Welcome to Nessus Network Monitor

Last Updated: April 06, 2020

This user guide describes the Tenable® Nessus Network Monitor® 5.11.x (Patent 7,761,918 B2) architecture, installation, operation, and integration with Tenable.sc, Industrial Security, and Tenable.io, and export of data to third parties. Please email any comments and suggestions to [email protected].

Tip: If you are new to NNM, see the Workflow.

Passive vulnerability scanning is the process of monitoring network traffic at the packet layer to determine topology, clients, applications, and related security issues. NNM also profiles traffic and detects compromised systems.

NNM can:

  • Detect when systems are compromised with application intrusion detection.

  • Highlight all interactive and encrypted network sessions.

  • Detect when new hosts are added to a network.

  • Track which systems are communicating on which ports.

  • Detect which ports are served and which are browsed by each system.

  • Detect the number of hops to each monitored host.

Note: For security purposes, Tenable® does not recommend configuring NNM as internet facing software.