Tenable Products

Tenable Passive Vulnerability Scanner

The Tenable Passive Vulnerability Scanner helps organizations find unexpected security and compliance problems by continuously monitoring all network traffic.

The Passive Vulnerability Scanner continuously looks for new hosts, applications and vulnerabilities – supplementing your active scanning for potential threats that might fall between scans.  It finds client-side vulnerabilities in web browsers, email clients, and other clients, and anomalies that might indicate more serious threats (such as APT).

Passive Scanning's Unique Benefits

The Passive Vulnerability Scanner adds essential security and compliance capabilities, with minimal network impact:

  • Find client-side vulnerabilities without credentials or agent deployment.
  • Monitor the network continuously – between scans. 
  • Detect inappropriate trust relationships or anomalous system access that might represent an advanced threat.
  • Find new devices as they are added to your network, in real time.
  • Log all file sharing, SQL, HTTP and other protocols, even if logging is turned off for devices in question. 

Real-time and Up-to-date

Tenable's research team updates plugins for the Passive Vulnerability Scanner the same way we release new checks for Nessus. Reports include CVE, Bugtraq and CPE references, operating system enumeration, severity ratings and CVSS scores – just like Nessus.

Unified Security Monitoring

When used with SecurityCenter, Nessus and the Log Correlation Engine, the Passive Vulnerability Scanner fills the gaps in your security and compliance measures by automatically detecting changes and vulnerabilities around the clock.

  • It identifies server and client-side vulnerabilities and sends them to SecurityCenter in real-time.
  • It logs all file sharing, SQL, HTTP, and other protocols, and sends logs for analysis to Tenable Log Correlation Engine.

Use SecurityCenter to manage the Passive Vulnerability Scanner and Nessus scanners. For example, configure a policy that automatically creates an active scan for any new hosts discovered by passive scanning.

Did you know?

Tenable Network Security CRO, Renaud Deraison, created Nessus when he was 17.

Product Videos & Webinars

Passive Discovery of Internet Facing Vulnerabilities Passive Discovery of Internet Facing Vulnerabilities
Continuous User Activity Monitoring Continuous User Activity Monitoring
Passive Real-Time Web Server Monitoring Passive Real-Time Web Server Monitoring
Using TenableSecurityCenter to Manage LCE & PVS Using Tenable SecurityCenter to Manage PVS & LCE
FDCC Configuration Audit with Tenable SecurityCenter 4 FDCC Configuration Audit with Tenable SecurityCenter 4