We performed a comparison between CloudPassage and Qualys VMDR based on real PeerSpot user reviews.
Find out what your peers are saying about Palo Alto Networks, Microsoft, Wiz and others in Cloud Workload Protection Platforms (CWPP)."Key features are the Software Vulnerability Assessment and the CSM, which is the configuration check."
"Policies are very easy to manage on a day-to-day basis."
"The reporting is fine."
"The integrations for this solution are very good. I use a different product for virtual patching of vulnerabilities and Qualys integrates well with that product."
"The vulnerability management feature is what I used the most. It is a good SaaS product. It is easy to use. It has a nice UI where you can see all the assets and vulnerabilities."
"Tech support is helpful."
"The solution shows us classic categories, including high, medium, and low risks. It also shows critical items, and that gives us the advantage of prioritizing things."
"The most valuable features of Qualys VM are its ability to do proper vulnerability assessment. It has a lot of updates for all the vulnerability databases from all over the globe. It's an amazing solution when it comes to the versatility of the features it has. Additionally, the reports are very good. It generates very detailed reports about the vulnerabilities inside the environment"
"Qualys VM had a recent upgrade and the newer version is supporting the cloud."
"Great web application security for scanning."
"The reports and graphs are unintuitive."
"Anything outside of the software vulnerability management and the CSM, things like the GhostPort, need some improvement. The dashboard is in beta. It looks really good, I wish it would come out of beta."
"Of all the advertised functions, I only find two things that really work in my environment, even though I wanted to use all of them. They're not flexible enough to be used."
"In the CSM module the policies are really hard to work with it. It is not very flexible at all. I would suggest that they change that. Right now, the scan is based on the group that the server is in. What happens if the server is in multiple groups?"
"I would like to see more accuracy in detections, better reporting capabilities, and better dashboard download capabilities."
"The tool needs to improve the adding assets and report generation features. I would like to see the policy scan of offline appliances in the product's future releases."
"There's a need to upgrade or fix the potential vulnerability rate. Around 20,000 potential vulnerabilities were showing in Qualys VMDR, but none of the other tools showed them. When we checked, it wasn't the case. Support explained that even small issues were being counted as vulnerabilities, causing issues in our audit. So, the security features could be improved to identify vulnerabilities accurately."
"Some of the older features could be polished instead of focusing on releasing new features."
"I would like to see this solution simplified to work more easily in a multi-cloud environment."
"The only improvement I can think of is on the implementation side. At times it is a bit slow."
"The ability to manage user accounts and give rights to the operator to know about abnormalities of applications is something that needs improvement."
"Qualys VM's vulnerability scan could be improved, especially the number of CVE numbers it can manage at a time."
Earn 20 points
CloudPassage is ranked 41st in Cloud Workload Protection Platforms (CWPP) while Qualys VMDR is ranked 3rd in Risk-Based Vulnerability Management with 77 reviews. CloudPassage is rated 8.0, while Qualys VMDR is rated 8.2. The top reviewer of CloudPassage writes "CloudPassage has a bunch of features. Be sure you understand all of them and how to extract value to your organization". On the other hand, the top reviewer of Qualys VMDR writes "Good visibility but expensive and needs better support". CloudPassage is most compared with , whereas Qualys VMDR is most compared with Tenable Nessus, Tenable Security Center, Rapid7 InsightVM, Microsoft Defender Vulnerability Management and Tenable Vulnerability Management.
We monitor all Cloud Workload Protection Platforms (CWPP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
