Everything You Ever Wanted to Know about 15,385 Nessus Plugins
September 26, 2007Tenable provides a wide variety of information on our vulnerability plugins to the public. This includes RSS feeds, a plugin writer mailing list and an on-line search portal. By visiting the plugins s...
Using Nessus Configuration Audits To Test FDCC Compliance
September 25, 2007Tenable has recently announced FDCC audit policies for Nessus ProfessionalFeed and Security Center users. These policies help government organizations test Windows XP Pro and Vista desktops against OM...
Digital Bond OPC Hardening Guide
September 21, 2007If you are using Nessus to audit a control system network, Digital Bond has recently released a set of guidelines (part 1, 2 and 3) for securing OPC servers. These guidelines include three Nessus conf...
Active and Passive TOR Detection
September 19, 2007Tenable's research group has recently released several updated plugins for both the Nessus scanner and Passive Vulnerability Scanner to detect Tor in operation and waiting for connections. Tor is a ...
Creating Packet Traces of Nessus Scans
September 10, 2007Nessus 3 UNIX scanners have the ability to save all of their generated packets as a convenient libpcap compatible file. This means you can save your scans and view them under applications such as TCPD...
Unified Security Monitoring
September 6, 2007Tenable has launched our Unified Security Monitoring (USM) concept. There is a new white paper available which details how event monitoring, vulnerability analysis and configuration auditing can all b...
CIS Certification for Solaris and SuSE Linux audits
September 4, 2007Tenable Network Security has received certification from the Center for Internet Security to perform configuration audits of the Solaris 9 and SuSE Linux 9 operating systems. Audits can be performed w...
Finding Sensitive Data as a Consultant with Nessus
August 29, 2007There are many consultants that use Nessus to scan a customer network for vulnerabilities and report a laundry list of security issues which need to be fixed. Another valuable service that can be perf...
Upcoming Conferences and Speaking Engagements
August 24, 2007There are a few events occurring before the end of the year that Tenable will be participating in: 2007 DHS Security Conference and WorkshopBaltimore Maryland, August 27-30, 2007I will be speaking a...
Solaris PCI Audits and other Updates
August 20, 2007Tenable Network Security has released a Solaris audit policy for PCI 1.1 configurations. We've also released a new SuSE Linux best practices audit policy and have updated several others. These are al...
An Evening With a Friend
August 14, 2007Several weeks ago, a good friend of my family who is a lawyer for an application hosting company and I were speaking about network security and I brought up Nessus. "Can you scan one of our hoste...
CIS Certified Windows 2003 Member Server Audits
August 10, 2007Tenable Network Security was recently awarded Center for Internet Security (CIS) certification to perform audits of Windows 2003 Member Servers through Nessus Direct Feed and/or Security Center agent...