Compare Qualys VM vs. Rapid7 Metasploit

Cancel
You must select at least 2 products to compare!
Most Helpful Review
Find out what your peers are saying about Qualys VM vs. Rapid7 Metasploit and other solutions. Updated: September 2020.
437,168 professionals have used our research since 2012.
Quotes From Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros
The usability and overall scan results are good.Picks up weaknesses in our app setups.The scalability is good. The scalability is more than good because it can operate both as a standalone and it can be integrated as part of applications. So that really makes it a very, very versatile solution to have.For us, the most valuable aspect of the solution is the log-sequence feature.It can operate both as a standalone and it can be integrated with other applications, which makes it a very versatile solution to have.Our developers can run the attacks directly from their environments, desktops.The vulnerability scanning option for analyzing the security loopholes on the websites is the most valuable feature of this solution.The automated approach to these repetitive discovery attempts would take days to do manually and therefore it helps reduce the time needed to do an assessment.

More Acunetix Vulnerability Scanner Pros »

It is very easy to use and there are lots of options. We can usually easily go through it and all of the things we want to configure, and we can configure everything to our specifications very easily.It's a good product. After the scan our internet works well. It scans our security posture.What I like about Qualys VM is the dashboard presentation. It's very good.The most valuable features are vulnerability detection and the scanning capability to enable identification of vulnerabilities across our network.Technical support is fantastic.There are fewer false positives when using this solution.Tech support is helpful.It is quite easy to implement.

More Qualys VM Pros »

The reporting on the solution is good.The most valuable feature for us is the support for testing Linux-based web server components.The option to generate phishing emails has proven to be very valuable in understanding the behavior of users.It contains almost all the available exploits and payloads.It's not possible to do penetration testing without being very proficient in Metasploit.

More Rapid7 Metasploit Pros »

Cons
There is room for improvement in website authentication because I've seen other products that can do it much better.Currently only supports web scanning.We want to see how much bandwidth usage it consumes. When we monitor traffic we have issues with the consumption and throttling of the traffic.The solution limits the number of scans. It would be much better if we could have unlimited scans.When monitoring the traffic we always have issues with the bandwidth consumption and the throttling of traffic.Tools that would allow us to work more efficiently with the mobile environment, with Android and iOS.In terms of what needs improvement, the way the licensing model is currently is not very convenient for us because initially, when we bought it, the licensing model was very flexible, but now it restricts us.It would be nice to have a feature to "retest" only a single vulnerability that the customer reports as patched, and delete it from the next scans since it has already been patched.

More Acunetix Vulnerability Scanner Cons »

Sometimes we face a problem with accessing the tool and not getting an expected result. From a technology point of view, they need to look into this.The reporting needs improvement. It should generate much more stuff like field reports.The customer support is very bad.I would like to see this solution more developed and competitive in the Cloud space.It's quite complex on the way it is set up, so it takes a fair bit of time in order to get your head around it in order to deploy it. Once you've deployed it, then you're never confident on the versions of the browsers and the SSL certificates, etc. You have to always go back into Qualys and check.I do not like that all of the data is stored on the cloud.When you want to cover yourself for scalability, you will be charged for the number you place on the scan itself.It is more expensive vs. other products on the market.

More Qualys VM Cons »

The solution should improve the responsiveness of its live technical support.Better automation capabilities would be an improvement.Metasploit cannot be installed on a machine with an antivirus.It is necessary to add some training materials and a tutorial for beginners.The initial setup was a bit "tweaky" for the open-source version.

More Rapid7 Metasploit Cons »

Pricing and Cost Advice
I would say that Acunetix is expensive because there are products on the market with similar features that are equally or better-priced.The costs aren't very expensive. It costs around $3000 or $4000.All things considered, I think it has a good price/value ratio.The pricing and licensing are reasonable to a point. In order to run multiple scans at a time, we are going to have to purchase a 100 count license, which is an overkill. Though, compared to what we were paying for, the cost seems reasonable.When we looked at all other vendors and what they were asking for, to provide a third of what Acunetix was capable of doing, it was an easy decision... But now that it's coming to a cost where it's line with market value, it becomes more of a competition... Acunetix is raising the cost of licensing. It's 3.5 times what we were initially quoted.Acunetix was around the same price as all the other vendors we looked at, nothing special.

More Acunetix Vulnerability Scanner Pricing and Cost Advice »

When you want to cover yourself for scalability, you will be charged for the number you place on the scan itself.It is more expensive than other products on the market.

More Qualys VM Pricing and Cost Advice »

It is expensive. Our license expired, and our company is not thinking to renew because of our budget.I use the open-source version of this product. Pricing is not relevant.

More Rapid7 Metasploit Pricing and Cost Advice »

report
Use our free recommendation engine to learn which Vulnerability Management solutions are best for your needs.
437,168 professionals have used our research since 2012.
Questions from the Community
Top Answer: The scalability is good. The scalability is more than good because it can operate both as a standalone and it can be integrated as part of applications. So that really makes it a very, very versatile… more »
Top Answer: We want to see how much bandwidth usage it consumes. When we monitor traffic we have issues with the consumption and throttling of the traffic.
Top Answer: It's a good product. After the scan our internet works well. It scans our security posture.
Top Answer: I would give the pricing three out of five.
Top Answer: Reporting can be improved more. It should generate much more stuff like field reports. Though the reports generally meet our need we hope we can customize it better.
Ask a question

Earn 20 points

Popular Comparisons
Compared 37% of the time.
Compared 15% of the time.
Compared 13% of the time.
Compared 3% of the time.
Compared 2% of the time.
Compared 57% of the time.
Compared 13% of the time.
Compared 5% of the time.
Also Known As
AcuSensorQualysGuard VMMetasploit
Learn
Acunetix
Qualys
Rapid7
Overview

Acunetix Web Vulnerability Scanner is an automated web application security testing tool that audits your web applications by checking for vulnerabilities like SQL Injection, Cross site scripting, and other exploitable vulnerabilities.

Qualys Vulnerability Management (VM) is a cloud-based service that gives you immediate, global visibility into where your IT systems might be vulnerable to the latest Internet threats and how to protect them. It helps you to continuously identify threats and monitor unexpected changes in your network before they turn into breaches.

Attackers are always developing new exploits and attack methods—Metasploit penetration testing software helps you use their own weapons against them. Utilizing an ever-growing database of exploits, you can safely simulate real-world attacks on your network to train your security team to spot and stop the real thing.

Offer
Learn more about Acunetix Vulnerability Scanner
Learn more about Qualys VM
Learn more about Rapid7 Metasploit
Sample Customers
Joomla!, Digicure, Team Random, Credit Suisse, Samsung, Air New ZealandAgrokor Group, American Specialty Health, American State Bank, Arval, Life:), Axway, Bank of the West, Blueport Commerce, BSkyB, Brinks, CaixaBank, Cartagena, Catholic Health System, CEC Bank, Cegedim, CIGNA, Clickability, Colby-Sawyer College, Commercial Bank of Dubai, University of Utah, eBay Inc., ING Singapore, National Theatre, OTP Bank, Sodexo, WebExCity of Corpus Christi, Diebold, Lumenate, Nebraska Public Power District, Prairie North Regional Health, Apptio, Automation Direct, Bob's Stores, Cardinal Innovations Healthcare Solutions, Carnegie Mellon University
Top Industries
REVIEWERS
Financial Services Firm40%
Comms Service Provider10%
Energy/Utilities Company10%
Insurance Company10%
VISITORS READING REVIEWS
Computer Software Company45%
Comms Service Provider11%
Media Company6%
Government6%
REVIEWERS
Comms Service Provider22%
Financial Services Firm22%
Healthcare Company17%
Manufacturing Company11%
VISITORS READING REVIEWS
Computer Software Company37%
Comms Service Provider13%
Financial Services Firm6%
Media Company6%
VISITORS READING REVIEWS
Computer Software Company37%
Comms Service Provider20%
Media Company5%
K 12 Educational Company Or School5%
Company Size
REVIEWERS
Small Business25%
Midsize Enterprise8%
Large Enterprise67%
VISITORS READING REVIEWS
Small Business29%
Midsize Enterprise5%
Large Enterprise66%
REVIEWERS
Small Business9%
Midsize Enterprise22%
Large Enterprise69%
No Data Available
Find out what your peers are saying about Qualys VM vs. Rapid7 Metasploit and other solutions. Updated: September 2020.
437,168 professionals have used our research since 2012.
Qualys VM is ranked 4th in Vulnerability Management with 10 reviews while Rapid7 Metasploit is ranked 7th in Vulnerability Management with 4 reviews. Qualys VM is rated 8.4, while Rapid7 Metasploit is rated 7.2. The top reviewer of Qualys VM writes "The main purpose was to remove the granularity. It really helped us manage the security of our organization". On the other hand, the top reviewer of Rapid7 Metasploit writes "Straightforward to set up, and helpful for moving from development to production". Qualys VM is most compared with Tenable Nessus, Rapid7 InsightVM, Tenable SC, Dome9 and Darktrace, whereas Rapid7 Metasploit is most compared with Tenable Nessus, Wireshark, Rapid7 InsightVM, Darktrace and Fortinet FortiOS. See our Qualys VM vs. Rapid7 Metasploit report.

See our list of best Vulnerability Management vendors.

We monitor all Vulnerability Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.