Nmap vs. Tenable Vulnerability Management

If you're a sysadmin, or anyone who's had to deploy network services, you've almost certainly had to use Nmap at some point or other. Need to see what devices are on your LAN? Nmap can tell you that. Want to check which ports your web server has open to the internet? Nmap is your friend.

Nmap is a powerful command-line tool and has many options that require some reading of documentation to get the best out of (although generally straightforward). If the thought of working at the command-line scares you (presumably not if you're reading this review), then you may want a much simpler tool, or at least check out Zenmap GUI.

Incentivized

I've been using this product since it began as an open source product, I really like it and for the money, I think it's probably the best choice for most companies who need a product like this. Over the years I've seen the interface change quite a bit and sometimes I think it's a bit unclear how to do certain things and the different packages can be confusing, these are the only reasons I'm giving it a 9 instead of a 10.

Incentivized

• NMap provides a very fast and a very thorough network "sweep" that allows you to quickly map out exactly what's on your network.
• NMap is highly configurable. The "canned" choices are very good in most instances, but using various switches and options, you can create a very specific scan and get exactly the results you're looking for.
• NMap is easy to use. Even a new administrator will be able to use the graphical version (Zenmap) with efficiency right away.

Incentivized

• Setup of the internal scanner was fairly simple and straight forward.
• An update came out for the internal scanner that allows you to add an Internal Certificate Authority for lookup.
• Has automated reporting to keep executives and compliance departments informed.
• Internal scanner can be configured to auto-update itself.
• "Recast Rules" allows your organization to redefine a vulnerabilities' classification, if it is not applicable or your disagree.
• External PCI scans allow you to remediate before submitting to Tenable.io for review.
• Tenable.io staff was very patient and helpful. They provided some limited guidance with remediation.
• Internal and External scans can be automated. schedule for the automated scans is very granular.

Incentivized

• The GUI version on Nmap could use some improvement with the options that are available to do scans. For example, they could make it easier to select options for the different types of scanning for people who are beginners
• There are no abilities to schedule a scan in the Nmap tool.
• An intensive scan sometimes takes too much time to complete.

Incentivized

• Expensive - You do pay a slight premium for the best product in the space.
• Asset management is difficult to work with if you have a lot of asset turnover, the license can be ''held'' for 3-6 months after the asset is gone from your environment.

Incentivized

We like to renew tenable each year we have had it so far.

Incentivized

Nmap uses are very practical and I don't think there is a better tools for what Nmap does. It is open-sources that therefore there is no cost to use it. It offers a number of benefits, including but not limited to network mapping, port scanning and more. It is very reliable as a network scanning tool.

Incentivized

Overall it is good, it took a little while to understand it and figure things out but once you have a good grasp on it then, it is very good.

Incentivized

There is a very large support community and a robust selection of add-ons and scripts. Once you get the use down this is one of the most powerful tools and you can find anything you are looking for as far as examples on the web. While not having official support its not lacking by any means.

Incentivized

Support is usually really great at walking you through any steps you need to take when you get stuck on something. There are a few false positives and errors that have come up over the years that required their help to get through. Unfortunately, the steps required to diagnose some problems are more tedious than I think should be necessary. (IE: SQL instances can throw errors that clog up your logs because one plugin affects it in a certain way. The process to diagnose this is to watch timestamps of plugins in a log while monitoring the SQL logs at the same time and using your best guess as to what is causing it.)

Incentivized

Alternatives to Nmap (other IP scanners) are often much more limited in what they can do; They often only allow you to scan a specific subset of ports or a limited number of IP addresses in one command. Nmap is unrestricted in that regard. What makes Nmap stand out above the rest, is the complete network analysis package you get with it. It allows IP scanner, network deep-dives, hardware analysis, vulnerability analysis, encryption detailing, and so much more, in one free application

Incentivized

Tenable.io has a comparable set of features, with excellent support and a competitive price. After less than desirable experiences with another company, we moved to Tenable and haven't looked back since.

Incentivized

• Nmap with Wireshark is free, so it's been a great combo team to gather info and test.
• It's allowed us to avoid fines from false positives and to fix actual issues ourselves.
• Great for finding hosts, helps keep the network secure.

Incentivized

• Since this is a requirement for our PCI compliance and the cost is relatively low, the ROI isn't really something we need to think too much about, Tenable's pricing is fair and affordable.

Incentivized