Fortra Tripwire IP360 vs Tenable Vulnerability Management comparison

Fortra Tripwire IP360 vs. Tenable Vulnerability Management

Download the complete report

Helped 900,644 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Qualys TotalCloud

Mindshare comparison

As of June 2026, in the Vulnerability Management category, the mindshare of Qualys TotalCloud is 1.0%, up from 0.9% compared to the previous year. The mindshare of Fortra Tripwire IP360 is 0.7%, up from 0.4% compared to the previous year. The mindshare of Tenable Vulnerability Management is 2.8%, down from 5.5% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Vulnerability Management Mindshare Distribution
Product	Mindshare (%)
Tenable Vulnerability Management	2.8%
Qualys TotalCloud	1.0%
Fortra Tripwire IP360	0.7%
Other	95.5%

Vulnerability Management

Featured Reviews

Robert Orłowski

IT Security Expert at Alior Bank S.A.

Unified risk scoring has improved our cloud visibility and simplifies remediation priorities

Qualys TotalCloud provides unified vulnerability and threat assessment across both IAS and SaaS. This solution provides a single prioritized view of risk, which helps reduce the work I would have to do. We are no longer based on CVSS; we are based on Qualys risk scoring, which is based on CVSS plus internal findings made by Qualys, and then assigns its own score. The TruRisk insight feature has found a small number of assets with high vulnerability scores, though I am cautious since some information is classified. Qualys TotalCloud has positively impacted our bank's performance, and we have definitely seen benefits after implementing this solution.

Read full review

Corey Cole

Service Coordinator - Technology Security at a government with 10,001+ employees

The solution helps users to manage their entire IP range, but it's unreliable and very expensive to maintain

Only the administrator was using the product. He used it to read reports as part of our compliance programs. It wasn't heavily used by a lot of users. The tool comes in at a large scale, and we tried to scale it down. The scaling did not apply to us. It was neither difficult nor easy. I rate the scalability a five out of ten. We had some challenges while scaling it down. It could do 10,000 devices, and we wanted to use it for ten devices. The process was difficult and expensive. We did not need the product anymore.

Read full review

Chethan Gowda

Windows Security Patching Operation III (Cyber Operations) at CBTS

Have maintained accurate vulnerability scans and gained actionable remediation insights across thousands of servers

Tenable Vulnerability Management agents are very lightweight, and the results we get are very accurate. The solutions they provide to us, assuming if one vulnerability exists, there will be a solution. The resolution they give us in wording will be the best solution. The exploit rates and the reports we get provide a lot of information, making it very easy for us to verify.The main benefit of integration with Tenable Vulnerability Management is that there will be no lack of missing vulnerabilities when it comes to the patching environment. That is one of the key aspects of why we have integrated Tenable to our patching tools. It has a vast capacity of pushing the data to our tools due to its capability and compatibility. That is also one of the reasons why we are using Tenable Vulnerability Management.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"Qualys TotalCloud provides a single, prioritized view of risk, reducing the workload associated with consolidating multiple sources for risk prioritization."

"The best feature would be the ability to create policies. It is easy to control and update policies as required."

"In my opinion, this is the best tool."

"The platform's unified view of the organization proves particularly valuable for leadership team meetings."

"TotalCloud has been excellent in providing us with immediate access to all the products and features we need, such as CSPM, TruRisk Insights, and compliance reports, including CIS and HIPAA."

"I would rate Qualys TotalCloud ten out of ten."

"Qualys TotalCloud's most valuable features are its cloud security posture management, Kubernetes, and container security capabilities."

"The agent and agentless scanning in TotalCloud, particularly the FlexScan method, is incredibly valuable. With traditional scanning approaches, we had to give IP ranges and whitelist IPs. All that is now simplified. FlexScan requires minimal intervention, and after configuration, it automatically collects data and performs necessary scans."

More Qualys TotalCloud pros

"Tripwire IP360 is a very stable solution."

"We could manage our entire IP range with the solution."

"This product detects vulnerabilities which exist in the environment, and provides enough information that allows for remediation, thereby securing the environment."

"It has enhanced the security program by ensuring that all external-facing systems are scanned on a routine basis."

"Tripwire IP360 helps me to discover most of the vulnerabilities, and I like the way that it prioritizes these vulnerabilities, as it allows me to focus on the most important ones first and then follow up with the rest."

"The company probably chose this solution because they thought that they would be getting the best bang for their buck."

"It's become the pinnacle point for anything that enters the network or anything that's passing through to production to first be affected by IP360, hardened, and up to standard. For our integrity management, one was deployed in the bank about two years ago and that's still going to expand the usage and the product itself. That will go hand in hand with training and expanding the product as for where it's deployed."

"Tripwire is one of the most mature in terms of companies, suites, support, everything, much more than any other product."

"The initial setup is very straightforward."

"The integration of Tenable into our security ecosystem was very good."

"Tenable.io Vulnerability Management gives a good ROI in the long run, though it would be better with a pay-as-you-go model."

"It is very stable, and it is updated periodically by adding new vulnerabilities."

"The ease of use, the automated scanning facility, and their good support mechanism are all valuable."

"The best feature of the solution is the amount of visibility it provides of the vulnerabilities."

"I would rate Tenable's dashboards and reporting capabilities for illustrating security posture a nine out of ten, with ten being the best."

"The initial setup is not complex."

More Tenable Vulnerability Management pros

Cons

"The cost of Qualys TotalCloud is high and could be more competitive."

"Their support could be improved."

"Enhancing clarity regarding its compliance capabilities would be beneficial, as the current scope is limited in geographic coverage."

"Although TotalCloud is a helpful tool, some of its advanced features are still under development."

"I think Qualys TotalCloud needs to improve its handling of zero-day vulnerabilities and supply chain management because modern ransomware attacks not only target prime critical infrastructures but also the supply chain system."

"The vulnerability part is good, but the policy compliance module needs improvement because it involves a lot of manual work. Specifically, the remediation part of the controls requires enhancements."

"The downside is only in container security, but it has not been a long time since they introduced these models."

"Regarding technical support from Qualys, they respond, but the response time can be too long. Sometimes we need to wait weeks for solutions to simple questions."

More Qualys TotalCloud cons

"We would like to have better reporting capabilities and for them to be more granular."

"The reporting functions can use improvement. There is room for growth because reporting functions differ a lot depending on what you're going to output. It depends on whether it's for technical or senior management and how it's interpreted. There could be growth within the reporting functionality side."

"The reporting functions can use improvement."

"I am not very impressed by the technical support."

"We need to dedicate time and resources to keep it running."

"If you are looking for better reporting capabilities and vulnerability tracking over time for remediation purposes, then this is not the best solution."

"For IP360, unfortunately, scans for certain vulnerabilities often cause issues, as they are mainly false positive."

"The shortcoming of the solution that needs improvement is related to its capability to do vulnerability assessments on applications."

"Tenable.io Vulnerability Management could be improved with an increased number of dashboards and MSSP integration."

"An area of improvement for this solution is being able to customize the dashboard."

"The stability has room for improvement."

"t needs additional reporting and intelligence features, as well as enhancements in AI-driven detection, which is still in its early stages."

"The UI has room for improvement."

"The biggest problem with the solution is that if you're a small company, you're not going to be able to afford it, nor are you going to be able to manage it."

"They need a better approach to support. When I have hard questions that need answers to, I prefer to jump to L3 support instead of getting pushed to L1."

More Tenable Vulnerability Management cons

Pricing and Cost Advice

"Qualys TotalCloud is expensive, but it offers a premier solution with no headaches."

"Although Qualys TotalCloud is relatively expensive due to its unique automation features, its cost-effectiveness is rated an eight out of ten, with ten being the most costly."

"TotalCloud's price is about right where I would expect it to be."

"Qualys TotalCloud offers good pricing that is affordable and competitive with the market. Our partnership also provides us with additional benefits."

"The pricing is comparable. It is built into our other product, so I cannot piecemeal it. It is a part of our subscription."

"Its price seems higher compared to other tools, but it is worth it. If they could adjust the pricing and make it comparable with other tools, that would be great."

"Qualys TotalCloud offers competitive pricing given its comprehensive suite of features, including integration, assessment, remediation, and detection capabilities, all within a single platform."

"The pricing for TotalCloud is attractive and competitive in the market. Given the features, especially the dashboard, I have no concerns regarding pricing."

More Qualys TotalCloud pricing and cost advice

"The product was expensive for us."

"I believe the price compares well within the market."

"Yearly payments are to be made toward the licensing cost of the product. It is neither a cheap nor an expensive product."

"Tenable.io Vulnerability Management's pricing solution model isn't great."

"I would rate the pricing a five out of ten. It is in the middle."

"Tenable charges around $40 per device."

"There are additional features that can be licensed for an additional cost."

"The total cost we pay for this solution is over 45K. This is for a large education organization."

"A yearly payment has to be made toward the solution's licensing costs."

"The cost is determined by the number of endpoints, which is approximately one dollar per endpoint."

More Tenable Vulnerability Management pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Vulnerability Management solutions are best for your needs.

See recommendations

900,644 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Manufacturing Company

18%

Financial Services Firm

14%

Construction Company

Comms Service Provider

Manufacturing Company

12%

Construction Company

11%

Comms Service Provider

10%

Financial Services Firm

15%

Manufacturing Company

10%

Computer Software Company

Government

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

By reviewers
Company Size	Count
Small Business	10
Midsize Enterprise	3
Large Enterprise	29

By reviewers
Company Size	Count
Small Business	2
Midsize Enterprise	1
Large Enterprise	4

By reviewers
Company Size	Count
Small Business	20
Midsize Enterprise	3
Large Enterprise	22

Questions from the Community

What is your experience regarding pricing and costs for Qualys TotalCloud?

The price is very expensive, actually.

What needs improvement with Qualys TotalCloud?

Areas that need improvement in every solution include the remediation part. The remediation steps should be simple en...

What is your primary use case for Qualys TotalCloud?

Our use case involves the assets that we have under cloud, the assets exposed to the internet, and the internal appli...

What's the difference between Tenable Nessus and Tenable.io Vulnerability Management?

Ask a question

Earn 20 points

Tenable Nessus is a vulnerability assessment solution that is both easy to deploy and easy to manage. The design of ...

What needs improvement with Tenable.io Vulnerability Management?

In my opinion, I would like to see additional functions and improvements. Something related to AI would be a good add...

What advice do you have for others considering Tenable.io Vulnerability Management?

I have purchased a license directly from Tenable, so I am working directly with Tenable and not through partners. My ...

Microsoft Defender for Cloud vs Qualys TotalCloud

Comparisons

Wiz vs Qualys TotalCloud

Compared 12% of the time

Compared 8% of the time

Prisma Cloud by Palo Alto Networks vs Qualys TotalCloud

Compared 6% of the time

JupiterOne vs Qualys TotalCloud

Compared 5% of the time

Nucleus Security vs Qualys TotalCloud

Compared 5% of the time

More Qualys TotalCloud Competitors

Tenable Nessus vs Fortra Tripwire IP360

Compared 12% of the time

Tenable Security Center vs Fortra Tripwire IP360

Compared 9% of the time

Checkmarx One vs Fortra Tripwire IP360

Compared 9% of the time

IBM Guardium Vulnerability Assessment vs Fortra Tripwire IP360

Compared 6% of the time

MaxPatrol VM vs Fortra Tripwire IP360

Compared 3% of the time

More Fortra Tripwire IP360 Competitors

Tenable Nessus vs Tenable Vulnerability Management

Compared 5% of the time

Tenable Security Center vs Tenable Vulnerability Management

Compared 4% of the time

Rapid7 Metasploit vs Tenable Vulnerability Management

Compared 4% of the time

Qualys VMDR vs Tenable Vulnerability Management

Compared 3% of the time

SentinelOne Singularity Identity vs Tenable Vulnerability Management

Compared 3% of the time

More Tenable Vulnerability Management Competitors

Product Reports

Qualys TotalCloud

Download Qualys TotalCloud product report

Fortra Tripwire IP360

Download Fortra Tripwire IP360 product report

Tenable Vulnerability Management

May 2026

Download Tenable Vulnerability Management product report

Also Known As

Qualys TotalCloud with FlexScan

IP360

Tenable.io

Overview

Qualys TotalCloud enhances security posture across cloud environments with continuous monitoring, vulnerability management, and risk visualization, ensuring efficient threat assessment and automated remediation for improved cyber risk reduction.

Qualys TotalCloud offers a robust suite of security tools essential for organizations managing multi-cloud infrastructures. By integrating cloud accounts and automating workflows, it supports AWS, Azure, and GCP, offering comprehensive vulnerability management and zero-day detection. The platform's user-friendly design, combined with its extensive risk management and unified threat assessment capabilities, enables organizations to prioritize and remediate vulnerabilities effectively. TruRisk Insights provides clear insights on cyber risks, while the automation options streamline patch management and scanning processes. API integration across IaaS and SaaS environments further enhances resource allocation efficiency and saves time, addressing misconfigurations across cloud environments.

What are the most important features of Qualys TotalCloud?

Accurate Vulnerability Reports: Delivers precise and actionable insights for risk mitigation.
Zero-Day Detection: Identifies and addresses zero-day vulnerabilities proactively.
Unified Threat Assessment: Offers comprehensive evaluation of threats across the environment.
Extensive Risk Management: Manages risks effectively with advanced insights and prioritization.
Continuous Monitoring: Provides non-stop surveillance for vulnerabilities and threats.
Cloud-Native Automation: Streamlines processes and reduces manual efforts using automation.
FlexScan for Internet-Facing VMs: Scans external VMs efficiently to detect vulnerabilities.
Dashboard Risk Visualization: Clear visualization helps prioritize vulnerabilities.

What benefits and ROI should users look for?

Improved Security Posture: Enhances threat detection and response across clouds.
Time Savings: Automation reduces time spent on manual vulnerability management.
Resource Efficiency: Better allocation of resources through streamlined workflows.
Enhanced Risk Prioritization: Focus on critical vulnerabilities for effective mitigation.
Integrated Cloud Accounts: Facilitates seamless cloud management and security.

Qualys TotalCloud is deployed in sectors needing rigorous vulnerability management, such as finance and healthcare. Companies utilize it to secure multi-cloud environments like AWS, Azure, and GCP, focus on compliance, and integrate security into CI/CD pipelines to detect and remedy threats pre-deployment.

Qualys

Tripwire IP360 is a powerful vulnerability management solution that identifies and prioritizes network vulnerabilities for remediation. It is highly effective in scanning devices and applications, improving security posture, ensuring compliance, and managing risks.

Users value its detailed reporting, user-friendly interface, and seamless integration with other security tools for efficient security management.

Fortra

Tenable Vulnerability Management offers efficient scanning, reporting, and integration capabilities. It supports extensive visibility and risk management for diverse environments while providing a user-friendly experience with strong cloud capabilities and container scanning.

Tenable Vulnerability Management is crucial for vulnerability assessment and managing security across network infrastructures. It effectively handles cloud and on-premises scans, identifying risks and enhancing cybersecurity measures with detailed reports. With features like automated scanning and risk prioritization, users manage vulnerabilities efficiently. Despite its strong points, improvements in pricing, navigation, and customization are desired, alongside better integration and AI-driven detection.

What are the most important features of Tenable Vulnerability Management?

Automated Scanning: Simplifies the identification of vulnerabilities through efficient scans.
Comprehensive Reporting: Offers detailed insights into potential security risks.
Seamless Integration: Easily connects with third-party tools for extended functionality.
Cloud Capabilities: Provides strong security management in cloud environments.
Container Scanning: Specialized in scanning containerized applications for threats.
Real-time Prioritization: Helps prioritize vulnerabilities for effective resolution.

What benefits and ROI should users look for?

Enhanced Security Posture: Achieves improved overall protection from threats.
Efficient Risk Management: Streamlines the process of identifying and mitigating risks.
Extensive Visibility: Offers a clear understanding of assets and vulnerabilities across the network.
Scalability: Adapts to varying organizational sizes and needs effectively.

In industries like finance, healthcare, and education, Tenable Vulnerability Management supports robust cybersecurity measures. Organizations utilize it for scanning IT infrastructures, conducting cloud assessments, and performing endpoint analysis to mitigate threats in critical environments.

Tenable

Sample Customers

Information Not Available

1. Aetna 2. Accenture 3. Adidas 4. AIG 5. Airbus 6. Akamai 7. Amazon 8. American Express 9. Aon 10. Apple 11. ATT 12. Autodesk 13. Bank of America 14. Barclays 15. Bayer 16. Bechtel 17. BlackRock 18. Boeing 19. BNP Paribas 20. Cisco 21. CocaCola 22. Comcast 23. Dell 24. Deutsche Bank 25. eBay 26. ExxonMobil 27. FedEx 28. Ford 29. General Electric 30. Google 31. HP 32. IBM

Global Payments AU/NZ

Fortra Tripwire IP360 vs. Tenable Vulnerability Management