Nessus 5.2 Released

by Paul Asadoorian
April 23, 2013

Tenable is excited to announce a new release of the Nessus vulnerability scanner! This major release provides several new features and enhancements, including enhanced post-scan analysis tools, expanded OS support and integration, and improved usability.

Using Nessus to Discover Malware and Botnet Hosts

by Paul Asadoorian
April 18, 2013

When performing a vulnerability scan (or even a penetration test), you must be able to spot a host that is already compromised, contains malware, or is part of a botnet. When malware exists on a host you're testing, the right course of action is to switch from scanning or penetration testing mode into forensics mode to determine how the system was compromised and implement a plan to remove the backdoors that may exist.

Linux/UNIX Patch Auditing Using Nessus

by Paul Asadoorian
April 16, 2013

Nessus can check that your Linux and UNIX systems are up-to-date with the latest patches. Tenable has released more than 1,000 plugins this year that check for local Linux and UNIX operating system's missing patches. This includes kernel patches and security updates to software packages being maintained by each distribution.

Nessus Turns 15!

by Paul Asadoorian
April 4, 2013

This year marks the 15th anniversary of the Nessus vulnerability scanner. Learn about some of the key Nessus milestones over the past 15 years.

Searching for Custom Malicious File Hashes with Nessus

by Ron Gula
March 15, 2013

The Nessus malicious process detection plugins were recently enhanced to allow for searching with custom file hash lists. This allows organizations to add their own sources of malicious file hashes into Tenable's set of cloud-based hashes and botnet checks.

Nessus Now Audits Palo Alto Networks PAN-OS Configurations

by Paul Asadoorian
February 21, 2013

Tenable Nessus ProfessionalFeed customers can now audit the configuration of PAN-OS™-based Palo Alto Networks firewalls. Nessus can audit the firewall operational configurations and allow Palo Alto firewall reports to be embedded into Nessus reports.

Nessus 5.0.3 Is Now Available

by Paul Asadoorian
February 19, 2013

Nessus 5.0.3 is now available for download. This update contains some new capabilities, as well as bug, stability, and security fixes.

Auditing Microsoft Office Configurations Using Nessus

by Paul Asadoorian
February 8, 2013

Microsoft® Office® is ubiquitous in today’s work environment. Although MS Office applications offer many security configuration options that can reduce the likelihood of exploitation, the default configuration settings typically don’t provide a strong security posture. The requirements and recommendations documented in common regulations and security guides are a great start to securing your Office installations. Tenable customers can also measure and evaluate the security of their Microsoft Office Suite environment using Nessus® and Tenable SecurityCenter™ audit compliance policy files.

New Nessus Plugins Audit Your Patch Management System Effectiveness

by Paul Asadoorian
January 30, 2013

Nessus integrates with many popular patch management solutions, including IBM Tivoli Endpoint Manager (TEM), Red Hat Network Satellite server, Microsoft WSUS / SCCM, and VMware Go. The new Nessus "Patch Management Windows Auditing Conflicts" and "Patch Management Auditing Satisfied" plugins automatically cross-reference vulnerabilities from credentialed patch audits with patch information from your patch management system on the same asset, reporting discrepancies in a single report.