Tenable Network Security Blog

Tenable Network Security Podcast Episode 169 - "Windows Wireless Networks List, Apache Backdoor Detection"

Paul Asadoorian — Wed, 15 May 2013 13:13:43 +0000

Tenable Network Security Podcast Episode 168 - "Nessus Tips and Patch Reporting"

Paul Asadoorian — Fri, 10 May 2013 13:48:13 +0000

Nessus' Built-in Scanning Recommendations

Paul Asadoorian — Thu, 09 May 2013 18:18:01 +0000

Tuning your Nessus scan policy can yield great results. Tenable has added a new Nessus plugin which will analyze the scan results for your environment and the scan settings that were used, and then suggest improvements for a better audit.

Nessus 5.2.1 Is Available

Paul Asadoorian — Tue, 07 May 2013 18:35:00 +0000

Nessus 5.2.1 is available for download.

New Nessus Report Consolidates Missing Patches

Paul Asadoorian — Tue, 07 May 2013 16:40:00 +0000

Keeping tabs on missing patches is one of the challenges faced by everyone responsible for managing systems. Regardless of platform, there are a plethora of patches to be applied. The new Nessus “Patch Report” plugin provides an actionable report that displays a list of consolidated patches that need to be applied to become fully patched.

Scanning and Patch Auditing VMware Using Nessus

Paul Asadoorian — Mon, 06 May 2013 12:00:00 +0000

To help you discover all the components of your virtual environment, Tenable has several Nessus plugins to detect virtualization servers, discover vulnerabilities, and enumerate VMs (both active and inactive). Nessus supports remote vulnerability identification and local patch auditing of VMware vSphere ESX/ESXi and vCenter.

FUDwatch: Armenia

Marcus J. Ranum — Fri, 03 May 2013 13:17:03 +0000

For a field that loves statistics, computer security sure treats them casually. In order to get my humble BA in Psychology, I absorbed my share of course hours in statistics and testing methods, including a set of lectures based upon Darrell Huff's brilliant book, "How to Lie with Statistics" - which I highly recommend. It's fun easy reading satire - those lectures had the effect of making me hyper-skeptical about any large, round, number that's thrown my way.

Tenable Network Security Podcast Episode 167 - "Routers Give Up Passwords, SANS Top 20"

Paul Asadoorian — Thu, 02 May 2013 04:00:00 +0000

Welcome to the Tenable Network Security Podcast Episode 167

Announcements

Increase Security Effectiveness with these 20 Critical Security Controls
We're hiring! - Visit the Tenable website for more information about open positions.

Is the Passive Vulnerability Scanner an Intrusion Detection System?

Ron Gula — Mon, 29 Apr 2013 19:55:17 +0000

When I was at RSA earlier this year, I gave a variety of media interviews and product demos about Tenable solutions. I demonstrated Nessus detecting malicious processes and the Passive Vulnerability Scanner (PVS) providing an audit trail of all network activity that led up to the infection. I also showed how the Log Correlation Engine (LCE) correlated PVS logged DNS queries to known botnets.

The Big Red Button and the Kill Switch

Marcus J. Ranum — Thu, 25 Apr 2013 14:10:39 +0000

I have no idea if I had a role in the "Internet Kill Switch" debacle, but it's possible that I was one of the pushes that got that particularly horrible ball rolling. Back in 2002, when I was between jobs, I did a talk at CSI in Chicago, about the need for organizations to be better able to react to attack, especially if they were part of critical infrastructure. At the time, I was concerned particularly with denial of service attacks; I had been thinking about them and had concluded that it's never going to be possible to completely prevent such attacks.