![]() The default scan policy is not a bad choice unless you’re looking for something specific on your network. ![]() (I’ve selected localhost because I’m not on a network I’m permitted to scan). Once you’ve connected to the server, you can set the hosts and IP addresses to scan as well as how to scan them. This is usually localhost or Local Server, but not always. The GUI allows you to select what nessus server you connect to. Unless you know what you’re doing, I highly recommend using the GUI for running scans. If you’re only running nessus once in a while, it makes more sense to just download the feed. By default, nessus downloads the latest plug-in feed every 24 hours, but you can force it to download by using nessus-fetch or clicking on “update plug-ins”. deb files I’ve installed, nessus has installed a script to autostart the server. On Linux, it’s done with /opt/nessus/sbin/nessusd. On OS X, this is done through the Nessus Server Manager. The first thing to do is start the server if you haven’t already. ![]() The feeds are the same, so you’re not missing any scans. The screenshots here are shown in OS X with a slightly older version of the scanning engine because I get annoyed at having to re-register every upgrade, and the updates available in 4.0 aren’t worth it to me. ![]() On OS X and Windows, the registration is part of the installation. Once you’ve downloaded and installed nessusd, you’ll need to register it and start getting plug-in updates. The OS X and Windows versions come with the GUI, but if you want the GUI on Linux, you’ll have to download it separately. Once you’ve downloaded nessus, there are two parts, the server (nessusd) and the GUI interface. If you just want to test it out, there is a 15-day license that lets you use the HomeFeed in a commercial setting. Nessus is free for home use but not for commercial use, so make sure you get the appropriate license. You’ll need to register to get a one-time activation code. You can download nessus at for Windows, Mac OS X, Linux, and FreeBSD. The 2.0 source is still available, and OpenVAS has taken it and kept it open source. It began as an open source scanner, and then Tenable Security took the source code and created a fork of nessus after version 2.0. Nessus is a vulnerability scanner that has been around for a while and has a mottled history.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |