https://orcid.org/0000-0002-9097-2246
1. Nessus is a proprietary comprehensive vulnerability scanner which is developed by Tenable Network Security. It is free of charge for personal use in a non-enterprise environment and is the world's most popular vulnerability scanner, taking first place in the 2000, 2003, and 2006 security tools survey.Nessus allows scans for the following types of vulnerabilities:
- Vulnerabilities that allow a remote hacker to control or access sensitive data on a system.
- Misconfiguration (e.g. open mail relay, missing patches, etc.).
- Default passwords, a few common passwords, and blank/absent passwords on some system accounts. Nessus can also call Hydra (an external tool) to launch a dictionary attack.
- Default passwords, a few common passwords, and blank/absent passwords on some system accounts. Nessus can also call Hydra (an external tool) to launch a dictionary attack.
- Denials of service against the TCP/IP stack by using mangled packets
- Preparation for PCI DSS audits
- Preparation for PCI DSS audits
2. This post brings you screenshots for installing Nessus in Kali Linux for home users that's the free edition I am using here :
Firstly after installing Nessus from the site,Obtain the activation code for Nessus by registering at
http://www.nessus.org/products/nessus/nessus-plugins/obtain-an-activation-code
Secondly Activate Nessus by executing the following command:
/opt/nessus/bin/nessus-fetch --register S56X-XXXX-XXXX-XXXX-4122
Where S56X-XXXX-XXXX-XXXX-4122 should be your activation code received vide registered email.
Create a user account for the Nessus web interface:
/opt/nessus/sbin/nessus-adduser
To start the Nessus server, we simply invoke the following command:
/etc/init.d/nessusd start
0 comments:
Post a Comment