Nessus Scanning Windows 8 Hosts
The new Windows 8 interface provides a very different user experience than past Microsoft operating systems. Nessus can enumerate and detect vulnerabilities on Windows 8 hosts.
Recently, Microsoft made several announcements surrounding new technology, including a new operating system (Windows 8) and a new tablet platform called "Surface." Windows 8 will present a new interface and several new changes under the hood. They're an offshoot of the new platform called Windows RT, a small, fast, and lightweight version designed to run on ARM-based tablets. In fact, this is much of the reason behind the concept of Windows 8 -- it’s meant to run on tablets and touch screens. Windows Phone 8 is the new OS for Windows-based phones, such as those from Nokia.
In the mean time, users and administrators may become excited about the new OS and upcoming features. Magically, Windows 8 will appear on your network, as new PCs will inevitably have it pre-installed, phones will get upgraded, and tablets will begin making their way onto the network. On top of it all, a new server OS is being introduced in the form of Windows Server 2012.
The good news is that Nessus can already identify Windows 8 desktop and server in your environment:
An example of Nessus correctly identifying a Windows 8 host on the network, taken from the new HTML5 Beta interface for Nessus. (Click for larger image)
More good news: Nessus can already detect missing patches when given credentials (potentially bad news if they're missing patches!). For example, Nessus detects some missing Adobe Flash updates, a certificate revocation update, and a missing security bulletin:
Vulnerability results as displayed in the Nessus HTML5 Beta interface for a Windows 8 target host. Note the HTML5 interface allows you to run a quick search against the results, and searching for "MS" in the title provides a list of Windows security bulletins. (Click for larger image)
Local patch auditing for new Microsoft OSes, such as Windows 8 and Windows Server 2012, is a great way to stay ahead of the curve with respect to system deployment. Patch checking allows you to be certain your patch management process is working correctly before widespread deployment of new Windows OSes. On the mobile device platform, Microsoft has only just recently made phones available running Windows Phone 8. Nessus mobile device scans currently support Windows Phone 7, and support for Windows Phone 8 will be released in the coming months.