Passive Vulnerability Scanner不斷尋找新的主機、 應用程式和安全性漏洞 — —
補充活動掃描可能會掃描之間的潛在威脅。它在 web 瀏覽器、
電子郵件用戶端與其他用戶端，找到用戶端的安全性漏洞和可能表明的更嚴重威脅 (APT) 的異常。
The Tenable Passive
Vulnerability Scanner helps organizations find unexpected security
and compliance problems by continuously monitoring all network
The Passive Vulnerability Scanner continuously looks for new hosts,
applications and vulnerabilities – supplementing your active
scanning for potential threats that might fall between scans. It
finds client-side vulnerabilities in web browsers, email clients,
and other clients, and anomalies that might indicate more serious
threats (such as APT).
Passive Scanning's Unique Benefits
The Passive Vulnerability Scanner adds essential security
and compliance capabilities, with minimal network impact:
Find client-side vulnerabilities without credentials or agent
Monitor the network continuously – between scans.
Detect inappropriate trust relationships or anomalous system access
represent an advanced threat.
Find new devices as they are added to your network, in real time.
Log all file sharing,
SQL, HTTP and other protocols, even if logging is turned
off for devices in question.
Real-time and Up-to-date
Tenable's research team updates plugins for the Passive
Vulnerability Scanner the same way we release new checks for Nessus.
Reports include CVE, Bugtraq and CPE references, operating system
enumeration, severity ratings and CVSS scores – just like Nessus.
Unified Security Monitoring
When used with SecurityCenter, Nessus and the Log
Correlation Engine, the Passive Vulnerability Scanner fills the gaps
in your security and compliance measures by automatically detecting
changes and vulnerabilities around the clock.
It identifies server and client-side vulnerabilities and sends them
SecurityCenter in real-time.
It logs all file sharing, SQL, HTTP, and other protocols, and sends
analysis to Tenable Log Correlation Engine.
Use SecurityCenter to manage the Passive Vulnerability Scanner and
Nessus scanners. For example, configure a policy that automatically
creates an active scan for any new hosts discovered by passive