1.下载Nessus
2.安装
dpkg -iNessus-8.15.2-debian6_amd64.deb
3.启动Nessus
/bin/systemctl start nessusd.service
4.操作过程
- 浏览器访问https://Kali名称:8834或者https://127.0.0.1:8834或https://localhost:8834/
- 选择Managed Scanner然后Continue
- 选择Tenable.sc然后Continue
- 设置登录Nessus账号密码
- 安装完成后界⾯如下,尚未激活,不能扫描,此时只有⼀个设置按钮,并⽆扫描按钮
4 .下载Nessus pro插件并更新
sudo /opt/nessus/sbin/nessuscli update all-2.0-20211012.tar.gz
5.重启Nessus服务
/bin/systemctl stop nessusd.service
/bin/systemctl start nessusd.service
6.获取当前plugins的版本。
- 打开如下的页面,并记录下版本号。
- https://plugins.nessus.org/v2/plugins.php
- 停止nessus服务
- 创建 plugin_feed_info.inc
- vim plugin_feed_info.inc
PLUGIN_SET = "202110230408"; PLUGIN_FEED = "ProfessionalFeed (Direct)"; PLUGIN_FEED_TRANSPORT = "Tenable Network Security Lightning"
- vim plugin_feed_info.inc
新版本的Nessus会对plugin_feed_info.inc的信息进行对比,发现plugin_feed_info.inc信息不一致时,会删除/opt/nessus/lib/nessus/plugins/下的插件。
将plugin_feed_info.inc替换
/opt/nessus/var/nessus/plugin_feed_info.inc
/opt/nessus/lib/nessus/plugins/plugin_feed_info.inc 两个文件。
#sudo cp plugin_feed_info.inc /opt/nessus/lib/nessus/plugins/
#sudo cp plugin_feed_info.inc /opt/nessus/var/nessus/
- 启动nessus
#sudo service nessus