Attribute
|
Essential
|
Advanced
|
Tenable
Nessus
|
Focus
|
|||
Extras
|
None
|
None
|
|
Headcount
|
|||
Headcount distribution
|
|||
Headcount growth
|
|||
Headquarters
|
|||
Countries
|
|||
Reputation
|
Same
|
9.01 from 1116 reviews
over 10 years
on G2, Gartner, PeerSpot, Software
Advice and
TrustRadius
|
|
Followers
|
Same
|
||
Research Firms
|
None
|
None
|
|
Founded
|
2001 | ||
Funding
|
Bootstrapped
|
Same
|
$565.4M
USD in 5
rounds from 5
investors
|
Acquisitions
|
None
|
None
|
Acquired 0 times and made 10 acquisitions
|
Revenue
|
|||
CVE
|
Not applicable
|
||
Compliance
|
SOC 2 Type
II and SOC
3
|
||
Bug bounty
|
No
|
||
Visits
|
|||
Authority
|
|||
Vulnerability database
|
|||
Content
|
Blog, documentation, e-books, reports, videos, webinars and
white
papers
|
||
Knowledge base
|
13 KB sections, 7 in common and 6 additional
|
7 KB sections, all in common
|
|
Community
|
|||
Sync training
|
1 workshop
|
No
|
|
Async training
|
|||
Distribution
|
Same
|
||
Marketplaces | AWS and Azure | ||
Freemium
|
No
|
No
|
No
|
Free trial
|
7-day
free trial and PoV
|
||
Demo
|
|||
Open Demo
|
No
|
No
|
No
|
Pricing
|
|||
Pricing tiers
|
1 plan
|
1 plan
|
2 plans (professional, expert). All transparent
|
Minimum term
|
Monthly | ||
Minimum payment period
|
|||
Minimum capabilities
|
|||
Minimum scope
|
1 group
|
1 author
|
No information available
|
Pricing drivers
|
|||
Minimum monthly payment
|
No information available
|
Attribute
|
Essential
|
Advanced
|
Tenable Nessus
|
PTaaS
|
No
|
No
|
|
Reverse engineering
|
No
|
Yes | No |
Secure code review
|
No
|
No
|
|
Pivoting
|
No
|
No
|
|
Exploitation
|
No
|
||
Manual reattacks
|
Not applicable
|
Not applicable
|
|
Zero-day
vulnerabilities
|
None
|
Continuous
zero-day vulnerability
research
|
|
SLA
|
Availability | ||
Min availability
|
>=99.95%
per minute LTM
|
>= 99.95% per month
|
|
After-sale guarantees
|
No
|
No
|
No
|
Accreditations
|
Amazon Linux Ready Product, AWS Graviton Ready Product, DevOps ISV Competency and Security ISV Competency | ||
Hacker certifications
|
Not
applicable
|
Not applicable
|
|
Type of contract
|
Employee
|
Same
|
|
Endpoint control
|
Not applicable
|
Total
|
Not applicable
|
Channel control
|
Not applicable
|
Total
|
Not applicable
|
Standards
|
Some
requirements
from 67
standards, 10 common and
57 additional
|
All requirements from
the same
standards
|
|
Detection method
|
|||
Remediation
|
5,
1 in common and 4 additional
|
Same, plus 1
|
1 in
common
|
Outputs
|
5,
3 in common and 2 additional
|
Same, plus 2
|
5, 3 in
common and 2 additional
|
Attribute
|
Essential |
Advanced
|
Tenable Nessus
|
ASPM
|
Yes |
No
|
|
API
|
GraphQL with JSON | ||
IDE
|
Same, plus 1
functionality
|
No
|
|
CLI
|
|||
CI/CD
|
|||
Vulnerability sources
|
4 sources, 1 in common and 3 additional
|
2 sources, 1 in common and 1 additional
|
|
Threat model alignment
|
Yes |
No
|
|
Priority criteria |
Same
|
||
Custom prioritization
|
|||
Scanner origin
|
|||
SCA
|
No
|
||
AI security
|
No
|
No
|
|
Reachability
|
12 languages
|
No
|
|
Reachability type
|
Not applicable
|
||
SBOM
|
No information
available
|
||
Malware detection
|
Yes
|
Yes | |
Autofix on components
|
No
|
No
|
No
|
Containers
|
No
|
||
Source SAST
(languages)
|
No
|
||
Source SAST
(frameworks)
|
No |
||
Custom rules
|
No
|
No
|
|
IaC
|
6, 3 in common and 3 additional
|
4, 1 in common and 3 additional
|
4, all in common
|
Binary SAST
|
1 type of
binary
|
Same, plus 2 types of
binaries
|
No
|
DAST
|
|||
API security Testing
|
No
|
||
IAST
|
No
|
No
|
No
|
CSPM
|
Yes |
No
|
|
ASM
|
No | No |
No
|
Secrets
|
Same, plus verify other attack
vectors and secrets exploitability
|
No
|
|
AI
|
No
|
||
MCP
|
No
|
||
Open-source
|
MPL-2.0 license, totally equivalent to the paid version |
Not applicable
|
No
|
Provisioning as Code
|
No
|
||
Deployment
|
SaaS and on-premises
|
||
Regions | |||
Status
|
|||
Incidents
|
Attribute
|
Essential
|
Advanced
|
Tenable Nessus
|
SCM
|
6, 2 in common and 4
additional
|
2, all in common
|
|
Binary repositories
|
None
|
None
|
None
|
Ticketing
|
None |
||
ChatOps
|
None |
None
|
None |
IDE
|
None |
||
CI/CD
|
20, 2 in common and 18
additional
|
4, 2 in common and 2
additional
|
|
SCA
|
None |
||
Container
|
None |
||
SAST
|
|||
DAST
|
|||
IAST
|
None |
None
|
None
|
Cloud
|
3, 2 in common and 1 additional
|
2, all in common
|
|
CSPM
|
None | ||
Secrets
|
None |
||
Remediation
|
None
|
None
|
None
|
Bug bounty
|
None
|
None
|
1 |
Vulnerability management
|
None
|
None
|
None
|
Compliance
|
None
|
None
|
None
|