Try our new research platform with insights from 80,000+ expert users

Tenable Nessus vs Tenable Vulnerability Management comparison

Sponsored
 

Comparison Buyer's Guide

Executive SummaryUpdated on Apr 20, 2025

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Zafran Security
Sponsored
Ranking in Vulnerability Management
27th
Average Rating
9.6
Reviews Sentiment
8.1
Number of Reviews
3
Ranking in other categories
Continuous Threat Exposure Management (CTEM) (6th)
Tenable Nessus
Ranking in Vulnerability Management
3rd
Average Rating
8.4
Reviews Sentiment
7.3
Number of Reviews
81
Ranking in other categories
No ranking in other categories
Tenable Vulnerability Manag...
Ranking in Vulnerability Management
5th
Average Rating
8.0
Reviews Sentiment
7.0
Number of Reviews
42
Ranking in other categories
Risk-Based Vulnerability Management (3rd)
 

Mindshare comparison

As of April 2025, in the Vulnerability Management category, the mindshare of Zafran Security is 0.4%. The mindshare of Tenable Nessus is 10.2%, down from 13.4% compared to the previous year. The mindshare of Tenable Vulnerability Management is 6.9%, down from 9.7% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Vulnerability Management
 

Q&A Highlights

NC
Nov 24, 2021
 

Featured Reviews

Israel Cavazos Landini - PeerSpot reviewer
Weekly insights and risk analysis facilitate informed security decisions
I appreciate the weekly insights Zafran provides, which include critical topics for networks and IT security, allowing us to evaluate which insights apply to our environment. The organization score feature is valuable to keep the leadership team updated on how our infrastructure fares security-wise. The applicable risk level versus base risk level feature is beneficial because prior to Zafran, we only used the base risk level, but now understand that risk depends on the asset itself. Zafran is an excellent tool.
HarshBhardiya - PeerSpot reviewer
Provided increased visibility across the organization's servers
The user interface of Tenable Nessus feels outdated and could be more user-friendly. Additionally, the documentation is not well-organized, which can be confusing when searching for solutions or specific information related to Tenable Nessus Professional. The reporting feature could be improved by allowing users to create their own templates instead of relying on predefined ones.
Mani Bommisetty - PeerSpot reviewer
Streamlines vulnerability management with excellent reporting and potential AI integration
Tenable is user-friendly and excels in reporting. It allows me to easily fetch and schedule reports. The software's discovery feature aids in strengthening our security posture. The single-sensor installation process on various operating systems is smooth, unlike Rapid7, which requires different versions for separate systems. Furthermore, Tenable enables vulnerability management through potential AI integration that consolidates efforts and resolves multiple vulnerabilities simultaneously.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Zafran is an excellent tool."
"Zafran has become an indispensable tool in our cybersecurity arsenal."
"We are able to see the real risk of a vulnerability on our environment with our security tools."
"We have around 500 virtual machines. Therefore, we conduct monthly scans and open tickets for our developers to address identified vulnerabilities. These scans cover the servers, other network equipment, and appliances in our infrastructure."
"We looked at Tenable, Qualys and Rapid7. We found Tenable was the best of all three."
"It is easy to deploy and easy to use. Its reporting is good. From this reporting, you can see the pain point in your network, which makes it easy to fix them. It is easy to understand the reports and export them."
"I am impressed with the tool's vulnerability scanning."
"My favorite part about Nessus is that you can customize the tool to scan exactly what you want. Microsoft releases new patches monthly on Patch Tuesday, and a lot of companies track that date. I set up Nessus for the day after Patch Tuesday to see which devices have already pushed those updates from Microsoft, so we can stay updated."
"The ease of use is the primary valuable feature. This specific version is very straightforward. I like the ability to modify it and configure it based on the different policies."
"Tenable Nessus has provided increased visibility across the organization's servers."
"The results are not that bad, but the key selling point is that it is an affordable tool set."
"The initial setup is pretty straightforward."
"The integration of Tenable into our security ecosystem was very good."
"They are on a good trajectory as a company and investing in R&D in the right ways."
"The vulnerability scanning is the most important aspect of the solution for us."
"It is easy to manage. Most of the information the tool provided helped to further investigate the vulnerability and its impact."
"The solution is easy to use and configuration is smooth with no complexities."
"The initial setup is not complex."
"The ease of use in terms of scanning assets is valuable."
 

Cons

"Initially, we were somewhat concerned about the scalability of Zafran due to our large asset count and the substantial amount of information we needed to process."
"It would be better if they had application-level support for mobile devices. They don't have anything to scan mobile devices. Tenable Nessus doesn't have a mobile application vulnerability assessment. I also have issues with the false positive rates. The product has limited features."
"It wasn't very clear how the scripts are running the scans. There's information about the script but it's not straightforward. The script information for each of the plugins should be available, but it doesn't give us straightforward direct information about how it was executed. That needs to be more clear."
"Vulnerability recommendations are outdated and not in line with industry standards."
"They should try to create an all-in-one solution."
"The features are limited when it comes to scanning network devices for vulnerabilities."
"Sometimes, the categorization for clients was tricky at first, however, they eventually got used to it."
"Tenable Nessus application device assessment is one of the top tools. However, in the application security assessment, there are other tools that provide better, and more accurate findings."
"The interface is a little bit clunky, and the reporting is not marvelous. There should be better integration of reporting between instances. Currently, the instance stands alone, and it produces a report. Being able to amalgamate those reports with another instance will be useful."
"t needs additional reporting and intelligence features, as well as enhancements in AI-driven detection, which is still in its early stages."
"The user interface could be improved by being able to change the user interface to fit your position or your job. The graphs are set in stone and you can only print reports."
"They should include better customization of the dashboard, and integration tools."
"The UI has room for improvement."
"Tenable.io Vulnerability Management could be improved with an increased number of dashboards and MSSP integration."
"The product is a bit expensive."
"The reporting was never great in Tenable Vulnerability Management, so, in my company, we imported all the data into Ivanti RiskSense to start using it for reporting."
"The solution’s pricing could be improved."
 

Pricing and Cost Advice

Information not available
"It has a fair cost and very good cost-benefit ratio."
"Nessus Manager is not an expensive product. It has its limitations, but the pricing reflects that. We have a yearly subscription."
"The solution has a single price for unlimited assets."
"The solution is worth the cost. It's a good investment."
"The price is reasonable."
"The solution has free options."
"The cost is around $4,300 per year. Use is unlimited. You don't pay more if you want to use it for another IP."
"Its price is high for Libya. The companies here in Libya don't have the awareness of and a good budget for cybersecurity services. If you want them to go for a product, you need to provide something different. This differentiation is related to the price. They should give about 40% to 45% discount per person on the current cost."
"The cost is determined by the number of endpoints, which is approximately one dollar per endpoint."
"A yearly payment has to be made toward the solution's licensing costs."
"There are additional features that can be licensed for an additional cost."
"Tenable charges around $40 per device."
"On a scale of one to ten, where one is low, and ten is high price, I rate the pricing an eight. So, it is a pretty expensive solution."
"I would rate the pricing a five out of ten. It is in the middle."
"The product costs us around $137,000 annually for 4000 to 5000 assets."
"Compared to other VM solutions, Tenable.io Vulnerability Management is expensive."
report
Use our free recommendation engine to learn which Vulnerability Management solutions are best for your needs.
849,190 professionals have used our research since 2012.
 

Answers from the Community

NC
Nov 24, 2021
Nov 24, 2021
Tenable Nessus is a vulnerability assessment solution that is both easy to deploy and easy to manage. The design of the program is such that if a company should desire to handle the installation themselves, they would be able to do so. The updates that the program requires to keep up-to-date take up a large portion of the setup time. Tenable Nessus can be deployed in under an hour. The speed o...
See 2 answers
DG
Nov 7, 2021
Tenable Nessus is a vulnerability assessment solution that is both easy to deploy and easy to manage. The design of the program is such that if a company should desire to handle the installation themselves, they would be able to do so. The updates that the program requires to keep up-to-date take up a large portion of the setup time. Tenable Nessus can be deployed in under an hour. The speed of an organization’s internet can impact how quickly the deployment will go. Furthermore, once it has been set up, only a small management team is necessary for maintenance. Tenable Nessus is an incredibly important program that provides businesses and organizations with robust protection. This ease of deployment and management gives it an edge over the competition. Tenable.io Vulnerability Management is basically comparable to Tenable Nessus in regards to setup and management. It is relatively straightforward to set up. A single person could deploy it in a non-business setting in a matter of hours. The setup can be handled without requiring a business to rely on the help of outside consultants. As with Tenable Nessus, a small team of two or three people is all that is necessary to manage the solution. Organizations can save a great deal of time and resources by choosing to utilize this solution. Tenable Nessus is a solution with good scalability. This can be accomplished with relative ease. However, the load that it can handle makes it a poor fit for larger organizations. At a certain point, the farther up you scale it, the more the solution quality diminishes. Tenable.io Vulnerability Management is able to offer a much higher level of scalability. It is typically used without trouble by organizations with many thousands of users. As with Tenable Nessus, the process is relatively simple. Conclusion: The actual difference in time and ease as far as deploying Tenable Nessus versus Tenable.io Vulnerability Management is negligible and cannot truly set one apart from the other. Ease of management is another area where these two solutions are very similar. A major difference between them is their scalability. While both can be scaled relatively easily, Tenable.io Vulnerability Management is able to handle a higher level of scalability, with the diminishment of quality being a far lesser concern than is the case with Tenable Nessus.
Jairo Willian Pereira - PeerSpot reviewer
Nov 24, 2021
Both, but I prefer Nessus Pro (costs and you can define out-of-band your better presentation/xLAP platform). Tenable.io has its facilities and extra plugins/views/analytics, but nothing that can't be externally performed by another ETL/presentation tool (for a fraction of cost, sometimes using free toolings like Pentaho, OpenRefine, OBIEE and others).
 

Top Industries

By visitors reading reviews
Computer Software Company
14%
Financial Services Firm
11%
Manufacturing Company
7%
Retailer
6%
Educational Organization
38%
Computer Software Company
9%
Financial Services Firm
7%
Government
6%
Educational Organization
25%
Computer Software Company
12%
Financial Services Firm
9%
Government
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
 

Questions from the Community

What is your experience regarding pricing and costs for Zafran Security?
I find that the pricing for Zafran aligns well with the comprehensive features it offers. The asset and user-based li...
What needs improvement with Zafran Security?
While Zafran Security is already a powerful tool, there are areas where it could be further improved to provide even ...
What is your primary use case for Zafran Security?
Our primary use case for Zafran involves leveraging it to enhance our vulnerability risk scoring methodology. In toda...
How would you choose between Rapid7 InsightVM and Tenable Nessus?
You have full visibility across cloud, network, virtual, and containerized infrastructures with Rapid7 Insight VM. Yo...
What's the difference between Tenable Nessus and Tenable.io Vulnerability Management?
Tenable Nessus is a vulnerability assessment solution that is both easy to deploy and easy to manage. The design of ...
What do you like most about Tenable Nessus?
We have around 500 virtual machines. Therefore, we conduct monthly scans and open tickets for our developers to addre...
What needs improvement with Tenable.io Vulnerability Management?
I would suggest HP WebInspect as a better option than Tenable.io. My current client doesn't have access to it. Howeve...
What advice do you have for others considering Tenable.io Vulnerability Management?
I would rate it four out of ten. For startups, freelancers, or companies between startup and midsize, Tenable is reco...
 

Also Known As

No data available
No data available
Tenable.io
 

Overview

 

Sample Customers

Information Not Available
Bitbrains, Tesla, Just Eat, Crosskey Banking Solutions, Covenant Health, Youngstown State University
Global Payments AU/NZ
Find out what your peers are saying about Tenable Nessus vs. Tenable Vulnerability Management and other solutions. Updated: April 2025.
849,190 professionals have used our research since 2012.