We performed a comparison between Rapid7 InsightVM and Tenable Nessus based on our users’ reviews in four categories. After reading all of the collected data, you can find our conclusion below.
Comparison Results: Both solutions were considered by our users as easy to deploy but on the expensive side. Rapid7 users were happier with the service and support, but PeerSpot users ranked Tenable Nessus as number one overall at the time this comparison was written.
"Out of all the features, the one item that has been most valuable is the fact that Wiz puts into context all the pieces that create an issue, and applies a particular risk evaluation that helps us prioritize when we need to address a misconfiguration, vulnerability, or any issue that would put our environment into risk."
"It's a relevant management tool."
"The performance is good."
"The most valuable feature is the vulnerability scan."
"This solution's most useful feature is that it is entirely a single-page application."
"The cost is what is most valuable. Compared to the other products on the market, the cost is more palatable."
"One of the most valuable features is it's graphical dashboard feature. It is quite easy to manage the widgets, and we can customize those according to our queries."
"The solution scales well."
"The most valuable features of Rapid7 InsightVM are the accurate level of scanning and the workflows are good."
"A valuable feature of the solution is that it is easy to understand."
"The most valuable feature of Tenable Nessus is the dashboard. They are convenient to use."
"Tenable integrates well with other solutions such as SIEM and batch management."
"Tenable Nessus is one of the best vulnerability assessment tools, that I know."
"The solution is easy to understand for users because instructions are included on the platform."
"The results are not that bad, but the key selling point is that it is an affordable tool set."
"The solution is the most dynamic one I have seen thus far."
"I have experience with it on my attack stations, and it's pretty good to optimize. Personally, I think Nessus is quite a good product."
"We wish there were a way, beyond providing visibility and automated remediation, to wait on a given remediation, due to a critical aspect, such as the cost associated with a particular upgrade... We would like to see preventive controls that can be applied through Wiz to protect against vulnerabilities that we're not going to be able to remediate immediately."
"Rapid7 InsightVM could be easier to use for those who are using it for the first time."
"It is still not a fully cloud-based solution. It will be helpful for customers if it is a complete cloud solution. It is a hybrid solution at the moment."
"All products have room for increased security and Rapid7 InsightVM is no exception."
"Rapid7 could be easier to manage."
"The integration with other solutions like JIRA could be better. Perhaps there could be some additional updates in the next phase that could integrate with it, so then you can proceed with the VT much easier."
"InsightVM is getting a little stale and is in danger of falling behind its competitors."
"We are a registered reseller and a trusted partner. However, for us to get any support from them I can't log a call directly with Rapid7 InsightVM. I have to work with the distributor to log the call for me."
"I would say that it improved our visibility, but it left things open."
"The report for counters is too simple and would be improved by a dashboard."
"The reports are okay, but the interface is a bit difficult to navigate in some cases."
"Scans aren't done properly and some devices aren't pinged."
"Multiple user access would be an area for improvement from a user-access perspective. A role-based access control feature would be great because at present, there is a limitation with only one account. If that account gets compromised or gets locked, then we will encounter problems."
"The inventory management function in this solution needs improvement."
"Tenable Nessus could improve the reporting."
"They could make their reporting a little better."
"The price could be reduced."
Rapid7 InsightVM is ranked 6th in Vulnerability Management with 25 reviews while Tenable Nessus is ranked 1st in Vulnerability Management with 48 reviews. Rapid7 InsightVM is rated 7.6, while Tenable Nessus is rated 8.4. The top reviewer of Rapid7 InsightVM writes "Understands and defends your network from vulnerabilities". On the other hand, the top reviewer of Tenable Nessus writes "Easy to use, good support, and gives full reports of what's vulnerable per device". Rapid7 InsightVM is most compared with Qualys VM, Tenable.sc, Tenable.io Vulnerability Management, Microsoft Intune and Rapid7 InsightIDR, whereas Tenable Nessus is most compared with Qualys VM, Tenable.io Vulnerability Management, Tenable.sc, Rapid7 Metasploit and Microsoft Intune. See our Rapid7 InsightVM vs. Tenable Nessus report.
See our list of best Vulnerability Management vendors.
We monitor all Vulnerability Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
You have full visibility across cloud, network, virtual, and containerized infrastructures with Rapid7 Insight VM. You can easily prioritize vulnerabilities using attacker analytics. Overall, Rapid7 Insight VM is easy to understand, use, and deploy. This solution supplies many different types of valuable reporting and rarely reports false positives. Rapid7 can easily detect new devices and scan endpoints quickly for vulnerabilities, misconfigurations, or missing patches. Rapid7 Insight VM will identify the risk and suggest how to resolve the problem.
We would like to see the reporting improved to offer some of the options other solutions provide. Rapid7 Insight VM can be a very expensive solution - it is really only for larger enterprise accounts. Integration with other solutions would make Rapid7 Insight VM more desirable.
It’s easy to combine local testing with network-based testing using Tenable Nessus, which can easily find vulnerabilities across different platforms and operating systems. Tenable Nessus will identify what nodes you have in place, then provide you with a report identifying each vulnerability found by node. It works quickly and stealthily, and offers clear-cut reporting and the ability to scan for specific vulnerabilities.
We would like to see the reporting process with Tenable Nessus improved. Instead of only PDF reports, one option might be to track with an Excel-based structure to better track vulnerabilities and remediation efforts and build reports from there. An option to use the same license for the cloud and on-premises at the same time would be very useful.
Conclusion
We felt that Tenable Nessus provided better reporting of vulnerabilities per device in a clearer, easier to understand manner. It is a very easy solution to use and makes accountability for tracing and reporting vulnerabilities easy. The flexible scanning options offered by Tenable Nessus are what we found most advantageous.
InsightVM - better functions on granting users different access to different asset groups.
It fits better for our company and is slightly cheaper.