Most Helpful Review
Researched Tenable Nessus but chose Rapid7 Metasploit: The integration between Nmap, the database and Metasploit saves a lot of time. The initial setup was a bit tricky.
We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
"It's not possible to do penetration testing without being very proficient in Metasploit."
"The option to generate phishing emails has proven to be very valuable in understanding the behavior of users."
"It contains almost all the available exploits and payloads."
"The most valuable feature for us is the support for testing Linux-based web server components."
"The reporting on the solution is good."
"All of the features are great."
"We looked at Tenable, Qualys and Rapid7. We found Tenable was the best of all three."
"Tenable Nessus streamlines the process of scanning for our organization."
"I find the features that are most valuable are the policies that help us identify the vulnerabilities. These policies are then used for scanning instabilities and then identifying the particular vulnerabilities."
"The solution is very stable."
"The most valuable feature is the breadth of vulnerabilities that it finds. It's able to find across a lot of different platforms and operating systems. It's also able to combine local testing with network-based testing."
"Nessus is good at finding out what nodes you have in place. It will then provide you a report, by node, of what the vulnerabilities are. It does it quickly and stealthfully."
"It also has an executive report where you don't have to provide the client all the detail for them to sift though. But if they wish to dig through the detail they can."
"Among the most valuable features are scanning for vulnerabilities and the reporting. The reporting templates are okay. I like that I can see all the hosts with different vulnerabilities."
"The initial setup was a bit "tweaky" for the open-source version."
"Metasploit cannot be installed on a machine with an antivirus."
"It is necessary to add some training materials and a tutorial for beginners."
"Better automation capabilities would be an improvement."
"The solution should improve the responsiveness of its live technical support."
"At the time I was using it, the graphical user interface needed some improvements."
"From my point of view the solution basically is not for the big enterprise."
"This is still a maturing product. Tenable is only a scanner for one ability, while other solutions like Rapid7 have more tools for verification. We still have to manually verify to see if the vulnerability is a false positive or not."
"We have had some false positives in the past, which we hope can improve in the future."
"I would like to see an improvement in the ranking of high, medium and low vulnerability."
"There is room for improvement in finishing the transition to the cloud. We'd like to see them keep on improving the Tenable.io product, so that we can migrate to it entirely, instead of having to keep the Tenable.sc on-prem product."
"One area with room for improvement is instead of there just being a PDF format for output, I'd like the option of an Excel spreadsheet, whereby I could better track remediation efforts and provide reporting off of that."
"We use credentialed scans. They need more permissions and more changes or settings on Windows and Linux."
"There is room, overall, for improvement in the way it groups the workstations and the way it detects, when the vulnerability is scanned. Even when we would run a new scan, if it was an already existing vulnerability, it wouldn't put a new date on it."
Pricing and Cost Advice
"I use the open-source version of this product. Pricing is not relevant."
"It is expensive. Our license expired, and our company is not thinking to renew because of our budget."
"The great advantage with Rapid7 Metasploit, of course, is that it's free."
"The pricing is much more manageable versus other products."
"The price of Tenable Nessus is much more competitive versus other solutions on the market."
"I think the price is fairly affordable. It provides a license that is fair."
Questions from the Community
Ask a question
Earn 20 points
out of 36 in Vulnerability Management
Average Words per Review
out of 36 in Vulnerability Management
Average Words per Review
Compared 12% of the time.
Compared 11% of the time.
Compared 7% of the time.
Compared 6% of the time.
Compared 3% of the time.
Compared 21% of the time.
Compared 20% of the time.
Compared 19% of the time.
Compared 18% of the time.
Compared 4% of the time.
Also Known As
|Rapid7||Tenable Network Security|
Attackers are always developing new exploits and attack methods—Metasploit penetration testing software helps you use their own weapons against them. Utilizing an ever-growing database of exploits, you can safely simulate real-world attacks on your network to train your security team to spot and stop the real thing.
Nessus Professional is the industry’s most widely deployed assessment solution for identifying the vulnerabilities, configuration issues, and malware that attackers use to penetrate your, or your customer's network. With the broadest coverage, the latest intelligence, rapid updates, and an easy-to-use interface, Nessus offers an effective and comprehensive vulnerability scanning package for one low cost.
Learn more about Rapid7 Metasploit
Learn more about Tenable Nessus
|City of Corpus Christi, Diebold, Lumenate, Nebraska Public Power District, Prairie North Regional Health, Apptio, Automation Direct, Bob's Stores, Cardinal Innovations Healthcare Solutions, Carnegie Mellon University||Bitbrains, Tesla, Just Eat, Crosskey Banking Solutions, Covenant Health, Youngstown State University|
Comms Service Provider32%
Computer Software Company26%
K 12 Educational Company Or School4%
Financial Services Firm25%
Comms Service Provider8%
Computer Software Company30%
Comms Service Provider21%
Rapid7 Metasploit is ranked 7th in Vulnerability Management with 5 reviews while Tenable Nessus is ranked 1st in Vulnerability Management with 14 reviews. Rapid7 Metasploit is rated 7.4, while Tenable Nessus is rated 8.6. The top reviewer of Rapid7 Metasploit writes "Straightforward to set up, and helpful for moving from development to production". On the other hand, the top reviewer of Tenable Nessus writes "Saves me significant time when putting together reports for compliance agencies". Rapid7 Metasploit is most compared with Wireshark, Rapid7 InsightVM, Qualys VM, Darktrace and Acunetix Vulnerability Scanner, whereas Tenable Nessus is most compared with Tenable.io Vulnerability Management, Rapid7 InsightVM, Qualys VM, Tenable SC and Tripwire IP360. See our Rapid7 Metasploit vs. Tenable Nessus report.
See our list of best Vulnerability Management vendors.
We monitor all Vulnerability Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.