Positives are present, and its not your only tool to rely for a pentest.
2. It is not a web application scanner, its mainly a network scan. So if you are expecting to work like any other web app OWASP scanner, its not.

Ivan M.
Overall rating
  • Company size: 11-50 Employees
  • Used Weekly for 6-12 months
  • Review Source

Overall rating

  • Value for Money
  • Ease of Use
  • Customer Support
  • Likelihood to recommend 10.0 /10

Enterprise-grade vulnerability scanner

Reviewed on 2018/02/27

Nessus provides me with an in-depth overview of the vulnerabilities of every asset in the organization. The vulnerability management system integrated with it makes prioritization very easy, so you can quick work progressively towards a secure environment.

Pros

Very easy to use. Very easy to configure a scan. Very easy to export a report and data about a scan. Very easy to customize scan templates. You can also create your own audit templates, so you can customize this tool for the specific policies of the organization. If you get to know the ins and outs of the scanner, you can get the most value from it.

Cons

Most of the time the documentation is incomplete if you get picky with the use cases. Support via Tenable Support Portal has been very slow lately, it seems like if they had a single person to handle all the support cases they have everyday. It used to be slow, but that's been improved a lot in the latest version I've used (7.0.2).