Nessus, Part 3: Analysing Reports

by Harry Anderson
Sept. 25, 2017 1 comment Symantec Pen Testing & Audits nessus

This article, the last in the series about Nessus, will endeavor to explain a Nessus report and how to analyze it. Nessus is a vulnerability scanner, a program that looks for security bugs in software. The first article explained how to install Nessus and a basic overview of features. The second article gave general rules of thumb for various scanning situations. It is suggested that you review the first two articles before reading this one. Understanding how and why vulnerabilities exist in software is important to being able to analyze the final scan report, and this article uses a number of examples to illustrate various important concepts. In some cases these may be older, more common examples instead of the "latest" day zero vulnerabilities. There are several reasons for this.

2flash 7 months, 3 weeks ago

Part 3 was exactly what this presentation needed to make it round. Good efforts!