Tenable Vulnerabiltity Management Scanning Custom Ports

​ @vivekvardhan4757 asked if there is a away to scan a particular port rather than all ports in @Tenable Vulnerability Management. The answer is yes.

Specifies the range of ports to be scanned.

The supported ranges are:

default — Instructs the scanner to scan approximately 4,790 commonly used ports specified in the nessus-services file. You can also combine the default keyword with other ports and port ranges.

Note: You can convert the nessus-services file to a custom list of ports by performing four consecutive regular expression (regex) replace-all operations in a text editor that supports such operations:

.*\s+(\d+)\/(tcp|udp)(\r\n|\r|\n) to $1\/$2,

(\d+)\/(tcp|udp) to $2:$1

tcp to T

udp to U

You can find the nessus-services file in the following directories, depending on your operating system:

Linux — /opt/nessus/var/nessus/nessus-services

Windows — C:\ProgramData\Tenable\Nessus\nessus\nessus-services

macOS — /Library/Nessus/run/var/nessus/nessus-services

all — Instructs the scanner to scan all 65,536 ports, including port 0. You cannot combine the all keyword with other ranges.
A comma-separated list of ports (for example, 21,23,25,80,110), port ranges (for example, 1-1024,9000-9200 or 1-65535 to scan all ports but 0 and T:1-1024,U:300-500 or 1-1024,T:1024-65535,U:1025 to scan separate or overlapping TCP and UDP port ranges), or combinations thereof.

If you disable the UDP, SYN, or TCP port scanner settings in the scan policy Discovery settings, those ports are not scanned despite what range of ports you specify. The UDP and TCP port scanner settings are disabled by default; the SYN port scanner setting is enabled by default.