Preconfigured Discovery Scan Settings

Certain Tenable-provided scanner templates include preconfigured discovery settings, described in the following table. The preconfigured discovery settings are determined by both the template and the Scan Type that you select.

Template Scan Type Preconfigured Settings
Discovery
Host Discovery Host enumeration (default)
  • General Settings:

    • Always test the local Nessus host
    • Use fast network discovery
  • Ping hosts using:

    • TCP
    • ARP
    • ICMP (2 retries)

OS Identification

 

  • General Settings:

    • Always test the local Nessus host
    • Use fast network discovery
  • Ping hosts using:

    • TCP
    • ARP
    • ICMP

Port scan (common ports)
  • General Settings:

    • Always test the local Nessus host
    • Use fast network discovery
  • Port Scanner Settings:
    • Scan common ports
    • Use netstat if credentials are provided
    • Use SYN scanner if necessary
  • Ping hosts using:

    • TCP
    • ARP
    • ICMP (2 retries)

Port scan (all ports)
  • General Settings:

    • Always test the local Nessus host
    • Use fast network discovery
  • Port Scanner Settings:
    • Scan all ports (1-65535)
    • Use netstat if credentials are provided
    • Use SYN scanner if necessary
  • Ping hosts using:

    • TCP
    • ARP
    • ICMP (2 retries)

Custom

All defaults

Vulnerabilities
Basic Network Scan Port scan (common ports) (default)
  • General Settings:

    • Always test the local Nessus host
    • Use fast network discovery
  • Port Scanner Settings:
    • Scan common ports
    • Use netstat if credentials are provided
    • Use SYN scanner if necessary
  • Ping hosts using:

    • TCP
    • ARP
    • ICMP (2 retries)

Port scan (all ports)
  • General Settings:

    • Always test the local Nessus host
    • Use fast network discovery
  • Port Scanner Settings:
    • Scan all ports (1-65535)
    • Use netstat if credentials are provided
    • Use SYN scanner if necessary
  • Ping hosts using:

    • TCP
    • ARP
    • ICMP (2 retries)

  • Use fast network discovery
  • Use fast network discovery
  • Advanced Scan All defaults
    Advanced Dynamic Scan All defaults
    Malware Scan Host enumeration (default)
    • General Settings:

      • Always test the local Nessus host
      • Use fast network discovery
    • Ping hosts using:

      • TCP
      • ARP
      • ICMP (2 retries)

    Host enumeration (include fragile hosts)
    • General Settings:

      • Always test the local Nessus host
      • Use fast network discovery
    • Ping hosts using:

      • TCP
      • ARP
      • ICMP (2 retries)

    • Scan all devices, including:

      • Printers
      • Novell Netware hosts

    Custom

    All defaults

    Mobile Device Scan
    Web Application Tests Port scan (common ports) (default)
    • General Settings:

      • Always test the local Nessus host
      • Use fast network discovery
    • Port Scanner Settings:
      • Scan common ports
      • Use netstat if credentials are provided
      • Use SYN scanner if necessary
    • Ping hosts using:

      • TCP
      • ARP
      • ICMP (2 retries)

    Port scan (all ports)
    • General Settings:

      • Always test the local Nessus host
      • Use fast network discovery
    • Port Scanner Settings:
      • Scan all ports (1-65535)
      • Use netstat if credentials are provided
      • Use SYN scanner if necessary
    • Ping hosts using:

      • TCP
      • ARP
      • ICMP (2 retries)

    Custom

    All defaults

    Credentialed Patch Audit Port scan (common ports) (default)
    • General Settings:

      • Always test the local Nessus host
      • Use fast network discovery
    • Port Scanner Settings:
      • Scan common ports
      • Use netstat if credentials are provided
      • Use SYN scanner if necessary
    • Ping hosts using:

      • TCP
      • ARP
      • ICMP (2 retries)

    Port scan (all ports)
    • General Settings:

      • Always test the local Nessus host
      • Use fast network discovery
    • Port Scanner Settings:
      • Scan all ports (1-65535)
      • Use netstat if credentials are provided
      • Use SYN scanner if necessary
    • Ping hosts using:

      • TCP
      • ARP
      • ICMP (2 retries)

    Custom

    All defaults

    Badlock Detection Normal (default)
    • General Settings:

      • Ping the remote host
      • Always test the local Nessus host
      • Use fast network discovery
    • Service Discovery Settings:

      • Scan the default Nessus port range
      • Detect SSL/TLS on ports where it is commonly used
    Quick
    • General Settings:

      • Ping the remote host
      • Always test the local Nessus host
      • Use fast network discovery
    • Service Discovery Settings:

      • Scan TCP ports 23, 25, 80, and 443
      • Detect SSL/TLS on ports where it is commonly used
    Thorough
    • General Settings:

      • Ping the remote host
      • Always test the local Nessus host
      • Use fast network discovery
    • Service Discovery Settings:

      • Scan all TCP ports
      • Detect SSL on all open ports
    Custom

    All defaults

    Bash Shellshock Detection Normal (default)
    • General Settings:

      • Ping the remote host
      • Always test the local Nessus host
      • Use fast network discovery
    • Service Discovery Settings:

      • Scan the default Nessus port range
      • Detect SSL/TLS on ports where it is commonly used
    • Scan all devices, including:

      • Printers
      • Novell Netware hosts

    Quick
    • General Settings:

      • Ping the remote host
      • Always test the local Nessus host
      • Use fast network discovery
    • Service Discovery Settings:

      • Scan TCP ports 23, 25, 80, and 443
      • Detect SSL/TLS on ports where it is commonly used
    • Scan all devices, including:

      • Printers
      • Novell Netware hosts

    Thorough
    • General Settings:

      • Ping the remote host
      • Always test the local Nessus host
      • Use fast network discovery
    • Service Discovery Settings:

      • Scan all TCP ports
      • Detect SSL on all open ports
    • Scan all devices, including:

      • Printers
      • Novell Netware hosts

    Custom

    All defaults

    DROWN Detection Normal (default)
    • General Settings:

      • Ping the remote host
      • Always test the local Nessus host
      • Use fast network discovery
    • Service Discovery Settings:

      • Scan the default Nessus port range
      • Detect SSL/TLS on ports where it is commonly used
    Quick
    • General Settings:

      • Ping the remote host
      • Always test the local Nessus host
      • Use fast network discovery
    • Service Discovery Settings:

      • Scan TCP ports 23, 25, 80, and 443
      • Detect SSL/TLS on ports where it is commonly used
    Thorough
    • General Settings:

      • Ping the remote host
      • Always test the local Nessus host
      • Use fast network discovery
    • Service Discovery Settings:

      • Scan all TCP ports
      • Detect SSL on all open ports
    Custom

    All defaults

    Intel AMT Security Bypass Normal (default)
    • General Settings:

      • Ping the remote host
      • Always test the local Nessus host
      • Use fast network discovery
    • Service Discovery Settings:

      • Scan the default Nessus port range
      • Detect SSL/TLS on ports where it is commonly used
    Quick
    • General Settings:

      • Ping the remote host
      • Always test the local Nessus host
      • Use fast network discovery
    • Service Discovery Settings:

      • Scan TCP ports 16992, 16993, 623, 80, and 443
      • Detect SSL/TLS on ports where it is commonly used
    Thorough
    • General Settings:

      • Ping the remote host
      • Always test the local Nessus host
      • Use fast network discovery
    • Service Discovery Settings:

      • Scan all TCP ports
      • Detect SSL on all open ports
    Custom

    All defaults

    Shadow Brokers Scan Normal (default)
    • General Settings:

      • Ping the remote host
      • Always test the local Nessus host
      • Use fast network discovery
    • Service Discovery Settings:

      • Scan the default Nessus port range
      • Detect SSL/TLS on ports where it is commonly used
    • Scan all devices, including:

      • Printers
      • Novell Netware hosts

    Thorough
    • General Settings:

      • Ping the remote host
      • Always test the local Nessus host
      • Use fast network discovery
    • Service Discovery Settings:

      • Scan all TCP ports
      • Detect SSL on all open ports
    • Scan all devices, including:

      • Printers
      • Novell Netware hosts

    Custom

    All defaults

    Spectre and Meltdown Normal (default)
    • General Settings:

      • Ping the remote host
      • Always test the local Nessus host
      • Use fast network discovery
    • Service Discovery Settings:

      • Scan the default Nessus port range
      • Detect SSL/TLS on ports where it is commonly used
    Thorough
    • General Settings:

      • Ping the remote host
      • Always test the local Nessus host
      • Use fast network discovery
    • Service Discovery Settings:

      • Scan all TCP ports
      • Detect SSL on all open ports
    Custom

    All defaults

    WannaCry Ransomware Normal (default)
    • General Settings:

      • Ping the remote host
      • Always test the local Nessus host
      • Use fast network discovery
    • Service Discovery Settings:

      • Scan the default Nessus port range
      • Detect SSL/TLS on ports where it is commonly used
    Quick
    • General Settings:

      • Ping the remote host
      • Always test the local Nessus host
      • Use fast network discovery
    • Service Discovery Settings:

      • Scan TCP ports 139 and 445
      • Detect SSL/TLS on ports where it is commonly used
    Thorough
    • General Settings:

      • Ping the remote host
      • Always test the local Nessus host
      • Use fast network discovery
    • Service Discovery Settings:

      • Scan all TCP ports
      • Detect SSL on all open ports
    Custom

    All defaults

    Log4Shell Normal
    • General Settings:

      • Ping the remote host

      • Always test the local Tenable Nessus host

      • Use fast network discovery

    • Service Discovery Settings:

      • Scan the default Tenable Nessus port range

      • Detect SSL/TLS on ports where it is commonly used

    • Do not scan fragile devices.

    Quick
    • General Settings:

      • Ping the remote host

      • Always test the local Tenable Nessus host

      • Use fast network discovery

    • Service Discovery Settings:

      • Scan TCP ports 80 and 443

      • Detect SSL/TLS on ports where it is commonly used

    • Do not scan fragile devices.

    Thorough (default)
    • General Settings:

      • Ping the remote host

      • Always test the local Tenable Nessus host

      • Use fast network discovery

    • Service Discovery Settings:

      • Scan all TCP ports

      • Detect SSL on all open ports

    • Do not scan fragile devices.

    Custom

    All defaults

    Log4Shell Remote Checks Normal (default)
    • General Settings:

      • Ping the remote host

      • Always test the local Tenable Nessus host

      • Use fast network discovery

    • Service Discovery Settings:

      • Scan the default Tenable Nessus port range

      • Detect SSL/TLS on ports where it is commonly used

    • Do not scan fragile devices.

    Quick
    • General Settings:

      • Ping the remote host

      • Always test the local Tenable Nessus host

      • Use fast network discovery

    • Service Discovery Settings:

      • Scan TCP ports 80 and 443

      • Detect SSL/TLS on ports where it is commonly used

    • Do not scan fragile devices.

    Thorough
    • General Settings:

      • Ping the remote host

      • Always test the local Tenable Nessus host

      • Use fast network discovery

    • Service Discovery Settings:

      • Scan all TCP ports

      • Detect SSL on all open ports

    • Do not scan fragile devices.

    Custom

    All defaults

    Log4Shell Vulnerability Ecosystem Normal
    • General Settings:

      • Ping the remote host

      • Always test the local Tenable Nessus host

      • Use fast network discovery

    • Service Discovery Settings:

      • Scan the default Tenable Nessus port range

      • Detect SSL/TLS on ports where it is commonly used

    • Do not scan fragile devices.

    Quick
    • General Settings:

      • Ping the remote host

      • Always test the local Tenable Nessus host

      • Use fast network discovery

    • Service Discovery Settings:

      • Scan TCP ports 80 and 443

      • Detect SSL/TLS on ports where it is commonly used

    • Do not scan fragile devices.

    Thorough (default)
    • General Settings:

      • Ping the remote host

      • Always test the local Tenable Nessus host

      • Use fast network discovery

    • Service Discovery Settings:

      • Scan all TCP ports

      • Detect SSL on all open ports

    • Do not scan fragile devices.

    Custom

    All defaults

    Compliance
    Audit Cloud Infrastructure
    Internal PCI Network Scan Port scan (common ports) (default)
    • General Settings:

      • Always test the local Nessus host
      • Use fast network discovery
    • Port Scanner Settings:
      • Scan common ports
      • Use netstat if credentials are provided
      • Use SYN scanner if necessary
    • Ping hosts using:

      • TCP
      • ARP
      • ICMP (2 retries)

    Port scan (all ports)
    • General Settings:

      • Always test the local Nessus host
      • Use fast network discovery
    • Port Scanner Settings:
      • Scan all ports (1-65535)
      • Use netstat if credentials are provided
      • Use SYN scanner if necessary
    • Ping hosts using:

      • TCP
      • ARP
      • ICMP (2 retries)

    Custom

    All defaults

    MDM Config Audit
    Offline Config Audit
    PCI Quarterly External Scan Scan unresponsive hosts default
    Policy Compliance Auditing Default (default)
    • General Settings:

      • Ping the remote host
      • Always test the local Nessus host
    • Scan all devices, including:

      • Printers
      • Novell Netware hosts

    Custom

    All defaults

    SCAP and OVAL Auditing Host enumeration (default)
    • General Settings:

      • Always test the local Nessus host
      • Use fast network discovery
    • Ping hosts using:

      • TCP
      • ARP
      • ICMP (2 retries)

    Custom

    All defaults