Compare AWS WAF vs. Tenable.io Web Application Scanning

Cancel
You must select at least 2 products to compare!
Most Helpful Review
Use Tenable.io Web Application Scanning? Share your opinion.
Find out what your peers are saying about Fortinet, Amazon, Imperva and others in Web Application Firewall (WAF). Updated: October 2020.
447,439 professionals have used our research since 2012.
Quotes From Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros
"The most valuable feature is the security, making sure that files are protected, preventing unauthorized users from accessing the system.""The most valuable feature is the way it blocks threats to external applications.""It's simple, easy to use.""It is a one-click WAF with no effort needed.""It is Amazon. Everything is scalable. It is beyond what we need.""The customized billing is the most valuable feature.""The initial setup was very straightforward. Deployment took about ten minutes or less.""The ability to take multiple data sets and match those data sets together is the solution's most valuable feature. The data lake that comes with it is very useful because that allows us to match data sets with different configurations that we wouldn't normally be able to match."

More AWS WAF Pros »

"Our customers adopt this solution because of the replication testing and the vulnerability assessment it can do. It is a multi-faceted product.""The most valuable feature is the reporting, which provides a good level of detail with respect to vulnerabilities."

More Tenable.io Web Application Scanning Pros »

Cons
"They have to do more to improve, to innovate more features. They need to increase the security. It has to be more active in detecting threats.""In a future release I would like to see automation. There's no interaction between the applications and that makes it tedious. We have to do the preparation all over again for each of our other applications.""The user experience, the interface, is lacking. Sometimes it's hard to find certain areas that it has alerted on.""We need more support as we go global.""In a future release of this solution, I would like to see additional management features to make things simpler.""They should work to define more threats, add more security, and make it more compliant with more security companies.""The solution is cloud-based, and therefore the billing model that comes with it could be more intuitive, in my opinion. It's very easy to not fully understand how you tag things for billing and then you can quite easily run up a high bill without realizing it. The solution needs to be more intuitive around the tagging system, which enables the billing. Right now, I have a cloud architect that does that on our behalf and it isn't something that a business user could use because it still requires quite a lot of technical knowledge to do effectively.""For now, there is no feature to protect against attack of the bad bots"

More AWS WAF Cons »

"I would like for them to add proxy filtering, where you can transfer and alter the package. It is fully automated. Other web application testers programs are actually proxy software, and the proxy software gives you the flexibility of modifying the outgoing package, which will actually help you in exploiting any vulnerability in detail.""It would be great if there were a dashboard that is more user-friendly."

More Tenable.io Web Application Scanning Cons »

Pricing and Cost Advice
"It's an annual subscription.""There are no costs in addition to the standard licensing fees.""There are different scale options available for WAF.""AWS is not that costly by comparison. They are maybe close to $40 per month. I think it was between $29 or $39.""It has a variable pricing scheme.""We are kind of doing a POC comparison to see what works best. Pricing-wise, AWS is one of the most attractive ones. It is fairly cheap, and we like the pricing part. We're trying to see what makes more sense operation-wise, license-wise, and pricing-wise."

More AWS WAF Pricing and Cost Advice »

"The pricing is okay."

More Tenable.io Web Application Scanning Pricing and Cost Advice »

report
Use our free recommendation engine to learn which Web Application Firewall (WAF) solutions are best for your needs.
447,439 professionals have used our research since 2012.
Questions from the Community
Top Answer: The most valuable aspect is that it protects our code. It's a bit difficult to overwrite code in our application. It also protects against threats.
Top Answer: The price of the product is fair enough and one of the product's advantages. Their price is good compared to other vendors.
Top Answer: Sometimes it's a bit difficult to check the rules because when you apply a rule, sometimes it's too much and we need to rewrite the rules and make compromises on the rules because it will block too… more »
Top Answer: Our customers adopt this solution because of the replication testing and the vulnerability assessment it can do. It is a multi-faceted product.
Top Answer: I would like for them to add intervening proxy, whereby you can alter the get/put requests. It is fully automated. Other web application testers programs are actually proxy software, and the proxy… more »
Top Answer: I would rate it an eight out of ten. To make it a ten, I would like for there to be more flexibility for the testers.
Ranking
Views
8,818
Comparisons
7,283
Reviews
13
Average Words per Review
500
Avg. Rating
7.7
20th
Views
2,132
Comparisons
1,842
Reviews
2
Average Words per Review
334
Avg. Rating
7.5
Popular Comparisons
Compared 11% of the time.
Compared 10% of the time.
Compared 7% of the time.
Also Known As
AWS Web Application Firewall
Learn
Amazon
Tenable Network Security
Overview

AWS WAF is a web application firewall that helps protect your web applications from common web exploits that could affect application availability, compromise security, or consume excessive resources. AWS WAF gives you control over which traffic to allow or block to your web applications by defining customizable web security rules. You can use AWS WAF to create custom rules that block common attack patterns, such as SQL injection or cross-site scripting, and rules that are designed for your specific application. New rules can be deployed within minutes, letting you respond quickly to changing traffic patterns. Also, AWS WAF includes a full-featured API that you can use to automate the creation, deployment, and maintenance of web security rules.

Tenable.io Web Application Scanning safely, accurately and automatically scans your web applications, providing deep visibility into vulnerabilities and valuable context to prioritize remediation.

Offer
Learn more about AWS WAF
Learn more about Tenable.io Web Application Scanning
Sample Customers
eVitamins, 9Splay, Senao InternationalIMDEX
Top Industries
VISITORS READING REVIEWS
Computer Software Company30%
Media Company19%
Comms Service Provider16%
Financial Services Firm5%
VISITORS READING REVIEWS
Computer Software Company25%
Comms Service Provider16%
Government8%
Healthcare Company6%
Company Size
REVIEWERS
Small Business20%
Midsize Enterprise33%
Large Enterprise47%
No Data Available
Find out what your peers are saying about Fortinet, Amazon, Imperva and others in Web Application Firewall (WAF). Updated: October 2020.
447,439 professionals have used our research since 2012.
AWS WAF is ranked 2nd in Web Application Firewall (WAF) with 14 reviews while Tenable.io Web Application Scanning is ranked 20th in Application Security with 2 reviews. AWS WAF is rated 7.6, while Tenable.io Web Application Scanning is rated 7.6. The top reviewer of AWS WAF writes "Use this product to make it possible to deploy web applications securely". On the other hand, the top reviewer of Tenable.io Web Application Scanning writes "Good reporting and integration, but it needs a user-friendly dashboard". AWS WAF is most compared with Microsoft Azure Application Gateway, F5 BIG-IP, Akamai Kona Site Defender, Imperva SecureSphere Web Application Firewall and Imperva Incapsula, whereas Tenable.io Web Application Scanning is most compared with PortSwigger Burp, Acunetix Vulnerability Scanner, Checkmarx, Micro Focus Fortify on Demand and F5 BIG-IP.

See our list of .

We monitor all Web Application Firewall (WAF) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.