Nessus Vulnerability Scanner

Version: Nessus Professional, Tenable Cloud and Security center

Nessus/Tenable Vulnerability scanner is a tool that identifies the vulnerability available/present in our environment.

Netsurion Open XDR platform can integrate Nessus/Tenable vulnerability scanner that helps you to monitor vulnerabilities detected by the scanner into the Netsurion Open XDR console. It provides a visual representation of top vulnerabilities detected in the environment, also shows highly vulnerable system which is having a high CVE score. Alerts are triggered whenever any critical or high severity vulnerabilities are detected in the environment. Netsurion Open XDR can generate vulnerability reports on a scheduled basis as well. This report provides information about the system which is highly vulnerable.

On monitoring the Nessus Scanner, the following are the activities that can be monitored.

  • Security – Vulnerability detection, a system with a high CVE Score.

Once Nessus Vulnerability Scanner is configured to deliver events to Netsurion Open XDR Manager; alerts, dashboards and reports can be configured into Netsurion Open XDR.

The following are the key Data Source Integration available in Netsurion Open XDR.

Alerts

Type Name Description
Security Nessus – Host with high CVE score This alert will generate whenever the scanner detects the host with CVE score between 6-10.
Security Nessus – Vulnerability with high risk This alert will generate whenever any vulnerability is detected with high risk.

Reports

Type Name Description
Security Nessus – Vulnerability Detected This report will provide information about the vulnerability detected in the environment. It will have information about the system, CVE score, vulnerability detected on it and its risk level. This also provides information about the mitigation of vulnerability detected on the system.
Operations Nessus – Host discovery This report provides the number of alive hosts and active ports on a network.
Compliance Nessus – MDM config audit This report provides the Audit scan result configurations of mobile device managers.
Compliance Nessus – Offline config audit This report provides the audit configurations of network devices.
Compliance Nessus – Scap and Oval auditing This report provides details on SCAP and Oval content audit scan results.

Documentation

The configuration details are consistent with Netsurion Open XDR 9.x and later, Nessus Vulnerability Scanner.

Download Integration Guide and How-to Guide for configuration instructions and more information.