Testing and Inspection

Nessus

Nessus is a widely-used vulnerability scanner developed by Tenable that identifies security weaknesses, misconfigurations, and compliance issues in networks, systems, and applications. It performs automated scans to detect vulnerabilities such as missing patches, default passwords, and open ports, generating detailed reports with risk assessments and remediation guidance. Primarily used by security professionals, it helps organizations proactively manage and mitigate security risks in IT environments.

Also known as: Tenable Nessus, Nessus Scanner, Nessus Professional, Nessus Essentials, Nessus Vulnerability Scanner
🧊Why learn Nessus?

Developers and security teams should learn Nessus to integrate vulnerability management into DevOps pipelines (DevSecOps), ensuring applications and infrastructure are secure before deployment. It is essential for roles like penetration testers, security analysts, and system administrators to conduct regular security assessments, meet compliance standards (e.g., PCI DSS, HIPAA), and prioritize fixes based on severity scores. Use cases include pre-production scanning, incident response investigations, and auditing cloud or on-premises assets for vulnerabilities.

See how it ranks →

Compare Nessus

Nessus vs Openvas→Nessus vs Qualys→Nessus vs Nexpose→

Learning Resources

📄
Nessus Documentation
docs
→
🎓
Nessus Fundamentals Course on Tenable University
course
→
🎬
Nessus Tutorial for Beginners on YouTube
video
→
📚
Mastering Nessus for Penetration Testing Book
book
→

Related Tools

Vulnerability ManagementPenetration TestingNetwork SecurityCompliance AuditingDevsecops

Alternatives to Nessus

OpenvasQualysNexpose

Other Testing and Inspection

View all →
.env
.env is a file format and tool used to store environment variables, which are key-value pairs that configure application settings like API keys, database URLs, and other sensitive or environment-specific data. It allows developers to separate configuration from code, making applications more secure and portable across different environments (e.g., development, testing, production). Tools like dotenv in Node.js or python-dotenv in Python parse .env files to load these variables into the application's environment at runtime.
.htaccess
.htaccess (Hypertext Access) is a configuration file used on Apache web servers to control directory-level settings, such as URL redirection, access control, and performance optimizations. It allows developers to override global server configurations for specific directories without modifying the main server configuration files. This file is commonly used for tasks like password protection, custom error pages, and enabling features like mod_rewrite for URL manipulation.
.htaccess
.htaccess (Hypertext Access) is a configuration file used on Apache web servers to control directory-level settings, such as URL redirection, access control, and performance optimizations. It allows developers to override global server configurations for specific directories without modifying the main server configuration files. This file is commonly used for tasks like enabling HTTPS, blocking IP addresses, or setting custom error pages.
.htaccess Redirect
.htaccess redirect is a server-side configuration technique using the .htaccess file on Apache web servers to manage URL redirections, such as redirecting old URLs to new ones, enforcing HTTPS, or handling errors like 404 pages. It operates through directives like Redirect, RedirectMatch, and RewriteRule, allowing developers to control traffic flow without modifying server-wide settings. This method is essential for SEO, user experience, and maintaining link integrity during website migrations or updates.
.NET Interactive
.NET Interactive is an open-source tool that enables interactive programming experiences across multiple languages (C#, F#, PowerShell, SQL, HTML, JavaScript) within notebooks like Jupyter, Visual Studio Code, and Azure Data Studio. It allows developers to create and share executable documents that combine code, visualizations, and narrative text, facilitating data exploration, documentation, and teaching. The tool integrates with the .NET ecosystem, providing rich output capabilities and extensions for data science and machine learning workflows.
.NET Profiling Tools
.NET profiling tools are software utilities used to analyze the performance, memory usage, and behavior of .NET applications during execution. They help developers identify bottlenecks, memory leaks, and inefficiencies by collecting data on CPU usage, garbage collection, thread activity, and method execution times. These tools are essential for optimizing .NET applications to ensure they run efficiently and reliably in production environments.