inputs for qualys guard vs nessus

[rupesh kumar]

Hi,

 

Can anyone share their inputs on qualysguard. Is it worth than nessus scanner. People who are using either nessus or qualys guard can share their thoughts.

 

-Rupesh

[Rogue Bull]

I have used Nessus. It has very few false positives and does a good job. I use the filter feature in nessus quite frequently to send out relevant reports to different teams. I havent used QualysGuard but it is a very good product too for larger deployments.

This might offer you some insight : http://www.redcardsecurity.com/pages/resources_files/MarketScope.pdf

[Aniket Rastogi]

Wel in this context I can say that gualys has a better customer service support as compared to tenable. Featureswise clearly nessus is better, but gualysguard is also picking up fast.

Aniket

--
null - Spreading the right Information
null Mailing list charter: http://null.co.in/section/about/null_list_charter/
---
You received this message because you are subscribed to the Google Groups "null" group.
To unsubscribe from this group and stop receiving emails from it, send an email to null-co-in+...@googlegroups.com.
For more options, visit https://groups.google.com/groups/opt_out.
 
 

[Anand Pandey]

Hi Rupesh

I have worked on both Nessus and Qualys.

scan results of both the tools contain some false positive, but the quantity of false positive in Qualys is less then that of Nessus.

You can automate the process of creating a ticket based on the vulnerability identified and assign them to respective team for closure, Nessus has no feature of creating tickets.

Re-scan will closed the tickets raised for open findings which are now closed, You can also identify any rouge device.

Both are good, but the difference is one can automate your work while other needs bit manual work.

On Saturday, June 15, 2013 4:07:24 PM UTC+5:30, seven wrote:

[Anant Shrivastava]

just my two cents.

what i can understand by this conversation is that the correct comparision should be between qualys and security center from nessus folks.

-Anant

--

[h3llbroughtn0fury .]

I would say having both is always good. But if I have to invest in 'one', I would prefer Qualys.

Qualys appears to be more useful. At least the report generation part is really good and the items are well readable and more informative than Nessus. Their (Qualys) prioritization of vulnerabilities has more clarity and mostly the solutions part gives you a nice feeling on how to approach towards the solution. The links/CVE references and patch references by the vendor are mostly present in the report itself.

What I feel is every time I look at a Nessus report, I have to really start my brains and keep google ready to find out if the reported item is really a problem.

[Rajesh A.]

I have been using nessus (professional feed) from last 7+ years and found if we can invest little time and brain this is a very good automated scanner with very reasonable price. Configuring the policy properly will help a lot. And much more tweaking helps. There are  many advantages with nessus if we start using and familiar with the same.

I never seen Qualys.. so no comments.

Thanks.
R@J

[Ashutosh J]

Agree to R@J. Configuring correct policy is the key in Nessus. I can't comment on Qualys as I have not used it so far.

[rupesh kumar]

Any body working on Qualys guard, pls share their thoughts

--

[Balasubramaniam Natarajan]

On Sat, Jun 22, 2013 at 11:10 PM, rupesh kumar <thisisr...@gmail.com> wrote:

Any body working on Qualys guard, pls share their thoughts

• Qualys is get the box set its IP, fix it in your environment and forget about the maintenance of the box.  However with nessus that is not the case, with that said Nessus is no way second to Qualys. 

• Nessus has wonderful security centre to drill down on a particular vulnerability.  I don't remember seeing that feature on Qualys(I may be wrong),

• Qualys customer support is really good.  I have never used Nessus Customer support so far hence cannot comment on the same.

--
Regards,
Balasubramaniam Natarajan
www.blog.etutorshop.com

[Rogue Bull]

 I concur with Anant on this.

Tenable has two popular offerings:
Nessus (ProFeed)
SecurityCenter

Tenable's Security centre has all the alerts and ticketing features like in Qualys. ProFeed is just a vuln scanner with very limited collaboration features. If you have a large enterprise deployment with multiple teams (even contractors) looking into the security aspect then you might want to compar Tenable's SecurityCenter and QualysGuard.