Recently Viewed Topics
Templates
Templates facilitate the creation of Scans and Policies.
When you first create a Scan or Policy, the Scan Templates section or Policy Templates section appears, respectively. Templates are provided for scanners and agents.
Tip: You can use the search box in the top navigation bar to filter templates in the
The templates that are available may vary. The Tenable.io interface provides brief explanations of each template in the product. This documentation includes a comprehensive explanation of the settings that are available for each template. Additionally, the following tables list the templates that are available in Tenable.io and the settings available for those templates.
Scanner Templates
| Template |
Description |
Settings | Credentials | Compliance/SCAP |
|---|---|---|---|---|
| Advanced Network Scan |
Scans without any recommendations. |
All | All | |
| Audit Cloud Infrastructure |
Audits the configuration of third-party cloud services. |
Report: Output Advanced: Debug Settings |
Cloud Services |
AWS Microsoft Azure Rackspace Salesforce.com |
| Badlock Detection |
Performs remote and local checks for CVE-2016-2118 and CVE-2016-0128. |
Discovery: Scan Type Report: Output |
Host |
None |
| Bash Shellshock Detection |
Performs remote and local checks for CVE-2014-6271 and CVE-2014-7169. |
Discovery: Scan Type Assessment: Web Applications Report: Output |
None | |
| Basic Network Scan |
Performs a full system scan that is suitable for any host. For example, you could use this template to perform an internal vulnerability scan on your organization's systems. |
Discovery: Scan Type Assessment: Scan Type Advanced: Scan Type |
None | |
| Credentialed Patch Audit |
Authenticates hosts and enumerates missing updates. |
Discovery: Scan Type Assessment: Brute Force, Windows, Malware Advanced: Scan Type |
None | |
| DROWN Detection |
Performs remote checks for CVE-2016-0800. |
Discovery: Scan Type Report: Output |
None |
None |
| Host Discovery |
Performs a simple scan to discover live hosts and open ports. |
Discovery: Scan Type Report: Output |
None | None |
|
Intel AMT Security Bypass Detection |
Performs remote and local checks for CVE-2017-5689. |
Discovery: Scan Type Report: Output |
None |
|
| Internal PCI Network Scan |
Performs an internal PCI DSS (11.2.1) vulnerability scan. |
Discovery: Scan Type Assessment: Scan Type Advanced: Scan Type |
None | |
| Malware Scan |
Scans for malware on Windows and Unix systems. |
Discovery: Scan Type Assessment: Malware Report: Output Advanced: Scan Type |
None | |
| MDM Config Audit |
Audits the configuration of mobile device managers. |
Report: Output |
Mobile | Mobile Device Manager |
| Mobile Device Scan |
Assesses mobile devices via Microsoft Exchange or an MDM. |
Advanced: Debug |
None | |
| Offline Config Audit |
Audits the configuration of network devices. |
Report: Output Advanced: Debug |
None |
Adtran AOS Arista EOS Bluecoat ProxySG Brocade FabricOS Check Point Gaia Cisco IOS Dell Force10 FTOS Extreme ExtremeXOS Fireeye Fortigate Fortios HP Procurve Huawei VRP Juniper Junos Netapp Data Ontap Sonicwall Sonicos Watchguard |
| PCI Quarterly External Scan |
Performs quarterly external scans as required by PCI. |
Discovery: Host Discovery Advanced: Scan Type |
None | None |
| Policy Compliance Auditing |
Audits system configurations against a known baseline. |
Discovery: Scan Type Report: Output Advanced: Scan Type |
||
| SCAP and OVAL Auditing |
Audits systems using SCAP and OVAL definitions. |
Discovery: Scan Type Advanced: Scan Type |
||
|
Shadow Brokers Scan |
Scans for vulnerabilities disclosed in the Shadow Brokers leaks. |
Discovery: Scan Type Report: Output |
None |
|
| Spectre and Meltdown | Performs remote and local checks for CVE-2017-5753, CVE-2017-5715, and CVE-2017-5754. |
Discovery: Scan Type Report: Output |
None | |
|
WannaCry Ransomware Detection |
Scans for the WannaCry ransomware. |
Discovery: Scan Type Report: Output |
None |
Agent Templates
| Template |
Description |
Settings | Credentials | Compliance/SCAP |
|---|---|---|---|---|
|
Advanced Agent Scan When you create an agent scan using the Advanced Agent Scan template, you must also select the plugins you want to use for the scan. |
Scans without any recommendations. |
Discovery: Port Scanning Assessment: General, Windows, Malware Advanced: Debug |
None |
Unix Unix File Contents Windows Windows File Contents |
| Basic Agent Scan |
Scans systems connected via Nessus Agents. |
Discovery: Port Scanning Assessment: Scan Type Advanced: Debug |
None | None |
| Malware Scan |
Scans for malware on systems connected via Nessus Agents. |
Discovery: Port Scanning Advanced: Debug |
None | None |
| Policy Compliance Auditing |
Audits systems connected via Nessus Agents. |
Discovery: Port Scanning Report: Output Advanced: Debug |
None |
Unix Unix File Contents Windows Windows File Contents |
|
SCAP and OVAL Agent Auditing |
Audits systems using SCAP and OVAL definitions. |
Discovery: Port Scanning Report: Output Advanced: Debug |
None |
Linux (SCAP) Linux (OVAL) Windows (SCAP) Windows (OVAL) |