I would love to hear how a host-based scanner is more in-depth than a Nessus or Rapid 7 scan running on a sudo account.