Nessus
A vulnerability assessment solution that automates the identification of software flaws, missing patches, and misconfigurations.
| Category | Vulnerability Management |
|---|---|
| This page updated | a month ago |
| Pricing Details | Contact for pricing details. |
| Target Audience | IT security professionals, vulnerability management teams, compliance officers. |
Nessus manages identifying and mitigating vulnerabilities across dynamic and diverse IT environments. At its core, Nessus is a comprehensive vulnerability assessment solution that automates the process of identifying software flaws, missing patches, malware, and misconfigurations across various operating systems, devices, and applications.
The technical architecture of Nessus is built around dynamically compiled plugins, which enhance scan performance and efficiency. This approach allows for rapid completion of initial scans and improves the time to value. Nessus can be deployed on a wide range of platforms, including Raspberry Pi, making it versatile for both centralized and distributed environments. The solution integrates with other Tenable products, such as Tenable Vulnerability Management and Tenable Lumin, to provide a unified view of asset vulnerabilities and exposure management.
Operationally, Nessus stands out for its accuracy, with a six-sigma accuracy rate and only 0.32 defects per 1 million scans. It supports multiple vulnerability scoring systems like CVSS v4, EPSS, and Tenable’s VPR, enabling effective prioritization of vulnerabilities for remediation. The platform also offers pre-built policies and templates, over 450 in total, to help quickly identify and address vulnerabilities. However, it's important to note that while Nessus is highly scalable, managing large-scale deployments may require careful resource allocation to maintain optimal performance.
From a technical perspective, Nessus provides continuous, always-on asset discovery and assessment, which is particularly beneficial for highly dynamic cloud and remote workforce environments. The solution includes advanced support options, such as 24/7 phone, chat, and community support, to ensure rapid resolution of issues. Additionally, Nessus supports a broad range of operating systems and platforms, including Amazon Linux, CentOS, Debian, and various Red Hat and Oracle Linux versions, ensuring comprehensive coverage of the IT infrastructure.