Unlimited Discovery Scanning with SecurityCenter and Nessus
Note: Tenable SecurityCenter is now Tenable.sc. To learn more about this application and its latest capabilities, visit the Tenable.sc web page.
With the recent release of SecurityCenter 4.0.1, Tenable has modified the IP-based licensing to include unlimited discovery scanning. This means organizations that make use of SecurityCenter can perform routine ping sweeps of their backbones and network blocks without it counting against their licensed IPs.
SecurityCenter is licensed solely based on the number of active hosts with vulnerabilities on your network. You may have several class C networks (255 potential hosts each), but SecurityCenter licensing only counts against the number of active hosts. Tenable does not need to know your IP ranges or provide keys for hosts or networks you may have not known about before you deployed SecurityCenter.
With the new licensing, organizations can schedule ping sweeps of their network to look for new hosts on a routine basis. If you have a large network and multiple Nessus scanners, SecurityCenter will automatically split the scan across the scanners until the ping sweep is complete. When routine ping sweeps are fed into SecurityCenter, scan results can automatically be used for:
- Creating dashboard trending elements to count the number of hosts not being targeted for regular vulnerability auditing
- Creating alerts when new hosts are discovered in networks where there should not be any new hosts
- Creating alerts when the number of hosts drops below an expected value, which could indicate a network outage or connectivity issue with the host
Organizations interested in discovery of new hosts should also consider the Passive Vulnerability Scanner (PVS). This Tenable product looks at network traffic and discovers new hosts, new applications and their vulnerabilities by inspecting packet and session content. It identifies any host on your network that communicates, regardless of response to ping requests by Nessus.
Organizations that make use of SecurityCenter’s unlimited discovery scans and find additional hosts they wish to include need to contact Tenable’s sales team to request an upgrade key. Newer keys means that full vulnerability scans, patch audits and configuration audits can be performed on the discovered hosts. More than one third of all Tenable SecurityCenter customers procure an upgrade key to expand the number of IP addresses they perform scanning for within their first year of operation.
Related Articles
Unified IT and Web App Security: On-Prem Web App Scanning Integrated into Security Center
October 17, 2023On-prem web app scanning is now available within Tenable Security Center, offering comprehensive exposure management with accurate analysis, OWASP Top 10 coverage and easy setup. Here’s what you need to know.
How to Use VPR to Manage Threats Prior to NVD Publication
May 22, 2020How does Tenable’s VPR score help users manage newly disclosed vulnerabilities, even before they’re published on the National Vulnerability Database (NVD)? Let’s find out. In April, we published...
5 Ways to Protect Scanning Credentials for Linux, macOS and Unix Hosts
May 15, 2020This is the third installment in our three-part series exploring how to use Tenable products to protect credentials used for network assessments. Here, we focus on ’nix style systems: Linux, Unix and ...
Tenable and Thales Collaborate to Provide Cyber Defense Simulations to Better Secure Operational Technology Environments
April 18, 2024The heart of the Welsh Valleys is home to the Thales Ebbw Vale campus, a world-class facility jointly funded by the Welsh government as part of its regeneration program for the region. At the core of the facility is the Cyber Range, a simulation and virtualization platform for training, testing, exercising and R&D. Tenable has joined the lineup of solutions used to run real world simulations in this controlled environment.
Oracle April 2024 Critical Patch Update Addresses 239 CVEs
April 17, 2024Oracle addresses 239 CVEs in its second quarterly update of 2024 with 441 patches, including 38 critical updates.
Strengthening the Nessus Software Supply Chain with SLSA
April 16, 2024You know Tenable as a cybersecurity industry leader whose world-class exposure management products are trusted by our approximately 43,000 customers, including about 60% of the Fortune 500. But sometimes we like to give you a peek behind the curtain to share how we protect our own house against cyberattacks – and that’s what this blog is about. Today we’re sharing our experience adopting the supply-chain security framework SLSA, with the hopes that the lessons we learned will be helpful to you.
- SecurityCenter