# Qualys WAS vs Tenable Nessus Comparison | | Qualys WAS | Tenable Nessus | |---|---|---| | **Star Rating** | 4.5 out of 5 | 4.5 out of 5 | | **Total Reviews** | 20 | 301 | | **Largest Market Segment** | Mid-Market (47.4% of reviews) | Mid-Market (39.4% of reviews) | | **Entry Level Price** | No pricing available | $3,390.00 1 License With One-Time Purchase | --- ## Top Pros & Cons ### Qualys WAS **Not enough data** ### Tenable Nessus Pros: - Vulnerability Identification (21 reviews) - Vulnerability Detection (19 reviews) Cons: - Slow Scanning (8 reviews) - Expensive (6 reviews) --- ## Ratings Comparison | Rating | Qualys WAS | Tenable Nessus | |---|---|---| | **Meets Requirements** | 9.6 (14 reviews) | 9.0 (248 reviews) | | **Ease of Use** | 9.3 (14 reviews) | 8.9 (250 reviews) | | **Ease of Setup** | 10.0 (5 reviews) | 8.8 (172 reviews) | | **Ease of Admin** | 10.0 (5 reviews) | 8.9 (161 reviews) | | **Quality of Support** | 9.3 (14 reviews) | 8.4 (229 reviews) | | **Has the product been a good partner in doing business?** | 9.7 (5 reviews) | 8.7 (149 reviews) | | **Product Direction (% positive)** | 10.0 (12 reviews) | 8.9 (238 reviews) | --- ## Pricing ### Qualys WAS #### Entry-Level Pricing No pricing available #### Free Trial No information available ### Tenable Nessus #### Entry-Level Pricing Plan: Pro - 1 Year Price: $3,390.00 1 License With One-Time Purchase Description: 1-year license of the industry-leading vulnerability assessment solution. Key Features: - Automate your vulnerability scanning process [Browse all 4 editions](https://www.g2.com/products/tenable-nessus/pricing) #### Free Trial Yes --- ## Features Comparison By Category ### Dynamic Application Security Testing (DAST) | Product | Score | Reviews | |---|---|---| | **Qualys WAS** | N/A | N/A | | **Tenable Nessus** | N/A | N/A | #### Administration | Feature | Qualys WAS | Tenable Nessus | |---|---|---| | **API / Integrations** | Not enough data | Not enough data | | **Extensibility** | Not enough data | Not enough data | #### Analysis | Feature | Qualys WAS | Tenable Nessus | |---|---|---| | **Reporting and Analytics** | Not enough data | Not enough data | | **Issue Tracking** | Not enough data | Not enough data | | **Static Code Analysis** | Not enough data | Not enough data | | **Vulnerability Scan** | Not enough data | Not enough data | | **Code Analysis** | Not enough data | Not enough data | #### Testing | Feature | Qualys WAS | Tenable Nessus | |---|---|---| | **Manual Testing** | Not enough data | Not enough data | | **Test Automation** | Not enough data | Not enough data | | **Compliance Testing** | Not enough data | Not enough data | | **Black-Box Scanning** | Not enough data | Not enough data | | **Detection Rate** | Not enough data | Not enough data | | **False Positives** | Not enough data | Not enough data | ### Vulnerability Scanner | Product | Score | Reviews | |---|---|---| | **Qualys WAS** | 8.2/10 | 14 | | **Tenable Nessus** | 8.2/10 | 158 | #### Performance | Feature | Qualys WAS | Tenable Nessus | |---|---|---| | **Issue Tracking** | 8.5 (13 reviews) | Feature Not Available | | **Detection Rate** | 9.1 (13 reviews) | 8.9 (139 reviews) ✓ Verified | | **False Positives** | 6.2 (13 reviews) | 6.7 (136 reviews) ✓ Verified | | **Automated Scans** | 9.6 (13 reviews) | 9.0 (135 reviews) ✓ Verified | #### Network | Feature | Qualys WAS | Tenable Nessus | |---|---|---| | **Compliance Testing** | 8.9 (12 reviews) | 8.8 (134 reviews) ✓ Verified | | **Perimeter Scanning** | 8.3 (12 reviews) | 8.8 (127 reviews) ✓ Verified | | **Configuration Monitoring** | 8.2 (12 reviews) | 8.4 (110 reviews) ✓ Verified | #### Application | Feature | Qualys WAS | Tenable Nessus | |---|---|---| | **Manual Application Testing** | 7.1 (11 reviews) | Feature Not Available | | **Static Code Analysis** | 7.0 (11 reviews) | 7.3 (83 reviews) | | **Black Box Testing** | 8.7 (13 reviews) | 7.8 (102 reviews) | #### Agentic AI - Vulnerability Scanner | Feature | Qualys WAS | Tenable Nessus | |---|---|---| | **Autonomous Task Execution** | Not enough data | 8.1 (9 reviews) | | **Proactive Assistance** | Not enough data | 7.9 (8 reviews) | ### API Security | Product | Score | Reviews | |---|---|---| | **Qualys WAS** | N/A | N/A | | **Tenable Nessus** | N/A | N/A | #### API Management | Feature | Qualys WAS | Tenable Nessus | |---|---|---| | **API Discovery** | Not enough data | Not enough data | | **API Monitoring** | Not enough data | Not enough data | | **Reporting** | Not enough data | Not enough data | | **Change Management** | Not enough data | Not enough data | #### Security Testing | Feature | Qualys WAS | Tenable Nessus | |---|---|---| | **Compliance Monitoring** | Not enough data | Not enough data | | **API Verification** | Not enough data | Not enough data | | **API Testing** | Not enough data | Not enough data | #### Security Management | Feature | Qualys WAS | Tenable Nessus | |---|---|---| | **Security and Policy Enforcement** | Not enough data | Not enough data | | **Anomoly Detection** | Not enough data | Not enough data | | **Bot Detection** | Not enough data | Not enough data | ### Attack Surface Management | Product | Score | Reviews | |---|---|---| | **Qualys WAS** | N/A | N/A | | **Tenable Nessus** | 8.3/10 | 6 | #### Asset Management | Feature | Qualys WAS | Tenable Nessus | |---|---|---| | **Asset Discovery** | Not enough data | 6.9 (6 reviews) | | **Shadow IT Detection** | Not enough data | 7.5 (6 reviews) | | **Change Management** | Not enough data | 4.7 (6 reviews) | #### Monitoring | Feature | Qualys WAS | Tenable Nessus | |---|---|---| | **Gap Analysis** | Not enough data | 8.3 (6 reviews) | | **Vulnerability Intelligence** | Not enough data | 10.0 (6 reviews) | | **Compliance Monitoring** | Not enough data | 8.6 (6 reviews) | | **Continuous Monitoring** | Not enough data | 9.2 (6 reviews) | #### Risk Management | Feature | Qualys WAS | Tenable Nessus | |---|---|---| | **Risk-Prioritization** | Not enough data | 9.2 (6 reviews) | | **Reconnaissance** | Not enough data | 9.2 (6 reviews) | | **At-Risk Analysis** | Not enough data | 8.6 (6 reviews) | | **Threat Intelligence** | Not enough data | 9.4 (6 reviews) | #### Generative AI | Feature | Qualys WAS | Tenable Nessus | |---|---|---| | **AI Text Summarization** | Not enough data | Not enough data | ### Cloud Security | Product | Score | Reviews | |---|---|---| | **Qualys WAS** | N/A | N/A | | **Tenable Nessus** | N/A | N/A | #### Cloud Visibility | Feature | Qualys WAS | Tenable Nessus | |---|---|---| | **Data Discovery** | Not enough data | Not enough data | | **Cloud Registry** | Not enough data | Not enough data | | **Cloud Gap Analytics** | Not enough data | Not enough data | #### Security | Feature | Qualys WAS | Tenable Nessus | |---|---|---| | **Data Security** | Not enough data | Not enough data | | **Data loss Prevention** | Not enough data | Not enough data | | **Security Auditing** | Not enough data | Not enough data | #### Identity | Feature | Qualys WAS | Tenable Nessus | |---|---|---| | **SSO** | Not enough data | Not enough data | | **Governance** | Not enough data | Not enough data | | **User Analytics** | Not enough data | Not enough data | --- ## Categories **Shared Categories (1):** [Vulnerability Scanner Software](https://www.g2.com/categories/vulnerability-scanner) **Unique to Tenable Nessus (3):** [ Attack Surface Management Software](https://www.g2.com/categories/attack-surface-management), [Dynamic Application Security Testing (DAST) Software](https://www.g2.com/categories/dynamic-application-security-testing-dast), [API Security Tools](https://www.g2.com/categories/api-security) --- ## Reviewer Demographics ### By Company Size | Segment | Qualys WAS | Tenable Nessus | |---|---|---| | **Small-Business** | 21.1% | 26.1% | | **Mid-Market** | 47.4% | 39.4% | | **Enterprise** | 31.6% | 34.5% | ### By Industry #### Qualys WAS - **Information Technology and Services:** 31.6% - **Computer Software:** 31.6% - **Computer & Network Security:** 21.1% - **Outsourcing/Offshoring:** 5.3% - **Internet:** 5.3% - **Financial Services:** 5.3% #### Tenable Nessus - **Information Technology and Services:** 25.7% - **Computer & Network Security:** 16.5% - **Financial Services:** 7.4% - **Computer Software:** 6.0% - **Banking:** 4.6% - **Government Administration:** 3.9% - **Higher Education:** 3.2% - **Hospital & Health Care:** 2.5% - **Education Management:** 2.1% - **Telecommunications:** 2.1% - **Other:** 26.1% --- ## Alternatives ### Alternatives to Qualys WAS - [Burp Suite](https://www.g2.com/products/burp-suite/reviews) — 4.8/5 stars (129 reviews) - [Wiz](https://www.g2.com/products/wiz-wiz/reviews) — 4.7/5 stars (793 reviews) - [Red Hat Ansible Automation Platform](https://www.g2.com/products/red-hat-ansible-automation-platform/reviews) — 4.6/5 stars (377 reviews) - [Orca Security](https://www.g2.com/products/orca-security/reviews) — 4.6/5 stars (264 reviews) - [Invicti (formerly Netsparker)](https://www.g2.com/products/invicti-formerly-netsparker/reviews) — 4.6/5 stars (69 reviews) - [Gearset DevOps](https://www.g2.com/products/gearset-devops/reviews) — 4.7/5 stars (292 reviews) - [Intruder](https://www.g2.com/products/intruder/reviews) — 4.8/5 stars (206 reviews) - [Harness Platform](https://www.g2.com/products/harness-platform/reviews) — 4.6/5 stars (281 reviews) - [Pentest-Tools.com](https://www.g2.com/products/pentest-tools-com/reviews) — 4.8/5 stars (100 reviews) - [Acunetix by Invicti](https://www.g2.com/products/acunetix-by-invicti/reviews) — 4.1/5 stars (105 reviews) ### Alternatives to Tenable Nessus - [Intruder](https://www.g2.com/products/intruder/reviews) — 4.8/5 stars (206 reviews) - [Invicti (formerly Netsparker)](https://www.g2.com/products/invicti-formerly-netsparker/reviews) — 4.6/5 stars (69 reviews) - [Detectify](https://www.g2.com/products/detectify/reviews) — 4.5/5 stars (51 reviews) - [Wiz](https://www.g2.com/products/wiz-wiz/reviews) — 4.7/5 stars (793 reviews) - [Burp Suite](https://www.g2.com/products/burp-suite/reviews) — 4.8/5 stars (129 reviews) - [Acunetix by Invicti](https://www.g2.com/products/acunetix-by-invicti/reviews) — 4.1/5 stars (105 reviews) - [Pentest-Tools.com](https://www.g2.com/products/pentest-tools-com/reviews) — 4.8/5 stars (100 reviews) - [Veracode Application Security Platform](https://www.g2.com/products/veracode-application-security-platform/reviews) — 3.8/5 stars (25 reviews) - [Orca Security](https://www.g2.com/products/orca-security/reviews) — 4.6/5 stars (264 reviews) - [APPCHECK](https://www.g2.com/products/appcheck/reviews) — 4.6/5 stars (67 reviews) --- ## Top Discussions ### Qualys WAS - Title: [What are the typical features offered by vulnerability scanner?](https://www.g2.com/discussions/what-are-the-typical-features-offered-by-vulnerability-scanner) — 1 comment > **Top comment:** "Vulnerability scanners are essential tools for identifying and mitigating security risks in computer systems and networks. They offer a range of features to..." ### Tenable Nessus - Title: [Is there a free version of Nessus?](https://www.g2.com/discussions/is-there-a-free-version-of-nessus) — 2 comments > **Top comment:** "30 /15 days trail is available " - Title: [What does Nessus Professional scan for?](https://www.g2.com/discussions/about-nessus-2b3f6c8f-4cde-460a-bd61-f2527f0cdb45) — 2 comments, 1 upvote > **Top comment:** "It scans the system for different vulnerabilities depending on what policy you want to scan the system with (like Internal PCI, Policy Compliance, SCAP,..." - Title: [What types of devices can Nessus Professional scan?](https://www.g2.com/discussions/device-types-78d9c056-eb92-4435-aad4-32afa6a1a445) — 2 comments, 1 upvote > **Top comment:** "Windows PCs/servers , Linux systems/servers, Mobiles, IPMI devices like iLO, iDRAC, network switches, storage arrays, etc." - Title: [How many IP Addresses can I scan?](https://www.g2.com/discussions/ip-addresses-b6ef755d-8e1e-4949-818a-ec228e8ac779) — 2 comments, 1 upvote > **Top comment:** "It depends on your license." - Title: [What do I need to run Nessus professional?](https://www.g2.com/discussions/environment-c71784d4-2685-42a7-870f-56620a4bcb97) — 2 comments, 1 upvote > **Top comment:** "you don't need any special requirements you can run on any windows or Linux machine without any hazel." --- **Source:** [G2.com](https://www.g2.com) | [Comparison Page](https://www.g2.com/compare/qualys-was-vs-tenable-nessus)