We performed a comparison between Rapid7 Metasploit and Tenable Security Center based on real PeerSpot user reviews.
Find out in this report how the two Vulnerability Management solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The Search Engineering feature is good."
"The most valuable features of the solution are the scripts, the modules, and the tools that the Rapid7 Metasploit framework has."
"The tool's most useful feature for penetration testing is its automation capabilities. With the professional edition, you can upload the results from Nessus in the Rapid7 Metasploit solution portal."
"The greatest advantage of Rapid7 Metasploit is that it is the only system that can directly exploit vulnerabilities on the Metasploit platform."
"I use Rapid7 Metasploit for payload generation and Post-Exploitation."
"It is scalable. It's in line with our needs."
"It contains almost all the available exploits and payloads."
"The option to generate phishing emails has proven to be very valuable in understanding the behavior of users."
"It is a very good and user-friendly product."
"What is useful to me is being able to fulfill very customized scanning policies. In the clinical environment, because of vendor control, we can't perform credential-vulnerability scanning. And network scans, which I've done before, can cause a lot of impact. Being able to create very customized policies to be able to routinely scan and audit our clinical networks, while simultaneously not causing impact, is important to us."
"Tenable.sc is user-friendly."
"Support is knowledgeable."
"It basically reviews our threat landscape vulnerability."
"Tenable SC is good for reporting and alerting. The filtering feature is also very valuable. Its integration with multiple vendors is quite good. It can be integrated with SIEM solutions and PAM solutions such as Thycotic, which is very helpful."
"Tenable is the leading product for vulnerability scanning."
"The tool's dashboard and reporting capabilities match our company's needs since we are able to modify the basic view to create a new dashboard, and it works out very well for our needs."
"I think areas with shortcomings that need improvement are more integration and automation."
"The solution is not user-friendly and has room for improvement."
"At the time I was using it, the graphical user interface needed some improvements."
"We'd like them to offer better coverage of malware."
"Rapid7 Metasploit can add a GUI feature because it is only available online."
"Advanced Infrastructure should be implemented in the next release for better orchestration."
"If your company's patch is not up to date, but you have other detection or defense solutions such as endpoint detection and response and antivirus software, the product exploit may not work effectively. This is because its exploit database update process is slow and not real-time. For zero-day vulnerabilities or new security threats, relying on Rapid7 Metasploit alone may not be effective."
"The open-source version has reporting limitations. You need to develop these capabilities yourself. Built-in reporting is an excellent feature for penetration testing, but it isn't a must-have. The solution could also cover more vulnerabilities. Metasploit has around 10,000 exploits in its library, but more is always better."
"Additional costs are associated with using the solution, as additional scanners are required for different endpoints connected to the Tenable Security Center. If Tenable Security Center could extract information from these scanners automatically rather than manually, it would enhance user-friendliness for customers."
"Tenable's reporting engine needs improvement. It needs to be more efficient and add more features."
"The solution needs to improve the vulnerability assessment because we have experienced some challenges with accuracy."
"Security can always be improved."
"The web application is not very functional."
"Certain aspects require manual effort, such as exporting and analyzing data for our dashboards. The built-in components of the Tenable solution are somewhat clumsy that require external tools. So, this is an area of improvement."
"The web application scanning area can be improved."
"The reporting needs a lot of work on the template."
Rapid7 Metasploit is ranked 12th in Vulnerability Management with 18 reviews while Tenable Security Center is ranked 1st in Vulnerability Management with 48 reviews. Rapid7 Metasploit is rated 7.6, while Tenable Security Center is rated 8.2. The top reviewer of Rapid7 Metasploit writes "Helps find vulnerabilities in a system to determine whether the system needs to be upgraded". On the other hand, the top reviewer of Tenable Security Center writes "A security solution for vulnerability assessment with automated scans". Rapid7 Metasploit is most compared with Tenable Nessus, Pentera, Acunetix, Rapid7 InsightVM and Nucleus, whereas Tenable Security Center is most compared with Tenable Vulnerability Management, Qualys VMDR, Rapid7 InsightVM, Tenable Nessus and Horizon3.ai. See our Rapid7 Metasploit vs. Tenable Security Center report.
See our list of best Vulnerability Management vendors.
We monitor all Vulnerability Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.