Nessus.org News http://www.nessus.org/ All the news regarding the Nessus Scanner Nessus News http://www.nessus.org/images/RssLogo.jpg http://www.nessus.org/ Tenable Awarded U.S. Patent for Network Monitoring Technology More info]]> http://www.nessus.org/news/#328 2010-08-26T10:09:55-04:00 Tenable Releases Security and Policy Compliance Configuration Audits for Cisco IOS
The audits are based on best practices available from the Center for Internet Security and provide router and switch administrators the ability to test security and policy compliance settings in their network infrastructure.
More info]]> http://www.nessus.org/news/#306 2010-06-16T11:19:48-04:00 Tenable Releases SecurityCenter 4 SecurityCenter 4 is the enterprise-class management console for Tenable's Unified Security Monitoring suite of products. The latest release represents a product milestone for Tenable's strategic vision and delivers significant advances in functionality designed to enhance the efficiency and efficacy of security operations.
More info]]> http://www.nessus.org/news/#294 2010-04-26T15:24:15-04:00 Tenable Releases Passive Vulnerability Scanner 3.2 More info]]> http://www.nessus.org/news/#292 2010-04-21T11:19:38-04:00 Nessus 4.2.2 released
Nessus-fetch:
- Proxy issues have been resolved

NASL:
- Fixed a memory leak in the NASL xmlparse() function

Networking:
- Fixed IPv6 routing when talking to a remote host (FreeBSD, Mac OS X)
- Packet forgery was not always working on ES5 64 bits

Packaging:

- Fixed the Debian /etc/rc init script
- Upgraded OpenSSL to version 0.9.8n (Windows, Solaris)

Stability:
- Fixed a possible crash when using a badly written custom plugin
- Fixed a possible crash when running out of BPFs on Windows
More info]]> http://www.nessus.org/news/#291 2010-04-15T08:29:23-04:00 Tenable Named Finalist in 2010 SC Magazine Awards 2010 SC Magazine Awards for outstanding achievement in information technology (IT) security. Tenable's Security Center was named as a premiere solution in the Reader Trust Award competition, which honors best-in-class security products and services.
More info]]> http://www.nessus.org/news/#278 2010-03-01T10:36:07-05:00 Nessus 4.2.1 released
This version contains the following major changes over the previous version:

  • Improved the overal responsiveness of the web interface
  • The per-host memory overhead during has scan has been reduced drastically,thus allowing for more hosts to be scanned in parallel
  • Experimental Solaris 10 (Sparc) build

    More info]]> http://www.nessus.org/news/#277 2010-02-22T14:26:31-05:00 Tenable Product Suite Awarded Common Criteria Security Certification More info]]> http://www.nessus.org/news/#276 2010-02-16T16:39:39-05:00 Nessus 4.2.0 released
    Nessus 4.2 features a brand new web-based user interface and other performance improvements.

    You can download Nessus 4.2 at http://www.nessus.org/download/ and read more about it on Tenable's Blog


    The detailed change log is below:

    User interface:

    - New web based interface to manage scan and their results
    - Multi-user
    - Scan results and policies are now stored on the server
    - New "compare" function can show what's new since another scan
    - Admin users can pause/stop scans of other users
    - Automatically updated via the plugin feed


    Reporting:

    - New ".nessus" file format following most of what was discussed atb https://discussions.nessus.org/message/1239#1239
    - Much easier to parse
    - Description split into different labels (cvss_base_score, risk_factor, etc...)
    - "HostPoperties" section contains information which can be extracted easily (MAC address, operating-system, etc....)
    - New HTML export format. More exports will soon be available through the plugin feed
    - When a service is identified against a given port, the port name is now set to this service name (instead of looking up /etc/services).


    Plugins:

    - All plugins have been converted to a new registration API splitting the different labels (synopsis, description, solution, etc... are split into different calls, which is needed for the new .nessus format)
    - The SYN scanner is now much faster against a firewalled host with all ports closed

    Engine:

    - Many new NASL functions
    - nasl -VVVV will now list the dependencies of a given script (even nbin)
    - Default HTTP user-agent now set to IE8
    - Experimental token-ring support for packet forgery
    - OpenSSL upgraded to 0.9.8l on Windows
    - Performance improvement (especially when used with SecurityCenter) and
    slightly lower memory usage
    - Support for more SSL ciphers when connecting to remote services while auditing

    New platforms:

    - Nessus 4.2 also provide builds for Fedora 12 (32 and 64 bits), Ubuntu 9.10 (32 and 64 bits) and Suse 10 Enterprise (64 bits)

    More info]]>     http://www.nessus.org/news/#267 2009-11-30T14:13:12-05:00     Tenable Extends Capability of its Enterprise-Class Log Management Solution More info]]> http://www.nessus.org/news/#266 2009-11-23T16:40:26-05:00