Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Virtual Environment Monitoring

VM

Visibility Into Your Virtualized Infrastructure

Tenable offers a range of virtualization security solutions. Nessus® and SecurityCenter™ Continuous View provide periodic assessments and continuous monitoring of your virtualized environment.

Nessus performs audits against the VMware vSphere platform, as well as the software running on it. With Nessus, users have complete visibility to address virtual machine (VM) sprawl, unpatched software, and misconfigured ports and services.

In addition, SecurityCenter Continuous View identifies the virtual infrastructure and associated risk as soon as it comes online without having to wait for the next scheduled scan.

Nessus

Network-based Vulnerability Scanning

  • Without credentials, Nessus determines the number of VMware ESX / ESXi / vCenter / View virtual machines on your network and their location.
  • After detecting VMs, Nessus identifies vulnerabilities using network-based vulnerability checks.

Patch Auditing

After VMs are identified, Nessus scans them using credentials to perform patch auditing and pull configuration information for hosted VMs. Nessus reports the missing patches for each ESX / ESXi / vCenter / View virtual machine that is scanned.

In addition, Nessus can log in and pull information from VMs, such as active and inactive VMs on the host. This information is useful to continually audit your virtualized environment, and acting on it can help prevent VM sprawl.

Configuration and Compliance Auditing

Nessus performs VMware configuration and compliance audits, and supports ESXi 4.x / 5.x and vCenter 4.x / 5.x.

Tenable supplies Nessus users with customizable compliance auditing files, which:

vmare tenable pci solutions guide

Whitepaper: VMware Product Applicability Guide for PCI DSS 3.0

Tenable Network Security is the first VMware Technology Alliance Partner to have its products reviewed for applicability to version 3.0 of the Payment Card Industry Data Security Standard (PCI DSS).

Learn More

SecurityCenter Continuous View

Identify Virtual Systems

  • Audits virtual machines on ESX, ESXi, vSphere, and vCenter platforms
  • Automatically discovers virtual assets as they come online and continuously tracks risk.
  • Identifies misconfigurations on the hypervisor, guest operating system, and applications running on the virtual images.  Audits configuration against compliance standards (ex. CIS) or custom requirements.
  • Enables administrators of virtual systems to manage  just the assets they own and only see what matters to them

Prioritize and Analyze Risk

  • Groups virtual machines into a variety of Dynamic Asset Groups based on customer priority.
  • Performs attack path analysis to highlight critical, Internet facing, and exploitable vulnerabilities first
  • Identifies missing patches for each virtual system in your environment
  • Validates patching by cross checking discovered vulnerabilities with major patch management systems including VMware GO.
  • Tracks trust relationships with other physical and virtual systems to correlate exposure to connected virtual and physical infrastructure

Respond and Track

  • Helps prioritize response to issues with full context of virtual and physical systems
  • Continuously monitors for threats, vulnerabilities, and malware on hosts and virtual systems to improve security response
  • Identifies critical changes to your host and virtual systems and reassesses risk posture for faster response
  • Provides context and forensics from active, passive, and log analysis for decisive response
  • Offers granular dashboards, reports, and filtering to pinpoint and isolate root cause of threat and compliance issues.

Try Nessus

Discover the solution that's right for you.

Try Now

Compare SecurityCenter Editions

Find the SecurityCenter edition that's right for your organization

Compare
Try for Free Buy Now

Try Tenable.io

FREE FOR 60 DAYS

Enjoy full access to a modern, cloud-based vulnerability management platform that enables you to see and track all of your assets with unmatched accuracy. Sign up now and run your first scan within 60 seconds.

Buy Tenable.io

Enjoy full access to a modern, cloud-based vulnerability management platform that enables you to see and track all of your assets with unmatched accuracy. Purchase your annual subscription today.

65 assets

$2,190.00

Buy Now

Try for Free Buy Now

Try Nessus Professional Free

FREE FOR 7 DAYS

Nessus® is the most comprehensive vulnerability scanner on the market today. Nessus Professional will help automate the vulnerability scanning process, save time in your compliance cycles and allow you to engage your IT team.

Buy Nessus Professional

Nessus® is the most comprehensive vulnerability scanner on the market today. Nessus Professional will help automate the vulnerability scanning process, save time in your compliance cycles and allow you to engage your IT team.

Buy a multi-year license and save

Try for Free Buy Now

Try Tenable.io Web Application Scanning

FREE FOR 60 DAYS

Enjoy full access to our latest web application scanning offering designed for modern applications as part of the Tenable.io platform. Safely scan your entire online portfolio for vulnerabilities with a high degree of accuracy without heavy manual effort or disruption to critical web applications. Sign up now and run your first scan within 60 seconds.

Buy Tenable.io Web Application Scanning

Enjoy full access to a modern, cloud-based vulnerability management platform that enables you to see and track all of your assets with unmatched accuracy. Purchase your annual subscription today.

5 FQDNs

$3,578.00

Buy Now

Try for Free Contact Sales

Try Tenable.io Container Security

FREE FOR 60 DAYS

Enjoy full access to the only container security offering integrated into a vulnerability management platform. Monitor container images for vulnerabilities, malware and policy violations. Integrate with continuous integration and continuous deployment (CI/CD) systems to support DevOps practices, strengthen security and support enterprise policy compliance.

Buy Tenable.io Container Security

Tenable.io Container Security seamlessly and securely enables DevOps processes by providing visibility into the security of container images – including vulnerabilities, malware and policy violations – through integration with the build process.

Learn More about Industrial Security