Tenable just released new version of Nessus. Most changes was made in cloud-based version of their popular scanner – Nessus Cloud. Official screenshots are not available yet, so I made couple of them from the tutorial video. If you’re a current Tenable customer, you can log in to the Tenable Support Portal, click the Training Videos link and watch “Workflow changes in Nessus Cloud 6.6” by yourself.
The most interesting change, in my opinion – the new dashboards. Where you’d normally seen a list of scan jobs, you’ll see a new dashboard, that will give you a quick overview of scan results:
- Changes in number of critical, high, medium and low vulnerabilities detected in the system
- Part of the vulnerabilities that are exploitable, older than 30 days, detected with authenticated scan and has a remediation recommendations
- Top vulnerability detection plugins
Scan results moved to the separate “Scans” tab. And on the same tab we see the “Resources”: Policies, Asset Lists, Exclusions, Scanners and Agents.
As we can see, policy templates now are placed on the separate tabs depending on the type: Scanner, Agent, Web Application and All Templates.
Managing linked (slave) scanners become easier. As we see, scanners can be combined now in a Scanner Groups. Linked Scanners list displays scanner name, status, amount of performed scans, last modification date.
I hope that this useful improvements will appear in Nessus Professional either. Although it’s possible, that Tenable won’t add these make this changes in Nessus Professional, avoiding competition with Security Center and Nessus Manager.
Other features of all Nesus 6.6. releases:
- New supported OS: Windows 10, Debian 8, Kali 2.0.
- New configuration checks for Docker and OpenStack