Tenable Network Security released version 3.2 of the Passive Vulnerability Scanner (PVS), a passive technology that monitors network traffic and provides real-time vulnerability data to Tenable’s SecurityCenter management console. In addition, PVS also collects real-time user and forensic activity on the network.
This release increases PVS’s ability to decode complex protocols to find server and client vulnerabilities as well as adding many new forensic and activity monitoring functions. New features include:
- Passive discovery of many client and server side vulnerabilities such as vulnerable ActiveX applications embedded on web servers
- Real time logging of all file transfers and sharing via SMB, HTTP, FTP and NFS, and
- Real time passive monitoring and logging of SQL database transactions from user and web server applications.
PVS provides continuous passive auditing and discovery of networks. As hosts connect to the network, the hosts are automatically profiled and a majority of the host activity is logged to enable forensic analysis of any security event.