March 16, 2011
Massive vulnerability and exposures database combined with new checks offer real time protection for organizations of all sizes through Tenable’s Nessus ProfessionalFeed, Nessus Perimeter Service and Tenable SecurityCenter
Tenable Network Security, Inc., the leader in Unified Security Monitoring and creator of the popular and award-winning enterprise SecurityCenter and Nessus vulnerability scanner, announced today that its solutions can now identify systems that are participating in botnets as well as web servers that are hosting malicious content.
Tenable provides a range of products that deliver these unique protections for small organizations as well as global enterprises. These features are available immediately to Tenable’s enterprise SecurityCenter customers, Nessus ProfessionalFeed users and Nessus Perimeter Service subscribers.
Tenable’s unique Unified Security Monitoring platform leverages:
- Massive CVE database The world’s largest vulnerability and exposure database maintained by the Tenable Research team contains 42,000 plugins covering 15,000 unique common vulnerabilities and exposures (CVEs) and over 9,000 Bugtraq IDs. As part of this update, the Tenable platform now includes botnet detection content.
- Agentless protection In addition to server based botnet and malicious content detection, Tenable combines active and passive technology that identifies client side (browser and email) vulnerabilities that botnets target, without the need for credentials, scanning or agents.
- Zero Day Response Tenable’s anomaly detection, event correlation and sequencing, and user monitoring technology picks up botnet and hosted malware in real time 7x24.
"We have thousands of customers that manage the security and compliance of networks every day with Nessus, but don't have a SIEM or NBAD solution", says Ron Gula, Tenable CEO/CTO, "With these product enhancements, our customers will immediately be able to scan and identify whether any of their hosts have been reported as being part of an active botnet."
"This capability is also very useful because if a website is identified as hosting malicious content, it likely has been compromised", says Marcus Ranum, Tenable CSO.
Nessus’s ability to identify systems and websites that are participating in botnets compliments Tenable’s Passive Vulnerability Scanner and Log Correlation Engine’s existing ability to audit logs and network traffic for anomalies and connections to hostile Internet locations.