Tenable에서 Nessus Expert의 포괄적 웹 애플리케이션 및 API 스캐닝 기능을 공개

Tenable®, the Exposure Management company, today announced web application and API scanning in Tenable Nessus Expert, new features that provide simple and comprehensive vulnerability scanning for modern web applications and APIs. 

Web application and API scanning in Nessus Expert are dynamic application security testing (DAST) features that enable security practitioners to proactively identify and assess web applications and APIs for known vulnerabilities. This includes OWASP Top 10 vulnerabilities in custom application code and known vulnerabilities found in third-party components. 

Backed by Tenable Research, Nessus provides broad and accurate vulnerability coverage for web applications and APIs – spanning web application servers, content management systems, web frameworks, programming languages and JavaScript libraries. The result is fewer false positives and negatives, ensuring security practitioners know the true risks in their applications. 

“Web applications are under siege and the security practitioners in charge of protecting them face numerous challenges,” said Glen Pendley, chief technology officer, Tenable. “With Nessus Expert – the gold standard in vulnerability assessment – we’re tackling the crux of these challenges head on by widening visibility into web applications and APIs. Whether the apps are running on-prem or in the public cloud, Nessus Expert assesses their exposures and provides security practitioners, consultants and pentesters with actionable results quickly.”

Nessus Expert is the industry’s first vulnerability assessment solution that spans traditional IT assets and the dynamic modern attack surface, including the external attack surface, cloud infrastructure and now, web applications and APIs. This new feature and functionality enables security practitioners to:

• Set-up new web app and API scans and easily generate comprehensive results 
• Rapidly discover known vulnerabilities and cyber hygiene issues using predefined scan templates for SSL/TLS certificates and HTTP header misconfigurations
• Identify all web applications, APIs and underlying components owned by a given organization 
• Confidently and safely scan environments without disruptions or delays

More information on Nessus Expert is available at: https://www.tenable.com/products/nessus 

Tenable 소개

Tenable®은 노출 관리 회사입니다.전 세계 약 43,000개의 조직이 Tenable을 사용하여 사이버 위험을 이해하고 낮추고 있습니다.Nessus®의 개발사인 Tenable은 취약성에 대한 전문성을 확장하여 모든 컴퓨팅 플랫폼에서 디지털 자산을 확인하고 보호할 수 있는 세계 최초의 플랫폼을 제공했습니다.Fortune 500 기업의 약 60%, Global 2000 기업의 약 40% 및 대규모 정부 기관이 Tenable의 고객입니다.tenable.com에서 자세히 알아보십시오.