Every audit in the Tenable Nessus® vulnerability scanner is coded as a plugin: a simple program which checks for a given flaw. Nessus uses more than 60,000+ different plugins, covering local and remote flaws.
New vulnerabilities are discovered and published every day. As a result, staying up-to-date is a must if you want to perform a security scan. Every week, several dozens of plugins are added in the Tenable Nessus plugin feeds.
To ensure your plugins are current, your feed must have been activated according to the instructions you received by email after your purchase/download. Once your plugin feed is registered, it will automatically download the newest plugins every 24 hours, or you can use the command nessus-update-plugins to force a plugin update.
As information about new vulnerabilities are discovered and released into the general public domain, Tenable's research staff designs programs to enable Nessus to detect them. These programs are named 'plugins' and are written in the Nessus Attack Scripting Language (NASL). The plugins contain vulnerability information, a generic set of remediation actions and the algorithm to test for the presence of the security issue. Typically, Tenable produces plugins for vulnerabilities within 24 hours of its public release.
If you use Nessus in a business capacity, you must purchase a Nessus subscription to scan your network, obtain support, update your database of vulnerability checks, and for compliance auditing. Nessus may be purchased from Tenable Authorized Partners or online at the Tenable Store. Customers who purchase Tenable SecurityCenter receive access to this feed with their annual product maintenance.