Tenable announces world’s first realtime botnet scanner delivered on a global scale
March 2011 by Tenable
Tenable Network Security, Inc., the creators of SecurityCenter and Nessus vulnerability scanner, announced that its solutions can now identify systems that are participating in botnets and detect web servers that are hosting malicious content.
"While many organisations have in place security solutions that provide logs about botnets on their system, the reality is that they rarely have the time to properly analyse the logs to protect themselves against malicious content", says Ron Gula, Tenable CEO/CTO, "By offering the world’s first real-time botnet scanner, our customers around the world can be confident that they are taking a proactive approach to protecting themselves from compromised computers on their network.”
Tenable provides a range of products that deliver industry-leading and unique protection for organisations of all sizes – from start-ups to global enterprises. These features are available immediately globally to Tenable’s enterprise SecurityCenter customers, Nessus ProfessionalFeed users and Nessus Perimeter Service subscribers.
Tenable’s unique Unified Security Monitoring platform uses:
· Massive Common Vulnerabilities and Exposures (CVE) database
The world’s largest vulnerability and exposure database maintained by the Tenable Research team contains 42,000 plugins covering 15,000 unique common vulnerabilities and exposures (CVEs) and over 9,000 Bugtraq IDs. As part of this update, the Tenable platform now includes botnet detection content.
· Agentless protection
In addition to server-based botnet and malicious content detection, Tenable combines active and passive technology that identifies client side (browser and email) vulnerabilities that botnets target, without the need for credentials, scanning or agents.
· Zero Day Response
Tenable’s anomaly detection, event correlation and sequencing and user monitoring technology picks up botnet and hosted malware in real time 7x24.
"This capability is also very useful because if a website is identified as hosting malicious content, it is very likely that it has been compromised", says Marcus Ranum, Tenable CSO.
Nessus’s ability to identify systems and websites that are participating in botnets compliments Tenable’s Passive Vulnerability Scanner and Log Correlation Engine’s existing ability to audit logs and network traffic for anomalies and connections to hostile Internet locations.