TrustRadius

AWS CloudTrail vs. Tenable Nessus

Overview
ProductRatingMost Used ByProduct SummaryStarting Price
AWS CloudTrail
Score 8.7 out of 10
N/A
AWS CloudTrail is a service that enables governance, compliance, operational auditing, and risk auditing of an AWS account. With CloudTrail, users can log, continuously monitor, and retain account activity related to actions across AWS infrastructure. CloudTrail provides event history of AWS account activity, including actions taken through the AWS Management Console, AWS SDKs, command line tools, and other AWS services. This event history simplifies security analysis, resource change tracking,…N/A
Tenable Nessus
Score 8.7 out of 10
N/A
Tenable headquartered in Columbia offers Nessus, a vulnerability scanning and security assessment solution used to analyze an entity's security posture, vulnerability testing, and provide configuration assessments.
$2,790
Pricing
AWS CloudTrailTenable Nessus
Editions & Modules
No answers on this topic
1 Year
$2,790.00
1 Year + Advanced Support
$3,190.00
2 Years
$5,440.00
2 Years + Advanced Support
$6,240.00
3 Years
$7,951.00
3 Years + Advanced Support
$9,151.00
Offerings
Pricing Offerings
AWS CloudTrailTenable Nessus
Free Trial
YesNo
Free/Freemium Version
YesNo
Premium Consulting/Integration Services
YesNo
Entry-level Setup FeeNo setup feeNo setup fee
Additional DetailsYou can view, filter, and download the most recent 90 days of your account activity for all management events in supported AWS services free of charge. You can set up a trail that delivers a single copy of management events in each region free of charge. Once a CloudTrail trail is set up, Amazon S3 charges apply based on your usage. You will be charged for any data events or additional copies of management events recorded in that region. In addition, you can choose CloudTrail Insights by enabling Insights events in your trails. CloudTrail Insights analyzes write management events, and you are charged based on the number of events that are analyzed in that region.
More Pricing Information
Community Pulse
AWS CloudTrailTenable Nessus
Features
AWS CloudTrailTenable Nessus
Threat Intelligence
Comparison of Threat Intelligence features of Product A and Product B
AWS CloudTrail
-
Ratings
Tenable Nessus
6.2
4 Ratings
26% below category average
Network Analytics00 Ratings1.02 Ratings
Threat Recognition00 Ratings7.04 Ratings
Vulnerability Classification00 Ratings9.53 Ratings
Automated Alerts and Reporting00 Ratings10.03 Ratings
Threat Analysis00 Ratings5.53 Ratings
Threat Intelligence Reporting00 Ratings5.03 Ratings
Automated Threat Identification00 Ratings5.53 Ratings
Vulnerability Management Tools
Comparison of Vulnerability Management Tools features of Product A and Product B
AWS CloudTrail
-
Ratings
Tenable Nessus
7.5
4 Ratings
10% below category average
IT Asset Realization00 Ratings7.03 Ratings
Authentication00 Ratings7.53 Ratings
Configuration Monitoring00 Ratings8.04 Ratings
Web Scanning00 Ratings5.53 Ratings
Vulnerability Intelligence00 Ratings9.34 Ratings
Best Alternatives
AWS CloudTrailTenable Nessus
Small Businesses
Armor
Armor
Score 6.0 out of 10
Action1
Action1
Score 9.4 out of 10
Medium-sized Companies
Druva Security Cloud
Druva Security Cloud
Score 9.5 out of 10
Action1
Action1
Score 9.4 out of 10
Enterprises
Druva Security Cloud
Druva Security Cloud
Score 9.5 out of 10
CrowdStrike Falcon
CrowdStrike Falcon
Score 9.1 out of 10
All AlternativesView all alternativesView all alternatives
User Ratings
AWS CloudTrailTenable Nessus
Likelihood to Recommend
8.0
(4 ratings)
9.0
(9 ratings)
Likelihood to Renew
-
(0 ratings)
9.1
(1 ratings)
Usability
-
(0 ratings)
8.0
(5 ratings)
Support Rating
-
(0 ratings)
7.1
(4 ratings)
User Testimonials
AWS CloudTrailTenable Nessus
Likelihood to Recommend
Amazon AWS
It is necessary to enable [AWS] Cloudtrail when using AWS in a production environment, otherwise you will not have any idea what is happening within your accounts. Third party monitoring applications will all require [AWS] CloudTrail to be enabled as well. I would not recommend it solely as a monitoring tool, to get the most out of it you must send the logs elsewhere. Either to Cloudwatch logs or a third party product.
Verified User
Anonymous
Read full review
Tenable
It is an excellent tool for scanning servers, workstations, and network devices to identify missing patches and misconfiguration; we regularly use it to confirm patch effectiveness after the update; it also helps us for preparing audits such as iso 27001, and regulatory requirements, it also helps us to identify open ports and services that violate security.
AG
Akhilesh Ghosh
VAPT-Teamlead
Read full review
Pros
Amazon AWS
  • API Log
  • User activity tracking
  • Real-time alerts
AS
Anton Smyslov
Product Owner
Read full review
Tenable
  • Nessus is best at performing vulnerability scans, in fact, it gives findings and moreover accurate findings of the assessments. It does not do penetration testing or exploit the vulnerabilities because it is concerned about scanning the systems/applications.
  • In fact, Nessus has multiple profiles/policies to perform different types of scans such as, scans oriented for PCI-DSS, malware scans, web application scans, bad shell shock detection scan to name a few.
  • Nessus has the ability to classify the vulnerabilities into risk-based categories from critical to even informational which I think is one of the things that separates Nessus from other vulnerability scanners.
Tejas Gandhi | TrustRadius Reviewer
Tejas Gandhi
Associate Security Consultant
Read full review
Cons
Amazon AWS
  • [In my experience] Cost can easily get out of control with multiple trails on full logging
  • Logs can be difficult to decipher
Verified User
Anonymous
Read full review
Tenable
  • The tool has lots of options for setting up before scanning any device, this methodology could be simplified further with default configuration for various devices predefined, anyhow we can use this technique by making use of policies.
  • For advanced users we cannot disable the plugins inside the plugin groups, we can enable the whole set of plugins at a time, for few hundreds its ok, but thousands of plugins are of waste of resource and time.
SZ
Sohail Zende
Network Security Consultant
Read full review
Likelihood to Renew
Amazon AWS
No answers on this topic
Tenable
Nessus is best and easy to use application for Vulnerabilities finding and reporting, it has multiple platforms and wide scope covering almost all devices for security improvement so far, thus we are very likely to continue its services.
SZ
Sohail Zende
Network Security Consultant
Read full review
Usability
Amazon AWS
No answers on this topic
Tenable
Tenable Nessus is a great product and provides a lot of value, but it is difficult to set up and use and the amount of data it generates can be overwhelming. It does help us prioritize based on the severity of the detection, however there are sometimes mitigating factors that we have implemented that Nessus does not account for, which causes lots of noise in the reports.
Verified User
Anonymous
Read full review
Support Rating
Amazon AWS
No answers on this topic
Tenable
I haven't needed to contact support yet. But issues are easily solved with a quick internet search which means support and by extension, the larger community are involved and knowledgeable.
Verified User
Anonymous
Read full review
Alternatives Considered
Amazon AWS
I think in the end, CloudTrail has more features and you can dive deeper inside the logs so it depends on your usage and what you expect in the end to make the right choice, I would say that both tools are really useful and bring a lot of benefits to I.T. companies.
Verified User
Anonymous
Read full review
Tenable
Sometimes when we identify a vulnerability with Nessus that has an exploit, we made a proof of concept with Metasploit in order to show to the IT managers the importance of the software/hardware hardening.
Omar Israel Sánchez Monroy | TrustRadius Reviewer
Omar Israel Sánchez Monroy
Auditor de Seguridad de la Información
Read full review
Return on Investment
Amazon AWS
  • Allows us to investigate any strange api actions
  • Increases security
  • Audit trail of changes made in AWS
Verified User
Anonymous
Read full review
Tenable
  • Nessus certainly has a positive impact while me while performing my job, either as security research, or performing vulnerability assessments for clients. It gives a lot of information about the system/application after performing scans. The number of false positives is also less compared to other vulnerability scanners.
  • The professional edition is very useful as policy templates available in this edition are very handy and useful even to perform compliance scan like PCI DSS scan.
  • Also, the ability to export the scan results into reports in formats like HTML, PDF is very useful which could be for performing system/application reviews.
Tejas Gandhi | TrustRadius Reviewer
Tejas Gandhi
Associate Security Consultant
Read full review
ScreenShots

AWS CloudTrail Screenshots

Screenshot of CloudTrail Insights: Identify and respond to unusual operational activity •Unexpected spikes in resource provisioning •Bursts of IAM management actions •Gaps in periodic maintenance activity •Automatic analysis of API calls and usage patterns •Alerts when unusual activity is detected