We performed a comparison between Rapid7 Metasploit and Tenable Vulnerability Management based on real PeerSpot user reviews.
Find out in this report how the two Vulnerability Management solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."Stability-wise, I rate the solution a nine out of ten...Scalability-wise, I rate the solution a nine out of ten."
"The Search Engineering feature is good."
"It contains almost all the available exploits and payloads."
"The reporting on the solution is good."
"I use Rapid7 Metasploit for payload generation and Post-Exploitation."
"It is scalable. It's in line with our needs."
"It allows us to concentrate solely on identified vulnerabilities without the hassle of additional setup."
"The greatest advantage of Rapid7 Metasploit is that it is the only system that can directly exploit vulnerabilities on the Metasploit platform."
"You can customize each point in new scans."
"The vulnerability management itself is the most valuable feature as well as references to the mitigation techniques."
"The solution's most valuable feature is providing a single pane of visibility on all the infrastructure and its status."
"It is a stable solution. Stability-wise, I rate the solution a ten out of ten."
"The solution is quite friendly."
"It is quite straightforward to set up."
"Tenable.io, in particular, is quite a powerful product. It looks at your traditional environment, which is pretty much anything that is on-premises, and it also goes a step ahead and covers your modern assets, which is anything that is currently sitting in the cloud. You get complete visibility of your entire environment and tech operation. The ability to give you visibility across the entire tech surface is one of the biggest advantages that Tenable.io has."
"It helps us create remediation projects and assign the console’s responsibility to specific engineers."
"Rapid7 Metasploit could be made easier for new users to learn."
"If your company's patch is not up to date, but you have other detection or defense solutions such as endpoint detection and response and antivirus software, the product exploit may not work effectively. This is because its exploit database update process is slow and not real-time. For zero-day vulnerabilities or new security threats, relying on Rapid7 Metasploit alone may not be effective."
"Advanced Infrastructure should be implemented in the next release for better orchestration."
"The solution should improve the responsiveness of its live technical support."
"At the time I was using it, the graphical user interface needed some improvements."
"The initial setup was a bit "tweaky" for the open-source version."
"It is necessary to add some training materials and a tutorial for beginners."
"The solution is not very scalable, it does not provide any automation to be able to scale it."
"The product is a bit expensive."
"The shortcoming of the solution that needs improvement is related to its capability to do vulnerability assessments on applications."
"The pricing of the solution could be more reasonable."
"They've been able to think about everything in terms of where the world is going and the type of assets that you've got. They've everything sorted out in that aspect, but you have to pay for most of the other components that they've got to give you complete visibility across your tech surface. If it already had those capabilities in-built, without having to add them on to take advantage of them, it would be a very compelling value proposition."
"The interface could be improved; right now it's running on two interfaces simultaneously."
"The user interface could be improved by being able to change the user interface to fit your position or your job. The graphs are set in stone and you can only print reports."
"The reporting was never great in Tenable Vulnerability Management, so, in my company, we imported all the data into Ivanti RiskSense to start using it for reporting."
"The price could be lower."
More Tenable Vulnerability Management Pricing and Cost Advice →
Rapid7 Metasploit is ranked 11th in Vulnerability Management with 18 reviews while Tenable Vulnerability Management is ranked 2nd in Vulnerability Management with 38 reviews. Rapid7 Metasploit is rated 7.6, while Tenable Vulnerability Management is rated 8.2. The top reviewer of Rapid7 Metasploit writes "Helps find vulnerabilities in a system to determine whether the system needs to be upgraded". On the other hand, the top reviewer of Tenable Vulnerability Management writes "Discovers vulnerabilities and integrates well with other solutions". Rapid7 Metasploit is most compared with Tenable Nessus, Pentera, Acunetix and Rapid7 InsightVM, whereas Tenable Vulnerability Management is most compared with Tenable Security Center, Tenable Nessus, Qualys VMDR, Amazon Inspector and Microsoft Defender Vulnerability Management. See our Rapid7 Metasploit vs. Tenable Vulnerability Management report.
See our list of best Vulnerability Management vendors.
We monitor all Vulnerability Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.