Welcome to my overview of Nessus vulnerability scanner.
Vulnerability scanning is a subset of vulnerability management, and is the process of scanning and identifying vulnerabilities, misconfigurations or flaws in an operating system or software. These scans can be done manually or by using automated scanning tools, like Nessus, Qualys, OpenVAS, nmap, burp suite, acunetix etc.
Most of these tools if not all can perform port scanning, banner grabbing, OS, service, IP and mac address detention, and… “the cream on the pie”, should have a signature-based vulnerability detection built into the application, mostly similar to that of CVE, NVD, CSS systems/ databases. It is imperative to keep these signature databases UpToDate to avoid FALSE NEGATIVES. Vulnerability scanning is one of the most important and effective means to locate vulnerabilities in any type of network, personal or in an organization, and priority should be given to periodically perform scans, as a part of excellent, vulnerability management, and ultimately a safer compliant network environment.
Today we will look at Nessus by tenable.
check out my video below