We just raised a $30M Series A: Read our story

Compare Imperva Web Application Firewall vs. Tenable.io Web Application Scanning

Cancel
You must select at least 2 products to compare!
Quotes From Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros
"If you are using the appliance as opposed to the virtual deployment, it can stand as the network layer-two and provide real transparency.""Its inline transferring mode is the most valuable because it is 100% transparent. When you change the IP, there is no change on the network side. If you can't and want to try to reach an IP, you can reach the server IP. There are many other advanced security features in it. The smallest appliances of Imperva can handle the highest traffic at a customer site. For example, a smaller appliance from Imperva can provide you the same security as an F5 product.""The most important feature I have found to be the ease in how to do the backup and restores.""The solution has been quite stable. I have not seen any bugs at all.""The solution can scale.""The solution is stable.""It has fewer false positives"

More Imperva Web Application Firewall Pros »

"Our customers adopt this solution because of the replication testing and the vulnerability assessment it can do. It is a multi-faceted product.""The most valuable feature is the reporting, which provides a good level of detail with respect to vulnerabilities.""Tenable.io Web Application Scanning is very easy to use."

More Tenable.io Web Application Scanning Pros »

Cons
"The user interface could be better.""They can provide an option to create reports, automatically import the entire report, and create rules again. In a real-life crisis, it would be helpful to be able to import a report and generate security rules from that report. I should be able to create a simple query and import the reports automatically. It can maybe also tell us the format of the report.""The process to upgrade from one version to another can be a lot simpler than it is currently.""Sometimes our web application firewall will slow down.""In the past, I have bugs on the WAF. I've contacted Imperva about them. Future releases should be less buggy.""I loved the approach of the cloud. The cloud has a lot of new features, like advanced web protection and DDoS protection. If those could also be on-boarded onto the on-prem versions, that would be ideal. They need to pay attention to both deployment options and not just favor one.""The support for the on-premises version needs improvement."

More Imperva Web Application Firewall Cons »

"I would like for them to add proxy filtering, where you can transfer and alter the package. It is fully automated. Other web application testers programs are actually proxy software, and the proxy software gives you the flexibility of modifying the outgoing package, which will actually help you in exploiting any vulnerability in detail.""It would be great if there were a dashboard that is more user-friendly.""The reporting has a very limited customization capability."

More Tenable.io Web Application Scanning Cons »

Pricing and Cost Advice
"The price of this solution is a little bit high compared to competitors.""There are some licenses that you have to buy to use some features. Its price could be better. Price is always important because, at the end of the day, customers have a budget. If you can meet the budget, you can sell, and if you don't, you cannot sell.""There is a license for this solution and we purchase the license annually with no additional fees.""There are a couple of different licensing models."

More Imperva Web Application Firewall Pricing and Cost Advice »

"The pricing is okay.""It follows the same licensing scheme as Tenable.io and Tenable. sc."

More Tenable.io Web Application Scanning Pricing and Cost Advice »

report
Use our free recommendation engine to learn which Web Application Firewall (WAF) solutions are best for your needs.
543,089 professionals have used our research since 2012.
Questions from the Community
Top Answer: For ADC, any ADC can do a good job. But in case if you want to add WAF functionality to the same ADC hardware you have to look for other ADC's like F5, Imperva, Radware, Fortinet, etc. 
Top Answer: You can have a look to Imperva Cloud WAF, the anti-DDoS mitigation is under 1s and works very well. I observed a lot of DDoS attacks that were well managed (even not seen by the customer) by Imperva… more »
Top Answer: Imperva is a strong choice, given their security focus and ongoing R&D into the product in areas such as bot management.
Top Answer: Tenable.io Web Application Scanning is very easy to use.
Top Answer: It follows the same licensing scheme as Tenable.io and Tenable SC. A separate license is required for support. I can't be certain, but I believe the fees are determined by the number of IP addresses… more »
Top Answer: The reporting in Tenable.io Web Application Scanning is not as good as the reporting in Tenable SC. Tenable SC's reporting is extremely powerful. The reporting has a very limited customization… more »
Ranking
Views
6,628
Comparisons
5,377
Reviews
7
Average Words per Review
490
Rating
9.1
21st
Views
4,013
Comparisons
3,427
Reviews
2
Average Words per Review
334
Rating
7.5
Comparisons
Learn More
Overview

Web application attacks deny services and steal sensitive data. Imperva Web Application Firewall (WAF) analyzes and inspects requests coming in to applications and stops these attacks.

Protect your applications in the cloud and on-premises with the same set of security policies and management capabilities. Safely migrate apps while maintaining full protection.

Deploy Imperva WAF on-premises, in AWS and Azure, or as a cloud service itself. Easily meet the specific security and service level requirements of individual applications.

Imperva WAF protects against the most critical web application security risks: SQL injection, cross-site scripting, illegal resource access, remote file inclusion, and other OWASP Top 10 and Automated Top 20 threats. Imperva security researchers continually monitor the threat landscape and update Imperva WAF with the latest threat data.

Tenable.io Web Application Scanning safely, accurately and automatically scans your web applications, providing deep visibility into vulnerabilities and valuable context to prioritize remediation.

Offer
Learn more about Imperva Web Application Firewall
Learn more about Tenable.io Web Application Scanning
Sample Customers
BlueCross BlueShield, eHarmony, EMF Broadcasting, GE Healthcare, Metro Bank, The Motley Fool, Siemens
IMDEX
Top Industries
VISITORS READING REVIEWS
Computer Software Company27%
Comms Service Provider23%
Financial Services Firm9%
Media Company7%
VISITORS READING REVIEWS
Computer Software Company25%
Comms Service Provider16%
Government9%
Financial Services Firm7%
Company Size
REVIEWERS
Small Business61%
Midsize Enterprise13%
Large Enterprise26%
No Data Available
Find out what your peers are saying about Fortinet, Microsoft, Amazon and others in Web Application Firewall (WAF). Updated: October 2021.
543,089 professionals have used our research since 2012.

Imperva Web Application Firewall is ranked 6th in Web Application Firewall (WAF) with 7 reviews while Tenable.io Web Application Scanning is ranked 21st in Application Security with 3 reviews. Imperva Web Application Firewall is rated 9.2, while Tenable.io Web Application Scanning is rated 7.6. The top reviewer of Imperva Web Application Firewall writes "Simple to maintain, easy to configure, and easy to scale". On the other hand, the top reviewer of Tenable.io Web Application Scanning writes "Good reporting and integration, but it needs a user-friendly dashboard". Imperva Web Application Firewall is most compared with AWS WAF, F5 BIG-IP Local Traffic Manager (LTM), Imperva Incapsula, Microsoft Azure Application Gateway and Cloudflare, whereas Tenable.io Web Application Scanning is most compared with PortSwigger Burp Suite Professional, Acunetix by Invicti, Qualys Web Application Scanning, Veracode and Micro Focus Fortify on Demand.

We monitor all Web Application Firewall (WAF) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.