Malicious Process Detection: User Defined Malware Running

critical Nessus Plugin ID 65548

Version 1.250

Oct 8, 2025, 9:19 AM

  • Logic Changes (Allow forking plugins to report all installs for structured vuln data.)

Plugin Feed: 202510080919

Version 1.249

Sep 30, 2025, 12:41 AM

  • Logic Changes (Add extra checks to see whether plugins should run. Modernisation of the HTTP/1 library. Various corrections and fixes for CPE related Flatline Test Failures. Remove spurious authentication header.)

Plugin Feed: 202509300041

Version 1.247

Jul 22, 2025, 3:24 AM

  • Detection (Turn off failover to NTLM if 'only_use_kerberos' is set.)

Plugin Feed: 202507220324

Version 1.245

Jul 10, 2025, 5:41 PM

  • Logic Changes (Windows CA support)

Plugin Feed: 202507101741

Version 1.244

Jun 27, 2025, 8:01 PM

  • Logic Changes

Plugin Feed: 202506272001

Version 1.243

Jun 23, 2025, 9:47 PM

  • Logic Changes

Plugin Feed: 202506232147

Version 1.242

Jun 16, 2025, 4:11 PM

  • Logic Changes (Validate X509 certificates against CA's CRL in preference to OCSP.)

Plugin Feed: 202506161611

Version 1.240

Mar 31, 2025, 5:13 PM

  • Detection (Improvements to OS detection results. adding remote detection support for SEoL plugins)

Plugin Feed: 202503311713

Version 1.238

Feb 12, 2025, 3:29 PM

  • Logic Changes

Plugin Feed: 202502121529

Version 1.237

Feb 12, 2025, 1:58 AM

  • Logic Changes

Plugin Feed: 202502120158

Version 1.236

Feb 10, 2025, 4:00 PM

  • Logic Changes

Plugin Feed: 202502101600

Version 1.233

Jan 15, 2025, 1:31 AM

  • Logic Changes (Structured vuln reporting for MS Rollups)

Plugin Feed: 202501150131

Version 1.232

Jan 13, 2025, 10:27 PM

  • New

Plugin Feed: 202501132227

Version 1.228

Nov 22, 2024, 6:54 PM

  • Logic Changes (Fixed installation reporting)

Plugin Feed: 202411221854

Version 1.227

Nov 12, 2024, 8:29 PM

  • Logic Changes (Adding installs report)

Plugin Feed: 202411122029

Version 1.226

Oct 10, 2024, 11:57 PM

  • New

Plugin Feed: 202410102357

Version 1.225

Oct 1, 2024, 9:12 AM

  • Detection (Malware config description clarification)

Plugin Feed: 202410010912

Version 1.224

Sep 3, 2024, 11:47 PM

  • Logic Changes (additional data collection for runtime scanning. fixed logic bug causing potential false negatives. fixed logic bug causing potential false positives. fixed logic bug with potential to break cyberark logins)

Plugin Feed: 202409032347

Version 1.222

Aug 14, 2024, 8:33 PM

  • Logic Changes (Endianness fix in Kerberos authentication for SCAP scanning)

Plugin Feed: 202408142033

Version 1.221

Aug 6, 2024, 4:43 PM

  • Detection (Fix to allow Nessus Agent audits to query security settings registry key default values.)

Plugin Feed: 202408061643

Version 1.217

Jul 17, 2024, 11:02 PM

  • Logic Changes

Plugin Feed: 202407172302

Version 1.215

May 20, 2024, 10:13 AM

  • Logic Changes

Plugin Feed: 202405201013

Version 1.209

Mar 19, 2024, 6:40 PM

  • Logic Changes (Improving logging to reduce disk space usage)

Plugin Feed: 202403191840

Version 1.208

Mar 5, 2024, 2:40 PM

  • Detection (improved file verification for Windows Agents)

Plugin Feed: 202403051440

Version 1.207

Mar 5, 2024, 1:15 AM

  • Logic Changes (Report structured data for Microsoft Exchange checks.. Report structured data for RPM version checks.)

Plugin Feed: 202403050115

Version 1.202

Jan 16, 2024, 8:55 PM

  • Logic Changes (Improving debug logging)

Plugin Feed: 202401162055

Version 1.201

Jan 16, 2024, 5:39 PM

  • Detection (Support privacy mode DCOM over Kerberos)
  • Logic Changes (Improving debug logging)

Plugin Feed: 202401161739

Version 1.200

Nov 14, 2023, 4:21 PM

  • Detection (Support SHA2 based encryption for Kerberos)

Plugin Feed: 202311141621

Version 1.198

Sep 26, 2023, 8:16 PM

  • Logic Changes

Plugin Feed: 202309262016

Version 1.197

Jul 17, 2023, 5:15 PM

  • Logic Changes (Make torture_cgi library PCP clean and consolidate utf16_to_ascii())

Plugin Feed: 202307171715

Version 1.196

Jul 10, 2023, 7:11 PM

  • Logic Changes (Restrict ClientHello ciphersuites by encapsulation)

Plugin Feed: 202307101911

Version 1.195

Jun 20, 2023, 9:07 PM

  • Logic Changes (Temporarily limit debug logging)

Plugin Feed: 202306202107

Version 1.194

Jun 9, 2023, 12:10 AM

  • Logic Changes (Fix two function returns)

Plugin Feed: 202306090010

Version 1.193

Jun 1, 2023, 5:27 AM

  • Logic Changes (Better logging)

Plugin Feed: 202306010527

Version 1.192

May 16, 2023, 7:02 PM

  • Detection (Authenticate WMI/DCOM using Kerberos credentials.)

Plugin Feed: 202305161902

Version 1.190

May 1, 2023, 9:07 PM

  • Detection (Make and use compatibility wrapper for running commands on scanner localhost to handle deprecation of pread().)

Plugin Feed: 202305012107

Version 1.187

Apr 6, 2023, 6:58 PM

  • Detection (Add Kerberos debug logging)

Plugin Feed: 202304061858

Version 1.185

Mar 8, 2023, 1:05 AM

  • Logic Changes

Plugin Feed: 202303080105

* Changelogs are generally available for changes made after Nov 1, 2022