Nessus (BYOL)
Tenable, Inc.External reviews
292 reviews
from
External reviews are not included in the AWS star rating for the product.
Clean Interface and Simple Use.
What do you like best about the product?
Nessus is Simple and forward. The set up is easy enough for most people to complete. The user interface is clean and not bombarded with tons of bells and whistles that can sometimes be overwhelming.
What do you dislike about the product?
Only Downside can be the scan time, but that is also dependent on equipment and environment.
What problems is the product solving and how is that benefiting you?
Nessus helps me identify which assets need to be patched and allows me to easily rescan them after fixes have been applied. I can also pull a few reports
Reliable & Thorough Vulnerability Scanner – With a Few Quirks
What do you like best about the product?
Comprehensive vulnerability detection – Covers a wide range of known CVEs, misconfigurations, and compliance issues.
Low false positive rate – Findings are generally accurate, saving time on unnecessary triage.
Regular plugin updates – Constantly updated with new vulnerabilities and checks.
Flexible scan options – Supports credentialed, uncredentialed, web app, compliance, and custom scan policies.
Actionable remediation guidance – Reports often include step-by-step fixes and CVSS scoring.
Easy setup for standard scans – Basic scans are quick to configure and run.
Widely used and trusted – Well-established reputation in cybersecurity and vulnerability management.
Nessus supports / enables a variety of integrations, mostly via its APIs, export features, and plugins. Key categories include:
Low false positive rate – Findings are generally accurate, saving time on unnecessary triage.
Regular plugin updates – Constantly updated with new vulnerabilities and checks.
Flexible scan options – Supports credentialed, uncredentialed, web app, compliance, and custom scan policies.
Actionable remediation guidance – Reports often include step-by-step fixes and CVSS scoring.
Easy setup for standard scans – Basic scans are quick to configure and run.
Widely used and trusted – Well-established reputation in cybersecurity and vulnerability management.
Nessus supports / enables a variety of integrations, mostly via its APIs, export features, and plugins. Key categories include:
What do you dislike about the product?
Costs can scale quickly – Advanced features and larger environments often require premium licensing.
UI and reporting could be better – Custom reports and dashboard features are somewhat limited.
Steep learning curve for advanced use – Complex scans (e.g., with credentials or web app auth) require deeper technical knowledge.
Authenticated and web app scanning can be finicky – May need fine-tuning to work correctly with complex login flows.
Not ideal for full lifecycle VM – Lacks built-in asset management or long-term trend analysis unless integrated with Tenable.io or Tenable.sc.
Performance overhead on large networks – Can slow down scanning or miss things if not properly resourced.
UI and reporting could be better – Custom reports and dashboard features are somewhat limited.
Steep learning curve for advanced use – Complex scans (e.g., with credentials or web app auth) require deeper technical knowledge.
Authenticated and web app scanning can be finicky – May need fine-tuning to work correctly with complex login flows.
Not ideal for full lifecycle VM – Lacks built-in asset management or long-term trend analysis unless integrated with Tenable.io or Tenable.sc.
Performance overhead on large networks – Can slow down scanning or miss things if not properly resourced.
What problems is the product solving and how is that benefiting you?
The Problem Nessus Solves-
Unpatched Vulnerabilities
Misconfigurations
Compliance Gaps
Lack of Visibility into Network Assets
Manual Security Workflows
Benifits--
Reduced exposure to attacks by fixing vulnerabilities before they’re exploited.
Faster, more confident patching thanks to prioritized and verified vulnerability data.
Audit-ready reporting for security and compliance frameworks.
Improved collaboration between security and IT with actionable reports.
Better resource allocation by focusing on real risks, not just raw vulnerability counts.
Time savings through automation and integration with other tools.
Peace of mind — knowing that your environment is continuously being checked against the latest threats.
Unpatched Vulnerabilities
Misconfigurations
Compliance Gaps
Lack of Visibility into Network Assets
Manual Security Workflows
Benifits--
Reduced exposure to attacks by fixing vulnerabilities before they’re exploited.
Faster, more confident patching thanks to prioritized and verified vulnerability data.
Audit-ready reporting for security and compliance frameworks.
Improved collaboration between security and IT with actionable reports.
Better resource allocation by focusing on real risks, not just raw vulnerability counts.
Time savings through automation and integration with other tools.
Peace of mind — knowing that your environment is continuously being checked against the latest threats.
How Nessus helps in security audits
What do you like best about the product?
Nessus helps organizations during the auditing process by providing clear reports of the vulnerabilities as they are found during the scanning. The agent helps detect vulnerable software, misconfigured settings and other security-related issues like patches. It provides the alert along with a CVE score which helps to identify the criticality and impact of the vulnerability on the organization's security. It shows the vulnerability which really needs the attention of the security team and gives accurate scanning and provides the view that which vulnerabilities should be patched first. Nessus plugin contains the vulnerability information with the remediation action which brings easy for the security team to remediate the vulnerability easily.
What do you dislike about the product?
Sometimes when we are scanning the vulnerabilities in a large environment it takes time like 2-3 days to find all the vulnerabilities of the whole environment. The scanning requires downtime from the organization so that it does not affect the production environment as sometimes it brings high traffic which interrupts the production environment.
What problems is the product solving and how is that benefiting you?
This tool, Tenable Nessus, backs the organization on its way to strengthening its cybersecurity defenses through continuous network scanning for vulnerabilities, including zero-day threats and misconfigurations, such that timely remediation can be enacted to minimize the risk of a possible breach. It allows organizations to comply with various regulations/audits (e.g., PCI DSS, HIPAA) through automated audits and real-time reporting, thereby saving organizations from penalties and maintaining the trust of their stakeholders. Therefore, it gives organizations insight into present risk prioritization and integrates into IT workflows to optimize resource allocation, reduce operational overhead, and act as a constructive tool in an organization's long-term perspective to enhance security.
Tenable Nessus vulnerability manager
What do you like best about the product?
The platform is very intuitive, it is easy to operate without prior knowledge, and additionally, the reliability of the results obtained at the vulnerability level is very accurate. The reports are easy to interpret and generate high value for the company in decision-making.
What do you dislike about the product?
That the technology is still On-Premises and this leads to infrastructure expenses, which generates additional costs for the organization and depreciation of this used hardware.
What problems is the product solving and how is that benefiting you?
Identification of exploitable vulnerabilities, recognition of the infrastructure, and information for their mitigation.
Generation of managerial reports.
Generation of managerial reports.
Nessus is a great tool for vulnerability scanning and remediation guidance
What do you like best about the product?
Nessus is a powerful tool with extensive reporting and automation.
What do you dislike about the product?
I haven't found anything to dislike about Nessus.
What problems is the product solving and how is that benefiting you?
Tenable Nessus scans our external and internal network resources, analyzes vulnerabilities and provides guidance on mitigating those risks. Scheduled scan results are sent to our team to analyze and respond accordingly.
Tenable Nessus
What do you like best about the product?
Tenable Nessus has been the industry standard for many years. This is because it will do everything that you need it to do while scanning your infrastructure.
What do you dislike about the product?
Nessus may require some technology knowledge higher than a normal user.
What problems is the product solving and how is that benefiting you?
Nessus shines a light on the short comings of some security configurations in our environment.
Nessus Professional has the best price/coverage ratio of the industry
What do you like best about the product?
Tenable Nessus Professional is widely praised for several key features that make it a preferred choice for vulnerability management BUT I want to focus my review on why it make sense for you if you have a lot of IP to scan.
Most of the scanners have licenses per IP, so if you have wide ip ranges, licenses fee would be astronomious.
You will need to accomodate the limited reporting and vulnerability management feature of the proffessional version.
Most of the scanners have licenses per IP, so if you have wide ip ranges, licenses fee would be astronomious.
You will need to accomodate the limited reporting and vulnerability management feature of the proffessional version.
What do you dislike about the product?
Nessus Professional need some good process OR automation to get the most of it as you dont have any 'quality of life' feature like dashboard, tracking and limited automation.
What problems is the product solving and how is that benefiting you?
Tenable Nessus solves problems related to cybersecurity, primarily by helping organizations identify vulnerabilities in their networks, systems, and applications. The benefits include enhanced security and compliance.
Great Tool
What do you like best about the product?
The Nessus scans give us insight into areas we might have vunerabilities
What do you dislike about the product?
The past scans can take up disk space. I haven't found a good way to automatically remove the old ones.
What problems is the product solving and how is that benefiting you?
Nessus scans our systems for vulnerabilities. We are able to prioritize our updates from the scans.
Smooth Experience
What do you like best about the product?
I started using Nessus as a undergrad student and it was so easy that I could run scans without any tutorials.
What do you dislike about the product?
There is nothing to like about it. Although the UI can be modernise
What problems is the product solving and how is that benefiting you?
I learnt how to use Vulnerability scans to find out threats
Grat vulnerability scanning tool
What do you like best about the product?
Its reporting contains wonderful useful details and easy to understand. This tool also help to get refence link for reported vulnerabilty. support from vendor in really awesome.
What do you dislike about the product?
while selecting License need to bebit careful, as required features needs to available.
What problems is the product solving and how is that benefiting you?
it is helping to scan vulnerability in my hybrid environment. also this is integrayed with HCL BigFix.
showing 1 - 10