Académique Documents
Professionnel Documents
Culture Documents
Tenable Passive
Vulnerability Scanner
Product Overview
The Tenable Passive Vulnerability Scanner is a patented network discovery and vulnerability
analysis technology that delivers continuous real-time network profiling and monitoring
in a non-intrusive manner. Tenable Passive Vulnerability Scanner monitors IPv4 and IPv6
network traffic at the packet layer to determine topology, services and vulnerabilities. Tenable
SecurityCenter integrates with Passive Vulnerability Scanner to enable the centralization of
both log analysis and vulnerability management for a complete view of your security posture.
Benefits
Determine and identify vulnerabilities continuously in real-time to accelerate threat
remediation and eliminate gaps between active scans
Automatically detect and monitor IPv6-based assets and new or rogue systems that pose a
potential security risk
Demonstrate compliance with both internal policies and key regulatory requirements by
validating configuration management
Focus on incident response by alerting on real compromises
Detect inappropriate use and pinpoint insider threats not detectable by perimeter devices
Detect vulnerabilities on systems that are unavailable to active scans due to sensitivity,
policy or configuration
Politically correct vulnerability scanning without credentials and without possible
disruption of service
Identify sensitive data in motion that could compromise Personally Identifiable Information (PII)
Key Features
Real-time Vulnerability Monitoring
Tenable Passive Vulnerability Scanner continuously monitors IPv4/IPv6 network traffic for a
variety of security-related information including:
Keeping track of all client and server application vulnerabilities
Detecting when an application is compromised or subverted
Detecting and tracking new hosts that are added to a network
Detecting when an internal system begins to port scan other systems
Highlighting all interactive and encrypted network sessions
Tracking exactly which systems communicate with other internal systems
Detecting which ports are served and which ports are browsed for each individual system
Passively determining the operating system of each active host
Passive Vulnerability Scanner is connected to the network segment on a hub, spanned port
or network tap and continuously monitors the data stream, generating real-time alerts and
comprehensive reports for the security, IT and management teams.
Tenable Passive Vulnerability Scanner observes which systems are active, what protocols
they communicate on, what systems they communicate with, what applications they run and
most importantly what vulnerabilities exist. This information is used to efficiently monitor your
network for intruders and worm outbreaks.
| DATA SHEET
Quickstart Services
Get your Tenable enterprise products deployed quickly and begin
to immediately realize the maximum benefit from your investment
with QuickStart Services from Tenable. Experienced engineers will
implement Tenable best practices for enterprise deployment and
scanning throughout the system. SecurityCenter will be tested end
to end for scanning and other operational capabilities. Contact us at
sales@tenable.com today to learn more!
Industry Awards
Agentless Scanning and Clientless Access
Passive Vulnerability Scanner offers advanced protocol analysis of the
Microsoft SMB protocol. If Passive Vulnerability Scanner is deployed
on the interior of a network where it can see Active Directory network
traffic, it can automatically learn:
Information Security
BRONZE
10
READERS CHOICE
WINNER
Copyright 2013. Tenable Network Security, Inc. All rights reserved. Tenable Network Security, Nessus, and ProfessionalFeed are
registered trademarks of Tenable Network Security, Inc. Unified Security Monitoring is a trademark of Tenable Network Security, Inc.
All other products or services are trademarks of their respective owners.