We changed our name from IT Central Station: Here's why

AWS WAF vs Tenable.io Web Application Scanning comparison

Cancel
You must select at least 2 products to compare!
Featured Review
Find out what your peers are saying about Fortinet, Microsoft, Imperva and others in Web Application Firewall (WAF). Updated: January 2022.
563,327 professionals have used our research since 2012.
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"The solution is stable.""The most valuable features of AWS WAF are its cloud-native and on-demand.""This is not a product that you need to install. You just use it.""The most valuable features are the geo-restriction denials and the web ACL.""Its best feature is that it is on the cloud and does not require local hardware resources.""The most valuable aspect is that it protects our code. It's a bit difficult to overwrite code in our application. It also protects against threats.""The most valuable feature is the scalability because it automatically scales up or scales down as per our requirements.""AWS has flexibility in terms of WAF rules."

More AWS WAF Pros →

"The most valuable feature is the reporting, which provides a good level of detail with respect to vulnerabilities.""Our customers adopt this solution because of the replication testing and the vulnerability assessment it can do. It is a multi-faceted product.""Tenable.io Web Application Scanning is very easy to use."

More Tenable.io Web Application Scanning Pros →

Cons
"I would like to see it more tightly integrated with other AWS services.""We don't have much control over blocking, because the WAF is managed by AWS.""It is sometimes a lot of work going through the rules and making sure you have everything covered for a use case. It is just the way rules are set and maintained in this solution. Some UI changes will probably be helpful. It is not easy to find the documentation of new features. Documentation not being updated is a common problem with all services, including this one. You have different versions of the console, and the options shown in the documentation are not there. For a new feature, there is probably an announcement about being released, but when it comes out, there is no actual documentation about how to use it. This makes you either go to technical support or community, which probably doesn't have an idea either. The documentation on the cloud should be the latest one. Finding information about a specific event can be a bit challenging. For this solution, not much documentation is available in the community. It could be because it is a new tool. Whenever there is an issue, it is just not that simple to resolve, especially if you don't have premium support. You have pretty much nowhere to look around, and you just need to poke around to try and make it work right.""It's a bit difficult to apply the right rules for the right security.""While the complexity of the installation can vary from one service to another, overall, I would say that it and the configuration and navigation are somewhat complex.""We haven't faced any problems with the solution.""On the UI side, I would like it if they could bring back the geolocation view on the corner.""I would like to be able to view a graphical deployment map in the user interface that will give me an overview of the configuration and help to determine whether I have missed any steps."

More AWS WAF Cons →

"It would be great if there were a dashboard that is more user-friendly.""The reporting has a very limited customization capability.""I would like for them to add proxy filtering, where you can transfer and alter the package. It is fully automated. Other web application testers programs are actually proxy software, and the proxy software gives you the flexibility of modifying the outgoing package, which will actually help you in exploiting any vulnerability in detail."

More Tenable.io Web Application Scanning Cons →

Pricing and Cost Advice
  • "AWS is not that costly by comparison. They are maybe close to $40 per month. I think it was between $29 or $39."
  • "It has a variable pricing scheme."
  • "We are kind of doing a POC comparison to see what works best. Pricing-wise, AWS is one of the most attractive ones. It is fairly cheap, and we like the pricing part. We're trying to see what makes more sense operation-wise, license-wise, and pricing-wise."
  • "It's quite affordable. It's in the middle."
  • "The pricing should be more affordable, especially as it pertains to small clients."
  • "It's cheap."
  • "AWS WAF is pay-as-you-go, I only pay for what I'm using. There is no subscription or any payment upfront, I can terminate use at any time. Which is an advantage."
  • "You need an additional AWS subscription for this product if you are buying a managed tool."
  • More AWS WAF Pricing and Cost Advice →

  • "The pricing is okay."
  • "It follows the same licensing scheme as Tenable.io and Tenable. sc."
  • More Tenable.io Web Application Scanning Pricing and Cost Advice →

    report
    Use our free recommendation engine to learn which Web Application Firewall (WAF) solutions are best for your needs.
    563,327 professionals have used our research since 2012.
    Questions from the Community
    Top Answer: 
    Hi Varun, I have had experienced with several WAF deployments and deep technical assessments of the following: 1. Imperva WAF 2. F5 WAF 3. Polarisec Cloud WAF Typical limitations on cloud… more »
    Top Answer: 
    Our organization ran comparison tests to determine whether Amazon’s Web Service Web Application Firewall or Microsoft Azure Application Gateway web application firewall software was the better fit for… more »
    Top Answer: 
    Their technical support has been quite good.
    Top Answer: 
    Tenable.io Web Application Scanning is very easy to use.
    Top Answer: 
    It follows the same licensing scheme as Tenable.io and Tenable SC. A separate license is required for support. I can't be certain, but I believe the fees are determined by the number of IP addresses… more »
    Top Answer: 
    The reporting in Tenable.io Web Application Scanning is not as good as the reporting in Tenable SC. Tenable SC's reporting is extremely powerful. The reporting has a very limited customization… more »
    Ranking
    Views
    14,529
    Comparisons
    12,431
    Reviews
    9
    Average Words per Review
    587
    Rating
    7.9
    20th
    Views
    4,341
    Comparisons
    3,679
    Reviews
    3
    Average Words per Review
    362
    Rating
    7.7
    Comparisons
    Also Known As
    AWS Web Application Firewall
    Learn More
    Overview

    AWS WAF is a web application firewall that helps protect your web applications from common web exploits that could affect application availability, compromise security, or consume excessive resources. AWS WAF gives you control over which traffic to allow or block to your web applications by defining customizable web security rules. You can use AWS WAF to create custom rules that block common attack patterns, such as SQL injection or cross-site scripting, and rules that are designed for your specific application. New rules can be deployed within minutes, letting you respond quickly to changing traffic patterns. Also, AWS WAF includes a full-featured API that you can use to automate the creation, deployment, and maintenance of web security rules.

    Tenable.io Web Application Scanning safely, accurately and automatically scans your web applications, providing deep visibility into vulnerabilities and valuable context to prioritize remediation.

    Offer
    Learn more about AWS WAF
    Learn more about Tenable.io Web Application Scanning
    Sample Customers
    eVitamins, 9Splay, Senao International
    IMDEX
    Top Industries
    REVIEWERS
    Energy/Utilities Company22%
    Media Company22%
    Transportation Company11%
    Manufacturing Company11%
    VISITORS READING REVIEWS
    Computer Software Company26%
    Comms Service Provider21%
    Media Company12%
    Financial Services Firm8%
    VISITORS READING REVIEWS
    Computer Software Company26%
    Comms Service Provider16%
    Government9%
    Financial Services Firm6%
    Company Size
    REVIEWERS
    Small Business24%
    Midsize Enterprise29%
    Large Enterprise48%
    No Data Available
    Find out what your peers are saying about Fortinet, Microsoft, Imperva and others in Web Application Firewall (WAF). Updated: January 2022.
    563,327 professionals have used our research since 2012.

    AWS WAF is ranked 5th in Web Application Firewall (WAF) with 12 reviews while Tenable.io Web Application Scanning is ranked 20th in Application Security with 3 reviews. AWS WAF is rated 7.6, while Tenable.io Web Application Scanning is rated 7.6. The top reviewer of AWS WAF writes "Use this product to make it possible to deploy web applications securely". On the other hand, the top reviewer of Tenable.io Web Application Scanning writes "Good reporting and integration, but it needs a user-friendly dashboard". AWS WAF is most compared with Microsoft Azure Application Gateway, Imperva Web Application Firewall, Azure Front Door, Akamai Kona Site Defender and F5 BIG-IP Local Traffic Manager (LTM), whereas Tenable.io Web Application Scanning is most compared with PortSwigger Burp Suite Professional, Qualys Web Application Scanning, Acunetix by Invicti, Veracode and HCL AppScan.

    We monitor all Web Application Firewall (WAF) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.