Tenable Nessus Features

Application Programming Interface Specification for how the application communicates with other software. APIs typically enable integration of data, logic, objects, etc. with other software applications.

Provides the ability to extend the platform to include additional features and functionalities

Tools to visualize and analyze data.

Track issues as vulnerabilities are discovered. Documents activity throughout the resolution process.

Examines application source code for security flaws without executing it.

Scans applications and networks for known vulnerabilities, holes and exploits.

Scans application source code for security flaws without executing it.

Allows users to perfrom hands-on live simulations and penetration tests.

Runs pre-scripted security tests without requiring manual work.

Allows users to test applications for specific compliance requirements.

Scans functional applications externally for vulnerabilities like SQL injection or XSS.

The rate at which scans accurately detect all vulnerabilities associated with the target.

The rate at which scans falsely indicate detection of a vulnerability when no vulnerabilitiy legitimately exists.

The rate at which scans accurately detect all vulnerabilities associated with the target.

The rate at which scans falsely indicate detection of a vulnerability when no vulnerabilitiy legitimately exists.

Runs pre-scripted vulnerability scans without requiring manual work.

Allows users to scan applications and networks for specific compliance requirements.

Analyzes network devices, servers and operating systems for vulnerabilities.

Monitors configuration rule sets and policy enforcement measures and document changes to maintain compliance.

Scans application source code for security flaws without executing it.

Scans functional applications externally for vulnerabilities like SQL injection or XSS.

Detects new and undocumented assets as they enter a network and add them to asset inventory.

Detects anomalies in functionality, user accessibility, traffic flows, and tampering.

Provides results of the simulation and reveals potential security gaps or vulnerabilitites.

Tools to track and implement required security policy changes.

Monitors data quality and send alerts based on violations or misuse.

Allows users to set customizable API verification settings to improve security requirements.

Runs pre-scripted security tests without requiring manual work.

Abilities to set standards for network, application, and API security risk management.

Constantly monitors activity related to user behavior and compares activity to benchmarked patterns.

Monitors for and rids systems of bots suspected of committing fraud or abusing applications.

Analyzes data associated with denied entries and policy enforcement, giving information of better authentication and security protocols.

Stores information related to common vulnerabilities and how to resolve them once incidents occur.

Monitors data quality and sends alerts based on violations or misuse.

Aggregates real-time updates and historical data from multiplate internal and external data sources to support ongoing proactive threat response.

Detects new assets as they enter cloud environments and networks to add to asset inventory.

Identifies unsanctioned software.

Provides tools to track and implement required security policy changes.

Allows for vulnerability ranking by customized risk and threat priorities.

Gathers information about the system and potential exploits to be tested.

Uses machine learning to identify at-risk data.

Stores information related to common threats and how to resolve them once incidents occur.

Condenses long documents or text into a brief summary.

Capability to perform complex tasks without constant human input

Anticipates needs and offers suggestions without prompting