Nessus 8.6.0

Tenable Network Security, Inc. in Security & Privacy / Other

Nessus screenshot

User Rating: 2.5 (47 votes)

Nessus is a complete and very useful network vulnerability scanner which includes high-speed checks for thousands of the most commonly updated vulnerabilities, a wide variety of scanning options, an easy-to-use interface, and effective reporting.

The versatile Nessus® vulnerability scanner provides patch, configuration, and compliance auditing; mobile, malware, and botnet discovery; sensitive data identification; and many other features.

With a continuously updated library of more than 60,000 plugins and the support of Tenable’s expert vulnerability research team, Nessus delivers accuracy to the marketplace. Nessus provides multi-scanner support, scales to serve the largest organizations, and is easy to deploy on premise or in the Amazon Web Services (AWS) cloud.

Heartbleed

Tenable Products Provide Strategic Solutions

The significance of CVE-2014-0160, aka Heartbleed, an attack against the transport layer security protocol (TLS/DTLS) heartbeat extension, is well documented. What could use more discussion is what it really takes to find all vulnerable systems in today's networks.

The vulnerability exists in the OpenSSL library, widely used by Linux operating systems, embedded systems and most applications implementing SSL encryption
While you can patch the vulnerability in your operating system, the vulnerable library can be built into the application, as it is with OpenVPN and other applications which must also be patched
The vulnerability can present itself in any service which implements SSL, allowing it to exist in services other than HTTPS (port 443), including email, instant messenger, and many other common (and uncommon) services and applications
Once you’ve patched the vulnerability on all of the systems and services you’ve discovered, it can easily be re-introduced if someone installs a vulnerable application or embedded system that has not yet been patched (or an older version where the vulnerability exists).

Through a comprehensive set of plugins and dashboards delivered within hours of the discovery of this vulnerability, Tenable customers were able to identify risk from Heartbleed across a wide variety of infrastructure, systems, and applications.

Nessus Perimeter Service

If you are concerned with your Internet facing systems, particularly your web sites or VPN connections, you may use the same Nessus Heartbleed detection policy wizard to create a schedule for scanning your systems from our remote, cloud-based vulnerability scanner, the Nessus® Perimeter Service™.

Nessus Perimeter Service can be used to check for the for the Heartbleed vulnerability using one or more of the following three settings:

Quick – limited to searching for ports/services that are known to use OpenSSL;
Normal – searches for the vulnerability on the Nessus default set of ports; or
Thorough – performs a comprehensive sweep of all 65K ports and detects use of SSL.

Nessus Perimeter Service allows for unlimited scanning of unlimited IP addresses and will help you discover where SSL communications that rely on OpenSSL are entering into your network, and whether they are vulnerable to the heartbeat attack.

PVS – Passive Scanning

For those hard to reach places, Tenable’s Passive Vulnerability Scanner™ (PVS™) can sniff the network and identify hosts vulnerable to the “Heartbleed” attack.

PVS is a powerful tool for finding Heartbleed and other vulnerabilities which may escape some traditional detection methods. By passively monitoring network traffic, PVS detects server and client vulnerabilities, applications, and connections.

As a data source for SecurityCenter Continuous View™, or as an individual subscription installation, PVS provides valuable insight into Heartbleed and other OpenSSL issues. Shown is a sample report displayed in the PVS web interface.

top download editor's pick
File Size: 83 MB License: Freeware Price: FREE
Platform: Windows XP, Windows Vista, Windows Vista x64, Windows 7, Windows 7 x64, Windows 8, Windows 8 x64, Windows 10, Windows 10 x64, Linux, Mac OS X
System Requirements: Mac OS X (10.8 & 10.9)
Downloads: Total: 703 | This Month: 27 Released: 2019-08-15
Nessus Similar Software
Popular Software in Security & Privacy / Other

Privacy Eraser Free 4.59.2 Cybertron Software Co., Ltd.     update

Clean up all your Internet history and past computer activities with one click.. Free download of Privacy Eraser Free 4.59.2

Privacy Eraser Portable 4.59 Cybertron Software Co., Ltd.     update

Clean up all your Internet history and past computer activities with one click.. Free download of Privacy Eraser Portable 4.59

TorGuard 3.96.1 TorGuard.net     update

TorGuard VPN Service encrypts your internet access and provides an anonymous IP. Free download of TorGuard 3.96.1

Ivideon Server for Mac 3.8.0 Mobile Video Solutions     update

Monitor your home using your webcam or an IP camera. Free download of Ivideon Server for Mac 3.8.0

TunnelBear 3.7.8.0 TunnelBear Inc.     update

Help you protect your identity, which lets you choose a fake IP address. Free download of TunnelBear 3.7.8.0