Nessus Cloud is a simplified and powerful tool for Information Security Professionals and has many scanning options as listed below:
- Windows Malware Scan
- Web Application Tests
- SCAP and OVAL Auditing
- Basic Network Scan
- Mobile Device Scan
There are a few more but in this post I wanted to talk about the ‘Audit Cloud Infrastructure‘ option which is recently added and tests different cloud platforms for compliance and security mis-configurations. The cloud platforms which can be tested currently for any compliance issues are:
- Amazon AWS
- Microsoft Azure
- Rackspace
- Salesforce
Its very difficult to test cloud services for security vulnerabilities because of the restrictions and privileges, but that does not mean that everything is safe and secure. Its always good to keep a check on everything in terms of compliance, security and best practices.
Auditing the Cloud with Nessus
Official Website Link for more info and start a 14 days trial: http://www.tenable.com/products/nessus/nessus-cloud