TOC & Recently Viewed

Recently Viewed Topics

Plugin Information

Plugin Families

Tenable.io Web Application Scanning includes the following new plugin families for categorization of web plugins:

Plugin Family

Description

Authentication & Session

Plugins related to authentication and session issues.

Code Execution

Plugins allowing code to be executed on the server and/or the application.

Cross Site Request Forgery

XSRF issues.

Cross Site Scripting

All types of XSS issues.

Data Exposure

Plugins allowing sensitive or relevant information to be collected.

File Inclusion

File can be uploaded using plugins of this family.

General

Plugins used to provide general information.

Injection

Any type of injection (e.g., SQL, noSQL, and Code).

Web Applications

Information and detection collected on the web application.

Web Servers

Information and detection collected on the web server running the web application.

Plugin IDs

Tenable.io Web Application Scanning uses the plugin range 98000-98999. See Web Application Scanning Plugin Families for a complete list of the plugins available with Tenable.io Web Application Scanning.

Copyright 2017 - 2018 Tenable, Inc. All rights reserved. Tenable Network Security, Nessus, SecurityCenter, SecurityCenter Continuous View and Log Correlation Engine are registered trademarks of Tenable, Inc. Tenable, Tenable.io, Assure, and The Cyber Exposure Company are trademarks of Tenable, Inc. All other products or services are trademarks of their respective owners.