We are excited to share a number of recent product enhancements in Tenable.io over the past several weeks:

Tag-based Scanning

Tenable.io now enables you to target assets based on asset tags as an alternative to using IP-based target groups or target ranges for configuring scans. Because tags can be dynamically applied to assets as new assets are discovered, tag-based scanning is an effective way to define scan targets for specific asset groups without the need to manually configure the scan. For more information, please read Basic Settings and Example: Tag-Based Scanning in the Tenable.io User Guide.

Enhanced Predictive Prioritization

Predictive Prioritization now provides a Vulnerability Priority Rating (VPR) for vulnerabilities not yet published in the National Vulnerability Database (NVD). This helps to dramatically reduce the lag between when a vulnerability is publicly announced and when it appears in the NVD, which can take as long as several weeks or even months. For more information, please read this Tenable press release.

Nessus Network Monitor Discovery Mode

Take advantage of Nessus Network Monitor (NNM) in Tenable.io without fear of consuming too many asset licenses. With NNM Discovery Mode, now you can use NNM to continuously monitor your networks to eliminate blindspots due to previously unknown assets or new assets added to the network between scans. NNM Discovery Mode identifies previously unseen assets and allows you to determine which assets you want Tenable.io to manage and assess for vulnerabilities and misconfigurations. For more information, please read NNM Settings Section in the Nessus Network Monitor User Guide and Tenable.io Vulnerability Management Licenses in the Tenable.io User Guide.

Filter by Tag

Tenable.io now enables you to apply filters to vulnerabilities and assets using tags in the Vulnerabilities table and when creating custom widgets in dashboards for enhanced analysis. Tags are a useful way to analyze and report on vulnerabilities based on specific asset groupings for business context. You can also export the vulnerability data filtered by tags into CSV format. For more information, please read Vulnerability Filters and Create a Custom Widget in the Tenable.io User Guide.

Asset Assessed Filter

Tenable.io has added a new filter to help you determine whether discovered assets have been assessed by the product. This filter allows you to easily identify and tag assets that have never been scanned for vulnerabilities and misconfigurations to help you reduce blind spots. When combined with tag-based scanning, you can create a scan policy that automatically identifies and scans newly discovered assets for a more comprehensive picture of cyber risk. For more information, please read Example: Identify Assets That Have Not Been Assessed in the Tenable.io User Guide.