No more typing reviews! Try our Samantha, our new voice AI agent.

SUSE Rancher vs Trivy comparison

Sponsored
 

Comparison Buyer's Guide

Executive Summary

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Qualys TotalCloud
Sponsored
Ranking in Container Security
11th
Average Rating
8.6
Reviews Sentiment
7.3
Number of Reviews
39
Ranking in other categories
Vulnerability Management (11th), Cloud Workload Protection Platforms (CWPP) (7th), Cloud Security Posture Management (CSPM) (8th), SaaS Security Posture Management (SSPM) (1st), Cloud-Native Application Protection Platforms (CNAPP) (6th)
SUSE Rancher
Ranking in Container Security
17th
Average Rating
8.0
Reviews Sentiment
6.7
Number of Reviews
12
Ranking in other categories
No ranking in other categories
Trivy
Ranking in Container Security
5th
Average Rating
8.6
Reviews Sentiment
7.5
Number of Reviews
12
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of July 2026, in the Container Security category, the mindshare of Qualys TotalCloud is 1.5%, up from 0.9% compared to the previous year. The mindshare of SUSE Rancher is 0.6%, up from 0.3% compared to the previous year. The mindshare of Trivy is 2.7%, down from 5.5% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Container Security Mindshare Distribution
ProductMindshare (%)
Trivy2.7%
Qualys TotalCloud1.5%
SUSE Rancher0.6%
Other95.2%
Container Security
 

Featured Reviews

RO
IT Security Expert at Alior Bank S.A.
Unified risk scoring has improved our cloud visibility and simplifies remediation priorities
Qualys TotalCloud provides unified vulnerability and threat assessment across both IAS and SaaS. This solution provides a single prioritized view of risk, which helps reduce the work I would have to do. We are no longer based on CVSS; we are based on Qualys risk scoring, which is based on CVSS plus internal findings made by Qualys, and then assigns its own score. The TruRisk insight feature has found a small number of assets with high vulnerability scores, though I am cautious since some information is classified. Qualys TotalCloud has positively impacted our bank's performance, and we have definitely seen benefits after implementing this solution.
VG
Presales Engineer at a tech services company with 51-200 employees
Modernization of microservices and edge workloads has accelerated while integration still needs improvement
One of the major challenges I faced with SUSE Rancher was during a POC for one customer who was using VMware. There was a significant challenge between VMware CSI and SUSE integrations. We had to move that deployment from VMware, which the customer wanted, to a bare metal solution. Flexibility also means better integrations with major industry solution providers like VMware, which many enterprise organizations use. The integrations with SUSE Rancher are fine, as long as you have open APIs, anyone can connect. For me, there were no challenges because we had standard products already certified. However, the integration between VMware and SUSE could definitely be improved. I chose 7 out of 10 because I faced VMware-related challenges as I explained. A lot of customers are still on VMware, while many also use Red Hat solutions, especially with the IBM push now. The marketing and outreach need to increase to penetrate more accounts, which are the two improvements I suggest.
Utsav Sharma - PeerSpot reviewer
Senior Security Consultant at Ernst & Young
Maintain operational efficiency by detecting misconfigurations and vulnerabilities
The vulnerability scanning feature is excellent as it supports various container capabilities like Docker and Sharma. It also offers repository scanning in the source code domain, allowing pre-push code scans. The misconfiguration detection works well for CloudFormation, Docker files, and Terraform. Its compliance support, like NIST, ensures that configurations align with standards. Trivy helps me significantly detect misconfigurations missed by the ops engineers or in Terraform by the naked eye. It ensures that my deployments are free of misconfigurations and vulnerabilities.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"With TotalCloud, we can scan through the API. If we are not able to deploy cloud agents on the machine, we can use the API."
"The most valuable feature is extensibility."
"Vulnerability and threat detection and assessment of the criticality of the vulnerabilities exposed are most valuable."
"One of the features I appreciate is the ability to generate daily reports without relying on anyone else."
"Qualys TotalCloud has significantly reduced our workload in terms of managing risks, helping us to be more efficient and save substantial resources."
"Qualys TotalCloud has helped us view our risk structure, vulnerabilities, and security posture."
"One of Qualys' best features is its categorization, which allows us to see the types of assets, their security postures, and the AI-powered version of the tool."
"Its dashboards are brilliant. It provides in-depth insights."
"SUSE Rancher is best used for large-scale applications such as ours; it manages very high-end infrastructure, and it has very good customer support, and it is very easy to understand in terms of usage."
"The end-to-end deployment was at least 30 percent cheaper than OpenShift, which was the biggest criterion since customers are cost-conscious."
"The most valuable features of SUSE Rancher include the user interface and the display features."
"Rancher Desktop provides support for Kubernetes setup on local machines."
"SUSE Rancher has positively impacted my organization by making the teams' work easier and reducing project delivery time."
"I could say that with SUSE Rancher, we've managed to cut the provisioning time to probably one-tenth of the usual provisioning time."
"SUSE Rancher has made things easier for my team and organization by reducing errors, as I use it every day of the week, and it shows us issues through dashboards."
"SUSE Rancher has positively impacted our organization by helping our teams achieve greater results in delivering end-to-end initiatives."
"The most valuable feature of Trivy is its easy integration with the CI/CD pipeline."
"It is open-source."
"Trivy is particularly useful for checking if Docker images have critical vulnerabilities before they reach production."
"The vulnerability scanning feature is excellent as it supports various container capabilities like Docker and Sharma."
"Trivy is easy to integrate with CI/CD and can be installed on desktops to scan images."
"I definitely recommend Trivy."
"I can see vulnerabilities in the images of any applications deployed in the Kubernetes environment or as container applications."
"I rate Trivy a nine out of ten."
 

Cons

"An area for improvement would be to focus on risks related to AI, such as large language models and potential data leakage."
"Areas that need improvement in every solution include the remediation part. The remediation steps should be simple enough for everyone to understand."
"I would like the ability to disable certain default built-in policies as they can be misleading when creating dashboards. That is the top one."
"Some major banks and insurance companies require an on-premises solution for comprehensive vulnerability management, which TotalCloud does not offer."
"To improve the user experience, reporting could be simplified for better comprehension by end users and project managers, facilitating issue resolution."
"Qualys' customer service provides quality answers, but the response time is long, even though it is within the SLA."
"The onboarding process is a bit difficult. In the initial phase, it is very difficult to understand the features, what the dashboard contains, and what criteria they are using."
"The support is not up to the mark and seems to be overburdened."
"Regarding the platform's features and advantages, it is unfortunate that observability and some artificial intelligence functionality work fully only with a paid subscription."
"There are a lot of issues in the tool, such as addressing the errors, addressing the stability, and addressing the reliability."
"It would be beneficial to have more support for the product."
"Some initial setup and configuration were required by the admin side for enabling security policies, which were not supported initially."
"I think SUSE Rancher could be improved by having the documentation more centralized, though it is not that problematic currently."
"I wish the container could be more lightweight so that anyone can test and verify SUSE Rancher Prime."
"All the tasks that SUSE Rancher does can be done in alternative methods, so it is not a must-have or a necessary tool in my view."
"An improvement I wish for with SUSE Rancher is that we once had issues regarding some driver problems for the network on a particular laptop, and we had a hard time finding the exact error occurring."
"The only problem is that Trivy does not support reporting features such as generating reports in CSV, which is useful for auditing and reporting."
"Trivy's marketing and awareness need improvement."
"Currently, the container image scanning is static. A dynamic scanning capability during runtime would be a significant advantage."
"Having little experience can hinder the ability to connect it to a user-friendly UI effectively."
"Trivy generates many false positives, flagging non-existent vulnerabilities. Improvements could include better contextual analysis or granular filtering."
"Trivy is not scalable; however, I have scanned very large projects with it. It is stable but not scalable according to my experience."
"In our CI/CD pipelines, Trivy lacks built-in functionality for report analysis."
"Trivy can improve by providing an output in PDF format. Additionally, it takes longer to scan container images built with many layers."
 

Pricing and Cost Advice

"Qualys TotalCloud offers cost-effective licensing flexibility."
"The pricing for TotalCloud is attractive and competitive in the market. Given the features, especially the dashboard, I have no concerns regarding pricing."
"The pricing is comparable. It is built into our other product, so I cannot piecemeal it. It is a part of our subscription."
"Qualys TotalCloud offers competitive pricing given its comprehensive suite of features, including integration, assessment, remediation, and detection capabilities, all within a single platform."
"Although Qualys TotalCloud is relatively expensive due to its unique automation features, its cost-effectiveness is rated an eight out of ten, with ten being the most costly."
"Qualys TotalCloud offers good pricing that is affordable and competitive with the market. Our partnership also provides us with additional benefits."
"Qualys TotalCloud is expensive, but it offers a premier solution with no headaches."
"The cost is high, but it meets our organizational needs."
Information not available
Information not available
report
Use our free recommendation engine to learn which Container Security solutions are best for your needs.
902,988 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Manufacturing Company
17%
Financial Services Firm
14%
Construction Company
8%
Comms Service Provider
7%
Computer Software Company
24%
Outsourcing Company
13%
Financial Services Firm
10%
Comms Service Provider
10%
Financial Services Firm
13%
Manufacturing Company
11%
Computer Software Company
10%
Comms Service Provider
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business9
Midsize Enterprise4
Large Enterprise29
By reviewers
Company SizeCount
Small Business6
Midsize Enterprise2
Large Enterprise7
By reviewers
Company SizeCount
Small Business3
Midsize Enterprise1
Large Enterprise9
 

Questions from the Community

What needs improvement with Qualys TotalCloud?
Areas that need improvement in every solution include the remediation part. The remediation steps should be simple en...
What is your primary use case for Qualys TotalCloud?
Our use case involves the assets that we have under cloud, the assets exposed to the internet, and the internal appli...
What is your experience regarding pricing and costs for SUSE Rancher?
Currently, I am using the community version, so there is no licensing cost. We are currently considering using the su...
What needs improvement with SUSE Rancher?
It would be beneficial to have more support for the product.
What is your primary use case for SUSE Rancher?
Our main use case for SUSE Rancher is for Kubernetes as a Service for our cloud product. We have also used SUSE Ranch...
What needs improvement with Trivy?
Trivy's marketing and awareness need improvement. Not everyone knows about it, which isn't ideal given its capabiliti...
What is your primary use case for Trivy?
I use Trivy ( /products/trivy-reviews ) to scan code for vulnerabilities before deployment. Our projects, which are d...
What advice do you have for others considering Trivy?
I recommend Trivy to others due to its powerful and useful features. However, I suggest increasing its marketing to r...
 

Also Known As

Qualys TotalCloud with FlexScan
No data available
No data available
 

Overview

Find out what your peers are saying about SUSE Rancher vs. Trivy and other solutions. Updated: June 2026.
902,988 professionals have used our research since 2012.