Scan Policy Templates

Tenable.sc provides scan policy templates with pre-configured plugin settings and advanced directives for active scans. You can configure a Tenable-provided template or you can create a fully customized scan policy from all of the available scan policy options in Tenable.sc.

Each Tenable-provided scan policy template contains a different set of scan policy options. You can only modify the settings included for that scan policy template type.

Custom scan policies, such as Advanced Scan, contain all scan policy options. You can modify any scan policy options for custom scans.

For more information, see Scan Policies and Scan Policy Options.

Template Description
Template

Host Discovery

Performs a simple scan to discover live hosts and open ports.

Basic Network Scan

Performs a full system scan that is suitable for any host. For example, you could use this template to perform an internal vulnerability scan on your organization's systems.

Credentialed Patch Audit

Authenticates hosts and enumerates missing updates.

Web Application Tests

Scan for published and unknown web vulnerabilities.

Malware Scan

Scans for malware on Windows and Unix systems.

Policy Compliance Auditing

Audits system configurations against a known baseline.

Internal PCI Network Scan

Performs an internal PCI DSS (11.2.1) vulnerability scan.

SCAP and OVAL Auditing

Audits systems using SCAP and OVAL definitions.

Bash Shellshock Detection

Performs remote and local checks for CVE-2014-6271 and CVE-2014-7169.

GHOST (glibc) Detection

Performs local checks to detect vulnerabilities related to CVE-2015-0235.

PCI Quarterly External Scan

Performs quarterly external scans as required by PCI.

DROWN Detection

Performs remote checks for CVE-2016-0800.

Badlock Detection

Performs remote and local checks for CVE-2016-2118 and CVE-2016-0128.

Intel AMT Security Bypass Detection

Performs remote and local checks for CVE-2017-5689.

WannaCry Ransomeware Detection

Scans for the WannaCry ransomware (MS17-010).

Shadow Brokers Scan

Scans for vulnerabilities disclosed in the Shadow Brokers leaks.

Spectre and Meltdown Detection

Performs remote and local checks for CVE-2017-5753, CVE-2017-5715, and CVE-2017-5754.

Zerologon Remote Scan

Detects Microsoft Netlogon elevation of privilege vulnerability (Zerologon).

Solarigate

Detects SolarWinds Solorigate vulnerabilities using remote and local checks.

2020 Threat Landscape Restrospective (TLR)

Detects vulnerabilities featured in Tenable's 2020 Threat Landscape Retrospective report.

2021 Threat Landscape Restrospective (TLR)

Detects vulnerabilities featured in Tenable's 2021 Threat Landscape Retrospective report.

ProxyLogon: MS Exchange

Performs remote and local checks to detect Microsoft Exchange Server vulnerabilities related to CVE-2021-26855, CVE-2021-26857, CVE-2021-26858, and CVE-2021-27065.

PrintNightmare

Performs local checks for CVE-2021-34527, the PrintNightmare Windows Print Spooler vulnerability.

Active Directory Starter Scan

Scans for misconfigurations in Active Directory.

Note: Active Directory Starter Scans require ADSI credentials. For more information, see Miscellaneous.

Log4Shell

Detects the Log4Shell vulnerability (CVE-2021-44228) in Apache Log4j via local checks.

Log4Shell Remote Checks

Detects the Log4Shell vulnerability (CVE-2021-44228) in Apache Log4j via remote checks.

Log4Shell Vulnerability Ecosystm

Detects the Log4Shell vulnerability (CVE-2021-44228) in Apache Log4j via local and remote checks. This template is dynamic and is regularly updated with new plugins as third-party vendors patch their software.

Custom
Advanced Scan

An scan without any recommendations, so that you can fully customize the scan settings.