Security Center 3D Tool 1.2
January 17, 2007Version 1.2 of the 3D Tool is now available. This version is much faster then the previous version. It makes use of Security Center 3.2's ability to obtain data as a .csv spreadsheet. Those types of q...
Nessus 3.0.5 Available
January 17, 2007This point release provides fixes for multiple minor issues with Nessus 3.0.4. The fixes include: Faster startup time, especially on laptops Improved the performance of the SYN port scanner Fixed a me...
Graphical Data Visualizations with Tenable Products
January 15, 2007There are many ways to visualize raw data in graphical form. This blog entry will consider network topology visualization, trust relationship graphing and security event analysis. We will use a combin...
Using "New Port Browsing" Events to find Worm/Trojan/Rootkit Activity
January 12, 2007Version 3.0 of the Passive Vulnerability Scanner (PVS) dynamical alerts when it finds "new" pieces of information about the network. Potential information includes open ports, browsed ports,...
PSAD rules for LCE and Firewall Monitoring in General
January 10, 2007Tenable's research group released a Log Correlation Engine (LCE) log parser library for events generated by the Port Scan Anomaly Detector (PSAD) tool. The LCE PRM library is available here for downlo...
Auditing Windows 2003 Servers for Disabled USB Drives and AutoRun CD-ROM
January 8, 2007Many organizations have IT configuration polices that require CDs and USB drives to be disabled. This blog entry discusses a simple way to use a Nessus 3 .audit file to test a Windows 2003 server for ...
Blog Tagged
January 8, 2007There have been several security bloggers "tagging" each other this new year and recently I got tagged. Normally, I try to keep this blog fairly technical and product centric. Since I don't ...
Improper Network Segmentation Testing With Nessus
January 5, 2007On January 3rd, 2007, Tenable's research group released a NASL script (plugin #23971, currently available to Direct Feed and Security Center customers) to test if a scanned host is on a different logi...
Enumerating Corporate Data
January 4, 2007Many Tenable customers and Nessus users have asked us for recommended strategies to discover where sensitive information is placed on the network. Often, organizations have segregated networks to sepa...
More on "Never Before Seen" Log Events
January 3, 2007This entry concerns more information and analysis of output from the "Never Before Seen" TASL script for the Log Correlation Engine (LCE). We've had the script running at several customer lo...
Security Center 3.2 Report Templates
January 3, 2007Note: Tenable SecurityCenter is now Tenable.sc. To learn more about this application and its latest capabilities, visit the Tenable.sc web page. One of the new features of Security Center 3.2 i...
Passive Vulnerability Scanner 3.0 Released
January 2, 2007Tenable Network Security has released version 3.0 of the Passive Vulnerability Scanner (PVS). This version supports realtime vulnerability alerting, enables monitoring of corporate networks for data l...