Internet / Network Security
  1. Home
  2. Computing & Technology
  3. Internet / Network Security

Vulnerability Scanning With Nessus

From Tony Bradley, CISSP-ISSAP, for About.com

8 of 9

Scanning For Security Configuration

Nessus 3 is now able to scan systems for compliance against security configurations, as well as the ability to scan file content to look for classified or sensitive information. This functionality is only available to customers that subscribe to The Nessus Direct Feed, which costs $1200 per year per Nessus scanner. Users of the free Registered Feed will not be able to conduct these scans.

With the content scans, Nessus can be used to scan the network for PCI DSS issues such as unprotected credit card numbers, social security numbers, or drivers license numbers. It can also be used to scan for information leakage requests by searching for files that contain source code, HR compensation data or corporate financial spreadsheets.

The necessary plugins and .audit files can be downloaded from Nessus if you are a Direct Feed customer. Tenable has security configuration compliance templates for the following standards, but customers can also scan against custom security configurations to insure internal compliance:

  • NIST
  • GLBA
  • CERT
  • HIPAA
  • NSA
  • DISA
Explore Internet / Network Security
About.com Special Features
Family Tech Center

Stay connected and entertained with reviews on tips on the latest HDTVs, cellphones and more. More >

Connect Your Home Computers

Easy ways to connect two computers for networking purposes. More >

Internet / Network Security
  1. Home
  2. Computing & Technology
  3. Internet / Network Security
  4. Security 101
  5. Learn Computer Security
  6. Step-By-Step
  7. Conducting A Vulnerability Scan With Nessus

©2009 About.com, a part of The New York Times Company.

All rights reserved.