Helping to stop DDOS - Detecting DNS Recursion Configuration Issues
August 10, 2006Recently, Tenable was asked about detecting DNS servers that were configured to respond to DNS "recursion" queries. The issue is that a remote attacker could spoof a recursive DNS query wi...
August 8th, 2006 Microsoft Tuesday Nessus Checks
August 9, 2006Tenable Direct Feed and Security Center users have updated Nessus plugins to check for all vulnerabilities disclosed by the recent "Microsoft Tuesday" patches. The majority of these checks ...
Zombies and Botnets - Detecting "Crowd Surges" in Logs and Network Traffic
August 3, 2006Tenable released a TASL script for the Log Correlation Engine that can use netflow, sniffed network sessions, firewall logs and even network IDS logs to help identify botnets, maleware and zombie netw...
mIDA 1.0.6 released
August 2, 2006Today, the Tenable Research Team released a new version of mIDA, an IDA (Interactive Disassembler) plugin that allows one to extract Windows RPC server interfaces and to recreate the IDL definitions. ...
Using Nessus to Scan Hosts Behind a Firewall
August 2, 2006Note: This guide was updated in January 2021 to reflect Tenable's latest product coverage. Additional resources can be found at the bottom of this page. For first-time (and even ve...
Nessus 3 Agent-less Compliance checks
August 1, 2006Today, Tenable released two new plugins for Nessus 3 that can audit the configuration of a remote UNIX or Windows system and report "compliant" or "not compliant" with a set of use...
SCADA Checks For Nessus 3
August 1, 2006We announced a partnership with Digital Bond to have Nessus checks developed to test a variety of SCADA protocols and devices today. You may remember from our previous announcement that we released s...
Network World Review of Passive Vulnerability Scanner and Sourcefire RNA
July 31, 2006I was very excited to read Joel Snyder's review of Sourcefire's RNA and our Passive Vulnerability Scanner (PVS). (The article requires registration). He makes a lot of very good points about the accu...
3D Tool Video
July 28, 2006Tenable has made the "3D Tool" for the Security Center available. A web-based video of it can be viewed here. The video shows a three dimensional topology graph of some different networks, a...
"smbshell.nbin" Available
July 28, 2006The Tenable Research Team has made available an pre-compiled NASL script (an .nbin file) which can be used from any Nessus 3 installation to interact with a remote windows host on top of port 139 or 4...
Tenable and Reconnex
July 24, 2006Tenable's Log Correlation Engine (LCE) can accept events from the Reconnex iGuard. If you are not familiar with products like the iGuard, it is a sophisticated network traffic analyzer that can look f...
Dynamic Asset List Example
July 23, 2006I was at a Security Center customer this past Friday and they had asked how they could report on just certain computers that had certain applications on them. One of the things the Security Center can...