We performed a comparison between Rapid7 Metasploit and Tenable Security Center based on real PeerSpot user reviews.
Find out in this report how the two Vulnerability Management solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The reporting on the solution is good."
"The Search Engineering feature is good."
"The solution is open source and has many small targetted penetration tests that have been written by many people that are useful. You can choose different subjects for the test, such as Oracle databases or Apache servers."
"The greatest advantage of Rapid7 Metasploit is that it is the only system that can directly exploit vulnerabilities on the Metasploit platform."
"All of the features are great."
"The most valuable feature for us is the support for testing Linux-based web server components."
"It is scalable. It's in line with our needs."
"I don't have any other tools like it, and I always use it when I'm doing a pen test. Metasploit is a great solution for penetration testing,"
"Tenable.sc is user-friendly."
"It is a very good and user-friendly product."
"I find Tenable SC to be a very scalable product."
"The most valuable features of Tenable SC are scanning, reporting, dashboards, and automation."
"I think that this is a good solution for evaluating vulnerability in the network."
"Very customizable with a lot of templates."
"The most valuable feature of the product is the Assurance Report Card, which gives us an overview of the security poster in just a simple glance."
"This product has the best results in terms of the lowest number of false-positives and false-negatives."
"If your company's patch is not up to date, but you have other detection or defense solutions such as endpoint detection and response and antivirus software, the product exploit may not work effectively. This is because its exploit database update process is slow and not real-time. For zero-day vulnerabilities or new security threats, relying on Rapid7 Metasploit alone may not be effective."
"Rapid7 Metasploit could be made easier for new users to learn."
"The initial setup was a bit "tweaky" for the open-source version."
"The solution should improve the responsiveness of its live technical support."
"There are numerous outdated exploits in their database that should be updated."
"The open-source version has reporting limitations. You need to develop these capabilities yourself. Built-in reporting is an excellent feature for penetration testing, but it isn't a must-have. The solution could also cover more vulnerabilities. Metasploit has around 10,000 exploits in its library, but more is always better."
"Metasploit cannot be installed on a machine with an antivirus."
"Rapid7 Metasploit can add a GUI feature because it is only available online."
"The solution should include compliance-based scanning."
"Though the solution's technical support is responsive, they do take a lot of time, making it one of the solution's shortcomings that needs improvement."
"Tenable has some problems with agents going offline during scanning and lag between agents and the security center."
"Tenable SC could be improved with additional connectivity to external company postures and the capability of managing and sustaining agents in the systems directly without additional platforms in the middle."
"We experienced some difficulties with the solution’s support."
"There's a lot of information being streamed out of the reports. What would be nice, and maybe we just haven't found it, would be more of an executive-type view. We still expect it to collect all this information, but we would like a feature that would allow us to show it to an executive or a director or someone like that and give them some type of high-level overview but not get into the nitty-gritty."
"I will say it's a lot slower compared to an MS scan. It takes so much longer, so the performance could definitely be worked on."
"Tenable SC can improve by adding more integrations with HCI-type tools and more accurate vulnerability detection."
Rapid7 Metasploit is ranked 11th in Vulnerability Management with 18 reviews while Tenable Security Center is ranked 1st in Vulnerability Management with 48 reviews. Rapid7 Metasploit is rated 7.6, while Tenable Security Center is rated 8.2. The top reviewer of Rapid7 Metasploit writes "Helps find vulnerabilities in a system to determine whether the system needs to be upgraded". On the other hand, the top reviewer of Tenable Security Center writes "A security solution for vulnerability assessment with automated scans". Rapid7 Metasploit is most compared with Tenable Nessus, Pentera, Acunetix, Rapid7 InsightVM and Nucleus, whereas Tenable Security Center is most compared with Tenable Vulnerability Management, Qualys VMDR, Tenable Nessus, Rapid7 InsightVM and Horizon3.ai. See our Rapid7 Metasploit vs. Tenable Security Center report.
See our list of best Vulnerability Management vendors.
We monitor all Vulnerability Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
