Tenable Nessus

What I appreciate most about the Tenable vulnerability solution are its price point, its ease of use, and the comprehensive reports it generates. These reports are invaluable, as they provide me with all the necessary information. For example, I regularly use them to prepare quarterly managerial reports for our senior leadership team, detailing the types of vulnerabilities we've encountered, the number resolved, and the contributing factors, even allowing me to estimate the associated costs. These reports are delivered in a ready-to-ship format that seamlessly attaches as an addendum to my final report, requiring no additional data clean-up. The solution is quite flexible and customizable; for any specific tailoring or needs, we have either independently found the solution or received excellent guidance from their technical support. A particularly standout feature for me is the scanners themselves; they are remarkably easy to set up and operate efficiently, significantly speeding up the process of checking all endpoints across our facility. In terms of integration, I have not encountered any issues integrating Tenable with our patch management software, and the process has worked well, though it sometimes requires coordination between both vendors. Furthermore, the customer support and service from Tenable are exceptional; they consistently answer our calls, provide swift responses even if research is needed, and their personnel are easy to communicate with, understanding, well-trained, and highly knowledgeable about the product.

los escaneos e informacion de los cve o Vulnerabilidades son exactas y bien explicadas.

Confiabilidad de resultados: conforme se está utilizando la herramienta se ha detectado que los resultados son mas confiables que otras herramientas, sin embargo, hay que tomar en cuenta que se requiere una buena configuración para evitar falsos positivos.

While my experience has been overwhelmingly positive, there are a few areas where I believe Tenable could improve. I would like to see them integrate with many more products than they currently do and specifically work on the integration piece with those vendors to achieve a more seamless transition. Additionally, I would appreciate additional reporting features that allow for more customization than what is currently available. We have observed that some scans occasionally take a little longer than expected, and we are currently investigating whether this is due to our internal configuration or network performance. However, this has not been a critical impact on our work or efficiencies. Furthermore, while the integration with our patch management software works well, it took a little longer than I anticipated and required communication with both sides, which I hope will become more seamless in future editions. Initially, our network infrastructure team, for whom this was a new product, had concerns about how to set things up and manage it; however, the company effectively addressed these concerns through explanations, demos, and follow-up installation calls. To date, the product has met all our expectations.

lo que no hace es mitigar de inmediato, solo es informe en tiempo real de una vulnerabilidad

muchas limitaciones y desactivación de plugins en la versión Essentials