Fortify by OpenText vs. Tenable Nessus

Overview
ProductRatingMost Used ByProduct SummaryStarting Price
Fortify by OpenText
Score 9.0 out of 10
N/A
An AppSec solution formerly from Micro Focus, spanning SCA, SAST and DAST that supports the breadth and management of any application portfolio, used to secure code. Features API discovery and testing for any application, throughout the software lifecycle.N/A
Tenable Nessus
Score 8.9 out of 10
N/A
Tenable headquartered in Columbia offers Nessus, a vulnerability scanning and security assessment solution used to analyze an entity's security posture, vulnerability testing, and provide configuration assessments.
$2,790
Pricing
Fortify by OpenTextTenable Nessus
Editions & Modules
No answers on this topic
1 Year
$2,790.00
1 Year + Advanced Support
$3,190.00
2 Years
$5,440.00
2 Years + Advanced Support
$6,240.00
3 Years
$7,951.00
3 Years + Advanced Support
$9,151.00
Offerings
Pricing Offerings
Fortify by OpenTextTenable Nessus
Free Trial
NoNo
Free/Freemium Version
NoNo
Premium Consulting/Integration Services
NoNo
Entry-level Setup FeeNo setup feeNo setup fee
Additional Details
More Pricing Information
Community Pulse
Fortify by OpenTextTenable Nessus
Features
Fortify by OpenTextTenable Nessus
Threat Intelligence
Comparison of Threat Intelligence features of Product A and Product B
Fortify by OpenText
-
Ratings
Tenable Nessus
5.1
Ratings
43% below category average
Network Analytics00 Ratings8.20 Ratings
Threat Recognition00 Ratings4.50 Ratings
Vulnerability Classification00 Ratings8.20 Ratings
Automated Alerts and Reporting00 Ratings1.00 Ratings
Threat Analysis00 Ratings5.50 Ratings
Threat Intelligence Reporting00 Ratings7.30 Ratings
Automated Threat Identification00 Ratings1.00 Ratings
Vulnerability Management Tools
Comparison of Vulnerability Management Tools features of Product A and Product B
Fortify by OpenText
-
Ratings
Tenable Nessus
8.0
Ratings
1% below category average
IT Asset Realization00 Ratings9.10 Ratings
Authentication00 Ratings9.10 Ratings
Configuration Monitoring00 Ratings9.10 Ratings
Web Scanning00 Ratings4.50 Ratings
Vulnerability Intelligence00 Ratings8.20 Ratings
Best Alternatives
Fortify by OpenTextTenable Nessus
Small Businesses
GitLab
GitLab
Score 8.7 out of 10
Action1
Action1
Score 9.5 out of 10
Medium-sized Companies
Veracode
Veracode
Score 8.7 out of 10
Action1
Action1
Score 9.5 out of 10
Enterprises
Veracode
Veracode
Score 8.7 out of 10
CrowdStrike Falcon
CrowdStrike Falcon
Score 9.1 out of 10
All AlternativesView all alternativesView all alternatives
User Ratings
Fortify by OpenTextTenable Nessus
Likelihood to Recommend
9.0
(0 ratings)
9.0
(0 ratings)
Likelihood to Renew
10.0
(0 ratings)
9.1
(0 ratings)
Usability
7.0
(0 ratings)
9.7
(0 ratings)
Support Rating
10.0
(0 ratings)
7.1
(0 ratings)
User Testimonials
Fortify by OpenTextTenable Nessus
Likelihood to Recommend
I think Micro Focus Fortify WebInspect could fit really any organization well that needs to perform static code analysis on their applications (they do have dynamic scanning but I don't have any experience using it). Different static analysis tools scan code differently, Micro Focus Fortify WebInspect requires you to provide a full build of the application to be submitted with debugging files which could be easy or hard depending on how your organization is building it's apps.
Read full review
Nessus is perfectly suitable for performing comprehensive vulnerability assessment scans being a vulnerability scanner. It is less appropriate for performing penetration testing since it is not a penetration testing tool, it does not have the ability and modules to exploit the vulnerabilities of the system.
Read full review
Pros
  • prevents malware
  • mitigates risks
  • visibility
  • safety
Read full review
  • Shows you how to fix certain vulnerabilities and the commands to run.
  • Gives you the CVEs that the vulnerabilities are matched to.
  • Easy to understand the vulnerabilities list, giving reasons why the issues need to be patched or fixed.
Read full review
Cons
  • It should focus on microservices and develop features
  • Performance need to be improved
  • Multiple apps should be easy to scan in parallel thus saving time
Read full review
  • Could use an upgrade within reports.
  • Scans can take a long time to complete. Have to break them down in small sections.
Read full review
Likelihood to Renew
Since every firm needs to perform static code analysis on their applications, I believe Micro Focus Fortify WebInspect would work well for them (they also offer dynamic scanning, although I haven't used it myself). Different static analysis tools scan code in different ways, and Micro Focus Fortify WebInspect asks you to submit a complete build of the application along with debugging files. Depending on how your company builds its apps, this requirement may be simple or challenging.
Read full review
Nessus is best and easy to use application for Vulnerabilities finding and reporting, it has multiple platforms and wide scope covering almost all devices for security improvement so far, thus we are very likely to continue its services.
Read full review
Usability
It is a cloud-based platform which can provide us a very useful and unique features like Application Assessment, Scans, Vulnerability Test, Comprehensive Reporting, Monitoring, etc. Fortify by Open Text is also outstanding in various parameters for the support and integration and it is highly adaptable in various DevOps Program where you need secure app testing with all given features.
Read full review
Tenable Nessus is a great product and provides a lot of value, but it is difficult to set up and use and the amount of data it generates can be overwhelming. It does help us prioritize based on the severity of the detection, however there are sometimes mitigating factors that we have implemented that Nessus does not account for, which causes lots of noise in the reports.
Read full review
Support Rating
Always receive excellent support from the vendor. No issues there.
Read full review
I haven't needed to contact support yet. But issues are easily solved with a quick internet search which means support and by extension, the larger community are involved and knowledgeable.
Read full review
Alternatives Considered
Micro Focus Fortify WebInspect is better when it comes to speed, integration and detection capabilities as compared to Insight Appsec. What I loved the most is the broad coverage of vulnerabilities it identified as against Insight Appsec. Apart from detection capabilities the time taken is also less compared to Insight Appsec. Given the performance of Micro Focus Fortify WebInspect I would strongly recommend to everyone looking for DevSecOps and application security solutions
Read full review
Ease of deployment and use even for junior analysts, strong plugin support, and up-to-date CVE coverage, cost-effective licensing, especially for mid-size companies, and seamless integration with the SIEM tool. Overall, Nessus hit the right balance between functionality, performance, and total cost of ownership for our needs and usability.
Read full review
Return on Investment
  • Good as part of our security suite to help prevent successful attacks.
  • Reporting of defects helps to educate developers.
  • Worth the price we paid.
Read full review
  • It has helped identify security flaws in our infrastructure that has helped better secure our client's data. It did so quickly and efficiently so I was able to move on to other tasks.
Read full review
ScreenShots