Powered by Nessus sensors and third party data collection technologies, the platform provides asset discovery and vulnerability identification across the entire elastic attack surface — IT, cloud, OT and IoT — within a single platform. It enables DevOps processes by providing visibility into the security of container images as they are created. Through integration with the container build process, it provides vulnerability assessment, malware detection and policy enforcement prior to container deployment. Nessus Network Monitor passively analyzes network traffic to provide continuous visibility into managed and unmanaged assets on the network, including IT, OT and IoT assets. It includes new capabilities for asset discovery and vulnerability identification on critical infrastructure and embedded systems, such as ICS and SCADA systems, which require a non-intrusive approach to vulnerability management, providing coverage for operational technologies in such safety-critical infrastructure industries as oil and gas, energy, utilities, public infrastructure, manufacturing, and medical/healthcare. Supported protocols include Bacnet, CIP, DNP3, Ethernet/IP, Modbus/TCP, Siemens S7, ICCP, IEC 60870-5-104, IEEE C37.118, OpenSCADA, and more. The platform includes pre-built scan templates for identifying systems exposed to all Shadow Brokers exploits, including WannaCry, EternalRocks and any new versions of these attacks, as well as a check for the recent Intel AMT vulnerability (INTEL-SA-00075). In addition, Web Application Scanning safely and automatically scans web applications to accurately identify vulnerabilities.
>>For more information on this product, click here