Try our new research platform with insights from 80,000+ expert users

BMC TrueSight Vulnerability Management vs Tenable Nessus comparison

Sponsored
 

Comparison Buyer's Guide

Executive Summary

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Zafran Security
Sponsored
Ranking in Vulnerability Management
27th
Average Rating
9.6
Reviews Sentiment
8.1
Number of Reviews
2
Ranking in other categories
Continuous Threat Exposure Management (CTEM) (6th)
BMC TrueSight Vulnerability...
Ranking in Vulnerability Management
64th
Average Rating
7.0
Number of Reviews
1
Ranking in other categories
No ranking in other categories
Tenable Nessus
Ranking in Vulnerability Management
3rd
Average Rating
8.4
Reviews Sentiment
7.3
Number of Reviews
81
Ranking in other categories
No ranking in other categories
 

Featured Reviews

Israel Cavazos Landini - PeerSpot reviewer
Weekly insights and risk analysis facilitate informed security decisions
I appreciate the weekly insights Zafran provides, which include critical topics for networks and IT security, allowing us to evaluate which insights apply to our environment. The organization score feature is valuable to keep the leadership team updated on how our infrastructure fares security-wise. The applicable risk level versus base risk level feature is beneficial because prior to Zafran, we only used the base risk level, but now understand that risk depends on the asset itself. Zafran is an excellent tool.
reviewer1199817 - PeerSpot reviewer
Good features for infrastructure application; lacking in integrations with other software
There is always room for improvement in all products. With BMC I'd like to see the ability to integrate with other software. For example, having a CMDB, access to Qualys, or because we've found something from BMC, to be able to work closely to find a solution. The idea would be that it's all updated from one point automatically. I'm looking for third-party applications and integrations with other software.
HarshBhardiya - PeerSpot reviewer
Provided increased visibility across the organization's servers
The user interface of Tenable Nessus feels outdated and could be more user-friendly. Additionally, the documentation is not well-organized, which can be confusing when searching for solutions or specific information related to Tenable Nessus Professional. The reporting feature could be improved by allowing users to create their own templates instead of relying on predefined ones.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Zafran has become an indispensable tool in our cybersecurity arsenal."
"Zafran is an excellent tool."
"Takes reports from other vulnerabilities."
"The scanning capabilities are most valuable when compared to Nessus."
"The vulnerability scanner is the most valuable feature."
"We have around 500 virtual machines. Therefore, we conduct monthly scans and open tickets for our developers to address identified vulnerabilities. These scans cover the servers, other network equipment, and appliances in our infrastructure."
"Tenable Nessus is cheap and flexible."
"I like the fact that it was not expensive. I like that it's user-friendly."
"The results are not that bad, but the key selling point is that it is an affordable tool set."
"Ease of reviewing scores, identifying vulnerabilities, and getting information on them."
"Easy to set up vulnerability scanner with good stability and a responsive technical support team."
 

Cons

"Initially, we were somewhat concerned about the scalability of Zafran due to our large asset count and the substantial amount of information we needed to process."
"No third-party applications or integrations with additional software solutions."
"There is room, overall, for improvement in the way it groups the workstations and the way it detects, when the vulnerability is scanned. Even when we would run a new scan, if it was an already existing vulnerability, it wouldn't put a new date on it."
"Remediation needs improvement."
"They should try to create an all-in-one solution."
"We would like to have the option of using the solution for the cloud as well as on-premises with the same license at the same time. That would be very helpful."
"Model OS costs (and its segregation schema for individual modules)."
"The product must be more comprehensive."
"We feel the solution's technical support to be very bad."
"Sometimes, the categorization for clients was tricky at first, however, they eventually got used to it."
 

Pricing and Cost Advice

Information not available
Information not available
"Tenable Nessus is affordable."
"The price is reasonable."
"Cost-wise, it's an affordable tool."
"Tenable Nessus needs to be licensed. We own a license for the security center and that license is charged by the number of IP addresses that you can scan. You're allowed to have as many scanners as you want and there's no license for the number of scanners. We have a bunch of Nessus scanners out there, and as long as we're comfortable with staying under that IP address limit, that's really all we have to be concerned about."
"The cost is around $4,300 per year. Use is unlimited. You don't pay more if you want to use it for another IP."
"The price of Tenable Nessus is too expensive for each service center."
"In general, it is extremely expensive."
"Its pricing is great and can't be improved. It is very cheap. It is less than 2,000 pounds a license, and you can't really ask for more. It has unlimited IPs and unlimited scans. There are no particular pricing constraints. The only additional cost is the inherent cost of the people to actually review the actual scans."
report
Use our free recommendation engine to learn which Vulnerability Management solutions are best for your needs.
844,944 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
14%
Financial Services Firm
11%
University
6%
Retailer
6%
No data available
Educational Organization
41%
Computer Software Company
9%
Financial Services Firm
7%
Government
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
No data available
 

Questions from the Community

What is your experience regarding pricing and costs for Zafran Security?
Pricing for Zafran Security is not expensive. We have a contract for five years, and the cost is lower than other too...
What needs improvement with Zafran Security?
I would like to see an integration with Check Point firewalls. It's essential for us and they are currently working o...
What is your primary use case for Zafran Security?
We use Zafran Security for threat prioritization. We establish priority to understand which risks should be patched o...
Ask a question
Earn 20 points
How would you choose between Rapid7 InsightVM and Tenable Nessus?
You have full visibility across cloud, network, virtual, and containerized infrastructures with Rapid7 Insight VM. Yo...
What's the difference between Tenable Nessus and Tenable.io Vulnerability Management?
Tenable Nessus is a vulnerability assessment solution that is both easy to deploy and easy to manage. The design of ...
What do you like most about Tenable Nessus?
We have around 500 virtual machines. Therefore, we conduct monthly scans and open tickets for our developers to addre...
 

Also Known As

No data available
TrueSight Vulnerability Management, SecOps Response Service, BladeLogic Threat Director
No data available
 

Overview

 

Sample Customers

Information Not Available
Online Business Systems
Bitbrains, Tesla, Just Eat, Crosskey Banking Solutions, Covenant Health, Youngstown State University
Find out what your peers are saying about Wiz, Qualys, Tenable and others in Vulnerability Management. Updated: March 2025.
844,944 professionals have used our research since 2012.