Nessus Scan Monitoring

PCI Configuration Report

by Josef Weiss
April 1, 2014

This report template leverages Nessus PCI system configuration results to track which PCI DSS requirements are compliant or non-compliant.

If you need to track which PCI requirements your group is compliant with and you are performing credentialed Nessus configuration audits of your systems, then this SecurityCenter report template can be used to track which requirements are currently being met or not.

Nessus Scan Report

by Josef Weiss
February 4, 2014

For customers who use Nessus for vulnerability scanning and then move to SecurityCenter, vulnerability reporting may be somewhat challenging. This report mimics the look and feel of a typical Nessus scanner vulnerability report.

Like a Nessus scanner report, this report contains a Table of Contents, iterates host information, and provides a results summary and vulnerability details for all hosts scanned.

Copyright Report

by Josef Weiss
November 14, 2013

Copyright Report

This report presents a detailed vulnerability summary on files that may contain copyrighted materials, such as commercial movies or music files, that are being shared without the owner's permission. If any of these files actually contain copyrighted material, and if they are freely swapped around, your organization might be held liable for copyright infringement by associations such as the RIAA or the MPAA.

The associated component can be found here: Copyright Indicator

Consolidation Report for Missing Patches

by Cody Dumont
May 8, 2013

Missing Patch report Detail
This report uses the new Nessus “Patch Report” plugin (ID #66334) and will provide a consolidated missing patch report for each host within the network. The report uses the iterator grouping element to loop through each host of the network and provide a detailed missing patch report for each system identified by the plugin.

Registry Access Failures

by Dave Breslin
April 8, 2012

HostList

This report template is designed to report registry access failures using the results of Nessus plugin 26917, “Microsoft Windows SMB Registry : Nessus Cannot Access the Windows Registry”. The sample above was cut from detailed reporting produced by the template and shows information on the registry access failure and a list of four affected hosts during Nessus credentialed scanning. To see a full report use the download example link.

Credential Failures

by Dave Breslin
April 7, 2012

DetailSample

This report template is designed to report credential failures using the results of plugin 21745, “Authentication Failure - Local Checks Not Run”. The plugin is referenced in the Nessus Credential Checks for Unix and Windows document. The sample above was cut from some detailed reporting produced by the template and depicts a failure to use the credentials provided for auditing a Windows host because the user account used for auditing is not a member of the host’s local administrator group or is being blocked by Windows User Account Control (UAC). To see a full report use the download example link.

Elevated Privilege Failures

by Dave Breslin
April 6, 2012

Escalatedprivfailure

This report template was designed in response to Tracking "su root" failures and other types of authentication issues posted on the Tenable Discussion Portal. The sample above was cut from some detailed reporting produced by the template and depicts the unsuccessful attempt to elevate privileges with a Nessus credentialed scan because the user account being used for auditing has not been configured correctly to leverage sudo. To see a full report use the download example link.