A recent Nessus update added some functionality that was missing ever since the 4.2 upgrade — the ability to save a scan template. I’ve had enough Bandolier users ask me about this to make it worth mentioning here.
Basically, with the new 4.2 UI, there was no way to save a scan. Policies and of course the reports were saved but the part that says which IPs or hostnames to scan with which policy had to be entered each time you wanted to perform a scan. Some people thought it was a marketing move to push people to the more enterprise-class Security Center product but thankfully a quick conversation with the Tenable folks dispelled that myth.
It’s been out for a couple weeks but you may not have noticed the new drop-down on the scan menu where you can choose a type value of “Run Now” or “Template”. Save the scan as a template and you’ll be able to reuse it as often as you need to. This is especially convenient if you run a routine Bandolier audit of your control system servers. If you don’t see the scan template feature yet, you can force an update using nessus-update-plugins command.
Another promised feature is the ability to share a scan template between Nessus users like you can with policies. It’s not there yet but hopefully will be in a future release soon.