AWS CloudTrail vs. Tenable Vulnerability Management

Overview
ProductRatingMost Used ByProduct SummaryStarting Price
AWS CloudTrail
Score 8.6 out of 10
N/A
AWS CloudTrail is a service that enables governance, compliance, operational auditing, and risk auditing of an AWS account. With CloudTrail, users can log, continuously monitor, and retain account activity related to actions across AWS infrastructure. CloudTrail provides event history of AWS account activity, including actions taken through the AWS Management Console, AWS SDKs, command line tools, and other AWS services. This event history simplifies security analysis, resource change tracking,…N/A
Tenable Vulnerability Management
Score 9.5 out of 10
N/A
Vulnerability management specialist Tenable offers their cloud application and container security platform Tenable Web App Scanning (formerly Tenable.io), a vulnerability management tool that emphasizes visibility of web applications, automatic scanning, and a unified view of cloud infrastructure and possible inconsistencies indicating a vulnerability.N/A
Pricing
AWS CloudTrailTenable Vulnerability Management
Editions & Modules
No answers on this topic
No answers on this topic
Offerings
Pricing Offerings
AWS CloudTrailTenable Vulnerability Management
Free Trial
YesNo
Free/Freemium Version
YesNo
Premium Consulting/Integration Services
NoNo
Entry-level Setup FeeNo setup feeNo setup fee
Additional DetailsYou can view, filter, and download the most recent 90 days of your account activity for all management events in supported AWS services free of charge. You can set up a trail that delivers a single copy of management events in each region free of charge. Once a CloudTrail trail is set up, Amazon S3 charges apply based on your usage. You will be charged for any data events or additional copies of management events recorded in that region. In addition, you can choose CloudTrail Insights by enabling Insights events in your trails. CloudTrail Insights analyzes write management events, and you are charged based on the number of events that are analyzed in that region.
More Pricing Information
Community Pulse
AWS CloudTrailTenable Vulnerability Management
Features
AWS CloudTrailTenable Vulnerability Management
Threat Intelligence
Comparison of Threat Intelligence features of Product A and Product B
AWS CloudTrail
-
Ratings
Tenable Vulnerability Management
8.4
Ratings
6% above category average
Network Analytics00 Ratings10.00 Ratings
Threat Recognition00 Ratings10.00 Ratings
Vulnerability Classification00 Ratings10.00 Ratings
Automated Alerts and Reporting00 Ratings4.00 Ratings
Threat Analysis00 Ratings10.00 Ratings
Threat Intelligence Reporting00 Ratings5.00 Ratings
Automated Threat Identification00 Ratings10.00 Ratings
Vulnerability Management Tools
Comparison of Vulnerability Management Tools features of Product A and Product B
AWS CloudTrail
-
Ratings
Tenable Vulnerability Management
8.8
Ratings
8% above category average
IT Asset Realization00 Ratings8.00 Ratings
Authentication00 Ratings10.00 Ratings
Configuration Monitoring00 Ratings8.00 Ratings
Web Scanning00 Ratings8.00 Ratings
Vulnerability Intelligence00 Ratings10.00 Ratings
Best Alternatives
AWS CloudTrailTenable Vulnerability Management
Small Businesses
Armor
Armor
Score 6.0 out of 10
Action1
Action1
Score 9.5 out of 10
Medium-sized Companies
Druva Security Cloud
Druva Security Cloud
Score 9.7 out of 10
Action1
Action1
Score 9.5 out of 10
Enterprises
Druva Security Cloud
Druva Security Cloud
Score 9.7 out of 10
CrowdStrike Falcon
CrowdStrike Falcon
Score 9.1 out of 10
All AlternativesView all alternativesView all alternatives
User Ratings
AWS CloudTrailTenable Vulnerability Management
Likelihood to Recommend
8.0
(0 ratings)
10.0
(0 ratings)
Likelihood to Renew
-
(0 ratings)
9.0
(0 ratings)
Usability
-
(0 ratings)
8.0
(0 ratings)
Support Rating
-
(0 ratings)
8.8
(0 ratings)
User Testimonials
AWS CloudTrailTenable Vulnerability Management
Likelihood to Recommend
Most probably it would be suitable for Finance industries, where security is at the head of the table. However, in our case for E-commerce, it's also quite suitable, since we have quite a significant amount of data and usage of AWS services. Especially with usage of AWS services, AWS CloudTrail comes into play as a heavy plus. For instance, troubleshooting any issues in AWS services is really nice. Therefore, it would be less appropriate with a small amount of AWS service usage and some basic web hosting.
Read full review
Tenable.io is a cost effective Internal and External scanner. The Internal scanner came with a .ova, so it was very simple and quick to deploy it into our ESXi environment. It has a cloud-based dashboard for management and the internal scanner is configured to auto-update from Tenable.io. The license came with 4 External PCI scans (with remediation) a year.
Read full review
Pros
  • Logs details
  • Easy implementation
  • Great support
Read full review
  • Wide range of capabilities that can be customized to fit each user's environment and needs
  • Provides high-quality data and insights into detected vulnerabilities
  • Great customer support
Read full review
Cons
  • Delay
  • User interface, must send logs elsewhere to view them
Read full review
  • Configuration is not always intuitive, but the comprehensive training and documentation comes to the rescue.
  • The mix of classic and beta UIs currently is confusing and we find the classic UI is actually better.
Read full review
Likelihood to Renew
No answers on this topic
We like to renew tenable each year we have had it so far.
Read full review
Usability
No answers on this topic
Overall it is good, it took a little while to understand it and figure things out but once you have a good grasp on it then, it is very good.
Read full review
Support Rating
No answers on this topic
Support is usually really great at walking you through any steps you need to take when you get stuck on something. There are a few false positives and errors that have come up over the years that required their help to get through. Unfortunately, the steps required to diagnose some problems are more tedious than I think should be necessary. (IE: SQL instances can throw errors that clog up your logs because one plugin affects it in a certain way. The process to diagnose this is to watch timestamps of plugins in a log while monitoring the SQL logs at the same time and using your best guess as to what is causing it.)
Read full review
Alternatives Considered
For this specific functionality, I am not aware of any other product that can do what [AWS] Cloudtrail does. We did not evaluate any other products.
Read full review
I think Tenable and Qualys have a lot of similarities, I continue to go back to Tenable because of my familiarity and comfort level with it. I've also used a company called SecurityMetrics which has vulnerability scanning included but it is not as comprehensive as Tenable.
Read full review
Return on Investment
  • Saved us from purchasing and managing 3rd party solutions
  • Satisfies Security/Governance requirements
  • No upkeep/maintenance
Read full review
  • We're able to mitigate over 90% of our vulnerability risk without too much effort. It helps find where automated patching fails and we can plan a fix from the findings.
  • A side effect of our scanning reveals new devices on our network that aren't cleared to be.
Read full review
ScreenShots

AWS CloudTrail Screenshots

Screenshot of CloudTrail Insights: Identify and respond to unusual operational activity
•Unexpected spikes in resource provisioning
•Bursts of IAM management actions
•Gaps in periodic maintenance activity
•Automatic analysis of API calls and usage patterns
•Alerts when unusual activity is detected