Tenable Attack Surface Management vs. Tenable Nessus

Tenable Attack Surface Management

Tenable Nessus

Overview
Product	Rating	Most Used By	Product Summary	Starting Price
Tenable Attack Surface Management	Score 6.5 out of 10	N/A	Tenable Attack Surface Management (formerly Tenable.asm, and previously Bit Discovery) is an external attack surface management (EASM) solution that integrates into a vulnerability management platform. Tenable.asm continuously maps the entire internet and discovers connections to internet-facing assets so that users can assess the security posture of the entire external attack surface, or those facets of an organization that face the public, and the Internet. It can be used to access an attack…	N/A
Tenable Nessus	Score 8.7 out of 10	N/A	Tenable headquartered in Columbia offers Nessus, a vulnerability scanning and security assessment solution used to analyze an entity's security posture, vulnerability testing, and provide configuration assessments.	$2,790

Pricing

Tenable Attack Surface Management

Tenable Nessus

Editions & Modules

No answers on this topic

1 Year: $2,790.00
1 Year + Advanced Support: $3,190.00
2 Years: $5,440.00
2 Years + Advanced Support: $6,240.00
3 Years: $7,951.00
3 Years + Advanced Support: $9,151.00

Offerings

Pricing Offerings
Tenable Attack Surface Management	Tenable Nessus
Free Trial
No	No
Free/Freemium Version
No	No
Premium Consulting/Integration Services
No	No

Entry-level Setup Fee

No setup fee

Additional Details

—

More Pricing Information

Community Pulse
	Tenable Attack Surface Management	Tenable Nessus
Considered Both Products	Tenable Attack Surface Management Stephan van der Merwe Cyber Security Analyst Chose Tenable Attack Surface Management We didn't test any other solutions. Because to be frank no other solution can compare feature-wise as well as ease of use. Which makes reselling and supporting any Tenable product such an obvious choice for us. Incentivized Helpful?	Tenable Nessus No answer on this topic

Features

Tenable Attack Surface Management

Tenable Nessus

Threat Intelligence

Comparison of Threat Intelligence features of Product A and Product B
	Tenable Attack Surface Management 9.3 1 Ratings 14% above category average	Tenable Nessus 6.2 4 Ratings 26% below category average
Threat Recognition	9.01 Ratings	7.04 Ratings
Vulnerability Classification	10.01 Ratings	9.53 Ratings
Automated Alerts and Reporting	10.01 Ratings	10.03 Ratings
Threat Analysis	9.01 Ratings	5.53 Ratings
Threat Intelligence Reporting	9.01 Ratings	5.03 Ratings
Automated Threat Identification	9.01 Ratings	5.53 Ratings
Network Analytics	00 Ratings	1.12 Ratings

Vulnerability Management Tools

Comparison of Vulnerability Management Tools features of Product A and Product B
	Tenable Attack Surface Management 9.4 1 Ratings 13% above category average	Tenable Nessus 7.5 4 Ratings 10% below category average
IT Asset Realization	10.01 Ratings	7.03 Ratings
Authentication	9.01 Ratings	7.53 Ratings
Configuration Monitoring	9.01 Ratings	8.04 Ratings
Web Scanning	9.01 Ratings	5.53 Ratings
Vulnerability Intelligence	10.01 Ratings	9.34 Ratings

Best Alternatives
	Tenable Attack Surface Management	Tenable Nessus
Small Businesses	Action1 Score 9.4 out of 10	Action1 Score 9.4 out of 10
Medium-sized Companies	Action1 Score 9.4 out of 10	Action1 Score 9.4 out of 10
Enterprises	CrowdStrike Falcon Score 9.0 out of 10	CrowdStrike Falcon Score 9.0 out of 10
All Alternatives	View all alternatives	View all alternatives

User Ratings
	Tenable Attack Surface Management	Tenable Nessus
Likelihood to Recommend	10.0 (1 ratings)	9.0 (9 ratings)
Likelihood to Renew	- (0 ratings)	9.1 (1 ratings)
Usability	- (0 ratings)	8.0 (5 ratings)
Support Rating	10.0 (1 ratings)	7.1 (4 ratings)

User Testimonials
	Tenable Attack Surface Management	Tenable Nessus
Likelihood to Recommend	Tenable Tenable Attack Surface Management simplifies not just your vulnerability management needs but also the mapping and discovery of known and unknown internet assets. All this within a very intuitive online dashboard, making it relatively easy to setup and configure. Without having to spend hours of training time in order to use basic functions. Incentivized Stephan van der Merwe Cyber Security Analyst Read full review	Tenable It is an excellent tool for scanning servers, workstations, and network devices to identify missing patches and misconfiguration; we regularly use it to confirm patch effectiveness after the update; it also helps us for preparing audits such as iso 27001, and regulatory requirements, it also helps us to identify open ports and services that violate security. AG Akhilesh Ghosh VAPT-Teamlead Read full review
Pros	Tenable Maps external facing infrastructure and continuously updates this data Can display the scan results in Business Context to help with management reporting Great Asset Management tool Powerful vulnerability scanning engine Incentivized Stephan van der Merwe Cyber Security Analyst Read full review	Tenable Nessus is best at performing vulnerability scans, in fact, it gives findings and moreover accurate findings of the assessments. It does not do penetration testing or exploit the vulnerabilities because it is concerned about scanning the systems/applications. In fact, Nessus has multiple profiles/policies to perform different types of scans such as, scans oriented for PCI-DSS, malware scans, web application scans, bad shell shock detection scan to name a few. Nessus has the ability to classify the vulnerabilities into risk-based categories from critical to even informational which I think is one of the things that separates Nessus from other vulnerability scanners. Incentivized Tejas Gandhi Associate Security Consultant Read full review
Cons	Tenable No improvement can be suggested at this moment as it fits our needs and more Incentivized Stephan van der Merwe Cyber Security Analyst Read full review	Tenable The tool has lots of options for setting up before scanning any device, this methodology could be simplified further with default configuration for various devices predefined, anyhow we can use this technique by making use of policies. For advanced users we cannot disable the plugins inside the plugin groups, we can enable the whole set of plugins at a time, for few hundreds its ok, but thousands of plugins are of waste of resource and time. Incentivized SZ Sohail Zende Network Security Consultant Read full review
Likelihood to Renew	Tenable No answers on this topic	Tenable Nessus is best and easy to use application for Vulnerabilities finding and reporting, it has multiple platforms and wide scope covering almost all devices for security improvement so far, thus we are very likely to continue its services. Incentivized SZ Sohail Zende Network Security Consultant Read full review
Usability	Tenable No answers on this topic	Tenable Tenable Nessus is a great product and provides a lot of value, but it is difficult to set up and use and the amount of data it generates can be overwhelming. It does help us prioritize based on the severity of the detection, however there are sometimes mitigating factors that we have implemented that Nessus does not account for, which causes lots of noise in the reports. Incentivized Verified User Anonymous Read full review
Support Rating	Tenable Very fast and helpful support staff. From the Vendor as well as the local Distributor. Support like that makes adding such a product to our MSSP offering the obvious choice. Incentivized Stephan van der Merwe Cyber Security Analyst Read full review	Tenable I haven't needed to contact support yet. But issues are easily solved with a quick internet search which means support and by extension, the larger community are involved and knowledgeable. Incentivized Verified User Anonymous Read full review
Alternatives Considered	Tenable We didn't test any other solutions. Because to be frank no other solution can compare feature-wise as well as ease of use. Which makes reselling and supporting any Tenable product such an obvious choice for us. Incentivized Stephan van der Merwe Cyber Security Analyst Read full review	Tenable Sometimes when we identify a vulnerability with Nessus that has an exploit, we made a proof of concept with Metasploit in order to show to the IT managers the importance of the software/hardware hardening. Incentivized Omar Israel Sánchez Monroy Auditor de Seguridad de la Información Read full review
Return on Investment	Tenable This solution is most definitely a great Return on Investment because it can quickly and accurately discover and report on our clients' entire Internet facing real estate. And keep this data updated with any changes. Incentivized Stephan van der Merwe Cyber Security Analyst Read full review	Tenable Nessus certainly has a positive impact while me while performing my job, either as security research, or performing vulnerability assessments for clients. It gives a lot of information about the system/application after performing scans. The number of false positives is also less compared to other vulnerability scanners. The professional edition is very useful as policy templates available in this edition are very handy and useful even to perform compliance scan like PCI DSS scan. Also, the ability to export the scan results into reports in formats like HTML, PDF is very useful which could be for performing system/application reviews. Incentivized Tejas Gandhi Associate Security Consultant Read full review
ScreenShots