Tenable 部落格

Proof of Concept (PoC) vs. Proof of Value (PoV): What Do They Mean for Your Business?

This is the first of our two-part series on how to use Proof of Concept and Proof of Value processes to evaluate industrial cybersecurity solutions. Unlike Proof of Concept (PoC), which proves a concept will work, Proof of Value (PoV) takes a deeper dive into the value of that solution for…

Joseph Scotto

Cyber Exposure：安全性的下一個疆界

The stakes have never been higher when it comes to cybersecurity. Global cyber attacks such as the recent WannaCry ransomware attack is a sobering reminder that cybersecurity is the existential threat of this generation. A new report from Lloyd’s of London estimates a serious cyber attack could…

Jennifer Johnson

Hunting Linux Malware with YARA

Tenable recently released two new YARA plugins to complement the already existing Windows YARA plugin. The new plugins are YARA Memory Scan (Linux) and YARA File Scan (Linux) (Solaris). The plugins bring YARA functionality to Linux and Solaris hosts. This blog discusses a couple of scenarios in…

Jacob Baines

Getting Started with Nessus on Kali Linux

Kali Linux, a Linux distribution designed specifically for penetration testing, comes prepackaged with many pen test tools. Nessus® provides a penetration tester with a wealth of capabilities that will assist in the engagement, such as:Identifying local and remote vulnerabilitiesConfiguration and…

Sam Gaudet

Outstanding Patch Tracking Dashboard

Editor's note: Our dashboards have been updated in the time since this blog was originally published. Please see this page for the latest guidance on Outstanding Remediation Tracking. The IT Operations teams in most organizations run in monthly cycles from “Patch Tuesday” to “Patch Tuesday.” The…

Cody Dumont

Threat Hunting with YARA and Nessus

In Nessus 6.7, file system scanning functionality was introduced that could look for specific file hashes of files on disk. This was in addition to the running process detection which has been supported for quite some time. Now, as part of the Nessus 6.8 release, we’ve introduced YARA to our…

Jacob Baines

Installing and Using Nessus on Kali Linux

請注意：These 2014 instructions are for installing Nessus version 5 on Kali Linux. Please see the newer blog, Getting Started with Nessus on Kali Linux, for information on installing Nessus version 6 and higher on Kali Linux 2016. Note:  Nessus Cloud is now a part of Tenable.io…

Paul Asadoorian

Tenable Network Security Podcast 203 - "Ebay Got Hacked"

Paul Asadoorian

Tenable Network Security Podcast Episode 198 - "PCI Discussion Featuring Jeffrey Man"

<p></p>

Paul Asadoorian

Tenable Network Security Podcast Episode 177 - "Securing Management Devices, Database Security?"

<p></p>

Paul Asadoorian

The Big Red Button and the Kill Switch

I have no idea if I had a role in the "Internet Kill Switch" debacle, but it's possible that I was one of the pushes that got that particularly horrible ball rolling. Back in 2002, when I was between jobs, I did a talk at CSI in Chicago, about the need for organizations to be better able to react…

Marcus J. Ranum

Recap: Geeking Out II with Marcus

Ron and I spent most of the webcast rotating around the theme of detection algorithms: how do you determine what is normal and what is not? We started off with one of my favorite questions, "Are there only two algorithms? Statistics - of some sort - or matching?" I think that, by the time we were…

Marcus J. Ranum