Security Center 3.2 Released
Note: Tenable SecurityCenter is now Tenable.sc. To learn more about this application and its latest capabilities, visit the Tenable.sc web page.
Tenable has released version 3.2 of the Security Center. This new version includes several major new features:
- templated reporting with many new pre-configured reports
- data export via spreadsheet for any interactive query
- per user Active Directory authentication
The Security Center is available for Red Hat ES3 and ES4. Existing Tenable Security Center customers can upgrade to version 3.2 if their maintenance is up to date. New customers should contact the Tenable sales group for pricing.
Templated Reporting
This release enhances the reporting options available to all users. When creating a report, users can make use of the existing 3.0 report wizard or select from a list of pre-configured reports. Report templates exist for many basic reports, such as all missing Microsoft Patches, and also advanced reports such as SANS Top 20 and PCI.
Data Export via Spreadsheets
Any user of the Security Center can export their vulnerability, compliance, IDS event or log data to a .csv spreadsheet file. Any tool which summarizes ports, lists vulnerabilities, lists logs, and so on, can have the output saved into a spreadsheet. This data can be saved at any point a user is navigating through the Security Center's GUI.
LDAP Authentication
Security Center 3.2 can be configured to authenticate to any LDAP server, such as a Microsoft Active Directory server. Once this is enabled, any existing user (or new user) can be set to authenticate via LDAP. When adding a new user, the Security Center will also pre-populate the user's data such as full name, phone number and organization.
Related Articles
Unified IT and Web App Security: On-Prem Web App Scanning Integrated into Security Center
October 17, 2023On-prem web app scanning is now available within Tenable Security Center, offering comprehensive exposure management with accurate analysis, OWASP Top 10 coverage and easy setup. Here’s what you need to know.
What Is VPR and How Is It Different from CVSS?
April 16, 2020This blog series will provide an in-depth discussion of vulnerability priority rating (VPR) from a number of different perspectives. Part one will focus on the distinguishing characteristics of VPR th...
Tenable Releases SecurityCenter Continuous View
August 9, 2012<p>Today, Tenable <a href="http://www.tenable.com/news-events/press-releases/2012-tenable-network-security-unveils-securitycenter-continuous-view" target="_self" title="Tenable Network Security Unveils SecurityCenter Continuous View">announced </a>the availability of a new edition of SecurityCenter, called Continuous View.</p> <p>This edition of SecurityCenter uniquely encompasses both scanning and monitoring, with the inclusion of Tenable's Passive Vulnerability Scanner (PVS). That makes SecurityCenter Continuous View uniquely capable of addressing vulnerability, configuration, and compliance management requirements for emerging technologies like mobile devices, cloud-based services, social applications, and virtual systems.</p> <p>The flexible licensing approach provided by SecurityCenter Continuous View allows enterprise customers to deploy PVS in much the same way as they do with Nessus within SecurityCenter, pretty much as many as needed.</p> <p>Existing SecurityCenter customers can upgrade to a ContinuousView license and begin to enjoy the benefits of continuous monitoring with PVS. These include:</p> <ul> <li>Real-time identification of server and client vulnerabilities </li> <li>Identification of mobile devices and their vulnerabilities </li> <li>Passive discovery of all internal and external web servers and databases </li> <li>Identification of trust and communication paths </li> <li>Passive monitoring of virtual environments </li> </ul>
CVE-2024-7593: Ivanti Virtual Traffic Manager Authentication Bypass Vulnerability
August 14, 2024Ivanti released a patch for a critical severity authentication bypass vulnerability and a warning that exploit code is publicly available
Microsoft’s August 2024 Patch Tuesday Addresses 88 CVEs
August 13, 2024Microsoft addresses 88 CVEs with seven critical vulnerabilities and 10 zero-day vulnerabilities, six of which were exploited in the wild.
Compromising Microsoft's AI Healthcare Chatbot Service
August 13, 2024Tenable Research discovered multiple privilege-escalation issues in the Azure Health Bot Service via a server-side request forgery (SSRF), which allowed researchers access to cross-tenant resources.
- SecurityCenter