Try our new research platform with insights from 80,000+ expert users

BMC TrueSight Vulnerability Management vs Tenable Nessus comparison

Sponsored
 

Comparison Buyer's Guide

Executive Summary

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Zafran Security
Sponsored
Ranking in Vulnerability Management
27th
Average Rating
9.6
Reviews Sentiment
8.1
Number of Reviews
3
Ranking in other categories
Continuous Threat Exposure Management (CTEM) (6th)
BMC TrueSight Vulnerability...
Ranking in Vulnerability Management
64th
Average Rating
7.0
Number of Reviews
1
Ranking in other categories
No ranking in other categories
Tenable Nessus
Ranking in Vulnerability Management
3rd
Average Rating
8.4
Reviews Sentiment
7.3
Number of Reviews
81
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of April 2025, in the Vulnerability Management category, the mindshare of Zafran Security is 0.4%. The mindshare of BMC TrueSight Vulnerability Management is 0.1%, down from 0.2% compared to the previous year. The mindshare of Tenable Nessus is 10.2%, down from 13.4% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Vulnerability Management
 

Featured Reviews

Israel Cavazos Landini - PeerSpot reviewer
Weekly insights and risk analysis facilitate informed security decisions
I appreciate the weekly insights Zafran provides, which include critical topics for networks and IT security, allowing us to evaluate which insights apply to our environment. The organization score feature is valuable to keep the leadership team updated on how our infrastructure fares security-wise. The applicable risk level versus base risk level feature is beneficial because prior to Zafran, we only used the base risk level, but now understand that risk depends on the asset itself. Zafran is an excellent tool.
reviewer1199817 - PeerSpot reviewer
Good features for infrastructure application; lacking in integrations with other software
There is always room for improvement in all products. With BMC I'd like to see the ability to integrate with other software. For example, having a CMDB, access to Qualys, or because we've found something from BMC, to be able to work closely to find a solution. The idea would be that it's all updated from one point automatically. I'm looking for third-party applications and integrations with other software.
HarshBhardiya - PeerSpot reviewer
Provided increased visibility across the organization's servers
The user interface of Tenable Nessus feels outdated and could be more user-friendly. Additionally, the documentation is not well-organized, which can be confusing when searching for solutions or specific information related to Tenable Nessus Professional. The reporting feature could be improved by allowing users to create their own templates instead of relying on predefined ones.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Zafran has become an indispensable tool in our cybersecurity arsenal."
"Zafran is an excellent tool."
"We are able to see the real risk of a vulnerability on our environment with our security tools."
"Takes reports from other vulnerabilities."
"The most valuable feature of Tenable Nessus is website scanning."
"With the Tenable Nessus enterprise edition, you have unlimited licenses to scan the device."
"Nessus is good at finding out what nodes you have in place. It will then provide you a report, by node, of what the vulnerabilities are. It does it quickly and stealthfully."
"It also has an executive report where you don't have to provide the client all the detail for them to sift though. But if they wish to dig through the detail they can."
"The most valuable feature of Tenable Nessus is the support it provides for any new vulnerabilities quickly."
"The reports are pretty nice and easy to understand."
"We looked at Tenable, Qualys and Rapid7. We found Tenable was the best of all three."
"The solution is great for scanning servers."
 

Cons

"Initially, we were somewhat concerned about the scalability of Zafran due to our large asset count and the substantial amount of information we needed to process."
"No third-party applications or integrations with additional software solutions."
"The report for counters is too simple and would be improved by a dashboard."
"Tenable Nessus could improve reporting and information sharing. It would be helpful if we could share the reports and have a little bit better flexibility in the reporting of the data."
"The reporting is a bit cumbersome."
"We'd like to see more integration potential within the solution."
"Vulnerability recommendations are outdated and not in line with industry standards."
"The tool needs to upgrade asset tracking."
"The reports are okay, but the interface is a bit difficult to navigate in some cases."
"One area with room for improvement is instead of there just being a PDF format for output, I'd like the option of an Excel spreadsheet, whereby I could better track remediation efforts and provide reporting off of that."
 

Pricing and Cost Advice

Information not available
Information not available
"We paid about six thousand dollars per license."
"Our organization is huge so our license costs $30,000."
"One problem with Tenable is its pricing policy. Optimal results can be achieved with Greenbone Solutions which has much more friendly pricing policies."
"There is an annual license required to use this solution."
"Tenable Nessus needs to be licensed. We own a license for the security center and that license is charged by the number of IP addresses that you can scan. You're allowed to have as many scanners as you want and there's no license for the number of scanners. We have a bunch of Nessus scanners out there, and as long as we're comfortable with staying under that IP address limit, that's really all we have to be concerned about."
"Nessus Manager is not an expensive product. It has its limitations, but the pricing reflects that. We have a yearly subscription."
"Cost-wise, it's an affordable tool."
"The price is high for the solution. There are free tools with similar functionality available. The solution cost approximately $3,500."
report
Use our free recommendation engine to learn which Vulnerability Management solutions are best for your needs.
849,190 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
14%
Financial Services Firm
11%
Manufacturing Company
7%
Retailer
6%
No data available
Educational Organization
38%
Computer Software Company
9%
Financial Services Firm
7%
Government
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
No data available
 

Questions from the Community

What is your experience regarding pricing and costs for Zafran Security?
I find that the pricing for Zafran aligns well with the comprehensive features it offers. The asset and user-based li...
What needs improvement with Zafran Security?
While Zafran Security is already a powerful tool, there are areas where it could be further improved to provide even ...
What is your primary use case for Zafran Security?
Our primary use case for Zafran involves leveraging it to enhance our vulnerability risk scoring methodology. In toda...
Ask a question
Earn 20 points
How would you choose between Rapid7 InsightVM and Tenable Nessus?
You have full visibility across cloud, network, virtual, and containerized infrastructures with Rapid7 Insight VM. Yo...
What's the difference between Tenable Nessus and Tenable.io Vulnerability Management?
Tenable Nessus is a vulnerability assessment solution that is both easy to deploy and easy to manage. The design of ...
What do you like most about Tenable Nessus?
We have around 500 virtual machines. Therefore, we conduct monthly scans and open tickets for our developers to addre...
 

Also Known As

No data available
TrueSight Vulnerability Management, SecOps Response Service, BladeLogic Threat Director
No data available
 

Overview

 

Sample Customers

Information Not Available
Online Business Systems
Bitbrains, Tesla, Just Eat, Crosskey Banking Solutions, Covenant Health, Youngstown State University
Find out what your peers are saying about Wiz, Qualys, Tenable and others in Vulnerability Management. Updated: April 2025.
849,190 professionals have used our research since 2012.