Nessus' Built-in Scanning Recommendations

by Paul Asadoorian on May 9, 2013

Tuning your Nessus scan policy can yield great results. Tenable has added a new Nessus plugin which will analyze the scan results for your environment and the scan settings that were used, and then suggest improvements for a better audit.

New Nessus Report Consolidates Missing Patches

by Paul Asadoorian on May 7, 2013

Keeping tabs on missing patches is one of the challenges faced by everyone responsible for managing systems. Regardless of platform, there are a plethora of patches to be applied. The new Nessus “Patch Report” plugin provides an actionable report that displays a list of consolidated patches that need to be applied to become fully patched.

Scanning and Patch Auditing VMware Using Nessus

by Paul Asadoorian on May 6, 2013

To help you discover all the components of your virtual environment, Tenable has several Nessus plugins to detect virtualization servers, discover vulnerabilities, and enumerate VMs (both active and inactive). Nessus supports remote vulnerability identification and local patch auditing of VMware vSphere ESX/ESXi and vCenter.

Nessus 5.2 Released

by Paul Asadoorian on April 23, 2013

Tenable is excited to announce a new release of the Nessus vulnerability scanner! This major release provides several new features and enhancements, including enhanced post-scan analysis tools, expanded OS support and integration, and improved usability.

Using Nessus to Discover Malware and Botnet Hosts

by Paul Asadoorian on April 18, 2013

When performing a vulnerability scan (or even a penetration test), you must be able to spot a host that is already compromised, contains malware, or is part of a botnet. When malware exists on a host you're testing, the right course of action is to switch from scanning or penetration testing mode into forensics mode to determine how the system was compromised and implement a plan to remove the backdoors that may exist. Unfortunately the best way to be certain all malware has been removed is to format the hard drive and re-install the operating system and all software (provided malware has not...

Linux/UNIX Patch Auditing Using Nessus

by Paul Asadoorian on April 16, 2013

Nessus can check that your Linux and UNIX systems are up-to-date with the latest patches. Tenable has released more than 1,000 plugins this year that check for local Linux and UNIX operating system's missing patches. This includes kernel patches and security updates to software packages being maintained by each distribution.

Nessus Turns 15!

by Paul Asadoorian on April 4, 2013

This year marks the 15th anniversary of the Nessus vulnerability scanner. Learn about some of the key Nessus milestones over the past 15 years.

Searching for Custom Malicious File Hashes with Nessus

by Ron Gula on March 15, 2013

The Nessus malicious process detection plugins were recently enhanced to allow for searching with custom file hash lists. This allows organizations to add their own sources of malicious file hashes into Tenable's set of cloud-based hashes and botnet checks.