Now You Can Do Anti-Virus Audit with Nessus
Tenable puts a cool Antivirus deployment Audit checks into it’s ground breaking Nessus tool. Compliance is the universal security obsession and I think Nessus will move more and more into this area. Quote:
For compliance, if an organization has selected one or more anti-virus solutions, being able to audit this with Nessus can prove to an auditor that a solution is indeed installed, in use and up to date.
At the time of this writing, the following anti-virus solutions are detected as installed, running and up-to-date by Nessus:
- #24232 BitDefender Check
- #20284 Kaspersky Anti-Virus Check
- #12107 McAfee Anti Virus Check
- #21608 NOD32 Antivirus System Check
- #12106 Norton Anti Virus Check
- #20283 Panda Antivirus Check
- #21725 Symantec Anti Virus Corporate Edition Check
- #14835 Symantec Norton AntiVirus Version Detection
- #16192 Trend Micro Anti Virus Check
- #24344 Windows Live OneCare AntiVirus Check
Tenable’s blog on : Auditing Anti-Virus Products with Nessus
If you enjoyed this post, make sure you subscribe to my RSS feed!
Thank you for reading this post. You can now Read Comments (2) or Leave A Trackback.
Post Info
This entry was posted on Saturday, February 17th, 2007 and is filed under Vuln. Scanner, Tools.You can follow any responses to this entry through the Comments Feed. You can Leave A Comment, or A Trackback.
Previous Post: Compliance Audit IS NOT Substantive Audit »
Next Post: Blind SQL Injection Tool : sqlmap »
Read More
Related Reading:- Privacy Dilemma: How to Protect Yourself Online
- Solera Networks Deep-Packet Capture Review
- WordPress Exploit Scanner
- Phishing Exposed, Brands Secured
- Scanners: New Nessus Release; New eEye Web Scanner
- Good News from ArcSight and Imperva
- CCTV Security Camera and Surveillance Equipment
- OpenDNS Offers Free Web Content Filtering
- Can I Evade ScanSafe Anywhere+ ?
- Googlehacks and Anti-Googlehacks
February 17th, 2007 20:40
Hi saw your post on the security bloggers network feed. I saw the Tenable post as well. My question is what good is scanning for the anti-virus without taking some action. Either quarantine or remediate the device. Discovery for discovery sakes alone is not compliance. This is why with vulnerability management scanning doing compliance management, I think it is an interim step towards NAC type of functionality or automated remediation.
February 18th, 2007 02:09
you are right Alan, I also think that a good security management framework should go beyond ticking boxes on a compliance checklist.
However,by adding AntiVirus audit checks, Tenable seems to go for a piece of the compliance pie.