Welcome to the Tenable Network Security Podcast - Episode 6

Announcements

• New blog post going up today on the experiences at Cyberdawn, a cyber exercise that puts hackers against defenders in a realistic environment.
• Attention Security Center customers! A new version is due to be released soon, 3.4.5 will include improvements such as web application scanning support.
• We are looking for feedback on the new Nessus client version 4.2, so head on over to our Nessus discussion forums and let us know what you think!
• As always be sure to check out our blog at http://blog.tenablesecurity.com

Interview: John Lampe - Passive Vulnerability Scanning

• What is your background and how did you get starting in information security ?
• What is the primary product you work on here at Tenable?
• What does PVS do? Can you also give us some of the history behind it?
• How are the plugins structured? Are the easy to write? Can the end user look at the code? How are they updated?
• What is coming down the road for PVS?
• How does PVS differ from Snort?
• What kinds of client side vulnerabilities can be detected?
• How does PVS handle high speed networks?
• Can PVS detect vulnerabilities in web applications?
• What are some of the more interesting vulnerabilities that PVS can detect?

Interview: Tim Rosenburg - White Wolf Security

Tim joins us to talk about cyber exercises, what they are, how they are structured, and what the participants learn in these events.

Tenable Events

• Paul Asadoorian will be speaking at the Louisville Infosec conference on web application security on October 7, 2009
• Oct 15 - Ron Gula will be participating at the 2009 San Francisco CISO Executive Summit
• October 26-27 - Tenable will be at the Techno Forensics conference in githersburg, MD
• October 26-30 - 5th Annual IT Security Automation Conference in Baltimore, MD
• November 6-7 Dojocon