IT Security Stack Exchange
IT Security Stack Exchange

Questions tagged [nessus]

Nessus is a vulnerability scanning product and vulnerability management product that has both free 'Home' and paid 'Commercial' editions

Nessus is a proprietary vulnerability scanner which is developed by Tenable Network Security. It is free of charge for personal use in a non-enterprise environment.

It has a web interface for conducting scans and provision to generate & download scan reports.

Source - https://en.wikipedia.org/wiki/Nessus_(software)

70 questions
0
votes
2 answers

Nessus detect more open ports than nmap

I scan my site via namp , I only see 3 ports open. nmap -sV {ip} Starting Nmap 7.80 ( https://nmap.org ) at 2020-01-25 09:42 EST Nmap scan report for…
code-8
  • 125
  • 1
  • 7
0
votes
0 answers

Identifying Share Permission and File Permission on Hundreds of Servers

Objective Identify and report on Windows hosts in the network which allow file/folder access (READ/WRITE/Execute) for Everyone. Scenario: Using agent based scanner, I extracted share permissions from 100 Windows 2012 Servers where at least one…
Shakir
  • 185
  • 2
  • 13
0
votes
2 answers

How to check if a list of domains contains any WordPress installation?

Does any software or any other way to detect if a website contains any WordPress installation? For example lets say we have the website example.com which is not a WordPress site, but we have a WordPress site in the path example.com/blog and…
chrysst
  • 157
  • 4
0
votes
2 answers

vulnerability scans on machines not on the network?

Is it possible to scan laptops of users who are not on your network (e.g., consultants) before giving them access to resources? Can you also explain the reasoning behind why/why not?
mks5251
  • 11
  • 1
0
votes
1 answer

Nessus keeps detecting mDNS

I’m scanning my Windows 10 machine with my Kali Linux virtual box. I have a medium level vulnerability with mDNS. The solution according to the Nessus docs is to block UDP port 5353 even though the mDNS service was broadcasting from port 49898 from…
user21303
  • 151
  • 2
  • 4
  • 11
0
votes
1 answer

Replace Nmap with Nessus

I have to replace NMAP with Nessus. I got answer for few settings, but there are few settings in NMAP for which I am not able to get answer. If you could answer me, it would be helpful. For example, NMAP Option "-Pn" - Use: Do not use host…
tech_enthusiast
  • 435
  • 1
  • 5
  • 19
0
votes
0 answers

Checking Intermediate Certificates Programatically

Nessus is reporting that an "SSL Certificate Cannot Be Trusted". This is due to the intermediate certificate not being in the certificate bundle presented during the TLS/SSL handshake. I've looked at a couple of similar threads: Use openssl to…
SilverlightFox
  • 33,408
  • 6
  • 67
  • 178
0
votes
4 answers

Attack Metasploitable using Nessus

For my computer security class I have to prepare a malicious attack using Tenable Nessus security scanner. The scanner and target, which is Metasploitable2, both have been installed on separate virtual machines. Everything works just fine, Nessus…
Adam
  • 1
0
votes
1 answer

Security errors with printer

I ran a security scan using the home version of Nessus by following a post on LifeHacker, and I was told that my printer had two security errors: OpenSSL 'ChangeCipherSpec' MiTM Vulnerability SNMP Agent Default Community Name (public) Seeing as…
BarrowWight
  • 244
  • 1
  • 7
0
votes
2 answers

Is Nessus approved for PCI Scans?

Question is in the title. I can't seem to find a straight answer and Tenable seem to be dodging a yes/no answer on their website. I was told a few years ago that Qualys was approved by PCI for PCI compliance, and that Nessus at the time was not. Has…
Juicy
  • 1,407
  • 4
  • 16
  • 31
1 2 3 4
5