We performed a comparison between Rapid7 Metasploit and Tenable Security Center based on real PeerSpot user reviews.
Find out in this report how the two Vulnerability Management solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The greatest advantage of Rapid7 Metasploit is that it is the only system that can directly exploit vulnerabilities on the Metasploit platform."
"Rapid7 Metasploit is a useful product."
"It allows us to concentrate solely on identified vulnerabilities without the hassle of additional setup."
"I don't have any other tools like it, and I always use it when I'm doing a pen test. Metasploit is a great solution for penetration testing,"
"It's not possible to do penetration testing without being very proficient in Metasploit."
"The option to generate phishing emails has proven to be very valuable in understanding the behavior of users."
"It contains almost all the available exploits and payloads."
"Stability-wise, I rate the solution a nine out of ten...Scalability-wise, I rate the solution a nine out of ten."
"The feature we've liked most recently was being able to take the YARA rules from FireEye and put them into Tenable's scan for the most recent SolarWinds exploit. That was really useful."
"This product has the best results in terms of the lowest number of false-positives and false-negatives."
"Tenable.sc's best features are the availability model, accident management, and scoring."
"The most valuable feature of the product is the Assurance Report Card, which gives us an overview of the security poster in just a simple glance."
"Initial setup was pretty straightforward."
"The tool provides us insight into the happens of the network and its hosts. It provides me with a list of hosts."
"The initial setup process is simple."
"The scans are the most valuable aspect of this solution."
"The solution should improve the responsiveness of its live technical support."
"At the time I was using it, the graphical user interface needed some improvements."
"There are numerous outdated exploits in their database that should be updated."
"The open-source version has reporting limitations. You need to develop these capabilities yourself. Built-in reporting is an excellent feature for penetration testing, but it isn't a must-have. The solution could also cover more vulnerabilities. Metasploit has around 10,000 exploits in its library, but more is always better."
"Advanced Infrastructure should be implemented in the next release for better orchestration."
"It is necessary to add some training materials and a tutorial for beginners."
"The solution is not user-friendly and has room for improvement."
"Rapid7 Metasploit can add a GUI feature because it is only available online."
"It's good at creating information, it's good creating dashboards, it's good at creating reports, but if you want to take that reporting metadata and put it into another tool, that is a little bit lacking."
"Deploying Tenable.sc is highly complex because it's an on-prem solution, whereas Tenable.io is cloud-based, so you can go live as soon as you log in. Tenable.sc involves significant integration with other on-prem solutions, and the deployment takes about two to three weeks with the help of a system integrator"
"The product should provide risk-based vulnerability management."
"The solution's user interface has some issues."
"At times we have had the typical bugs."
"If I want to have a very low-managed scan policy, it's a lot of work to create something which is very basic. If I use a tool like Nmap, all I have to do is download it, install it, type in the command, and it's good to go. In Security Center, I have to go through a lot of work to create a policy that's very basic."
"The biggest issue I have with the solution is when I'm using the scanning it picks up the original DNS of that device. That means, before we image it and actually change the DNS to something within our company structure, it'll just be random numbers and letters and Tenable will stick to that DNS for a long time."
"The web application scanning area can be improved."
Rapid7 Metasploit is ranked 11th in Vulnerability Management with 18 reviews while Tenable Security Center is ranked 1st in Vulnerability Management with 48 reviews. Rapid7 Metasploit is rated 7.6, while Tenable Security Center is rated 8.2. The top reviewer of Rapid7 Metasploit writes "Helps find vulnerabilities in a system to determine whether the system needs to be upgraded". On the other hand, the top reviewer of Tenable Security Center writes "A security solution for vulnerability assessment with automated scans". Rapid7 Metasploit is most compared with Tenable Nessus, Pentera, Acunetix, Rapid7 InsightVM and Nucleus, whereas Tenable Security Center is most compared with Tenable Vulnerability Management, Qualys VMDR, Tenable Nessus, Rapid7 InsightVM and Horizon3.ai. See our Rapid7 Metasploit vs. Tenable Security Center report.
See our list of best Vulnerability Management vendors.
We monitor all Vulnerability Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.