Penetration Tests With Nessus (Chapter 1)

Sparker · March 8, 2019, 8:22pm

Hello everyone. Today I will write to you about " Nessus Vulnerability Scanner "

This is the first part of my wiriting about nessus in this section I will talk about simple scans and setup

Nessus Linux Installation

You should first download the appropriate for your system.

You can view the packages in this;

https://www.tenable.com/products/nessus/select-your-operating-system

I downloaded the debian package. Let’s go to setup

dpkg -i Nessus-7.0.0-debian6_amd64.deb

We got the activation code after opening Tenable membership. I then connected with the 8834 port scanner and entered the necessary information

Meanwhile I downloaded the " metasploitable 2 " virtual machine. Then started broadcasting with VirtualBox

For a short time IP Address for vulnerability researcher
Now right click on the new scan option.

We enter the target name and ip address bla.bla.bla.bla

This part asks if you want to do the scanning at the widespread ports or not.
We started scanning .

444

Continues to scan I will have a coffee Nessus gives more healthier result than its competitors.

I am using nessus with remote server because I do not have to wait for slow scans.

1212

000

In the second part we will explain how to exploit these vulnerabilities.

Thank you for reading

hoboscientist · March 8, 2019, 8:57pm

Good going. Look forward to the follow-up post.

tseug · March 25, 2019, 2:09pm

So a Basic Network Scan is pretty straight forward. It would be nice - if you know how - to see a few credentialed scans on various hosts (Windows and Linux) too.

pry0cc · March 25, 2019, 2:48pm

Also everybody, if you’d like a much easier way to scan for known vulnerabilities.

Use vulners!

   nmap -sV --script vulners <target>

Sparker · March 25, 2019, 3:02pm

This script is successful but has too much false positive

SouHaiL_JL · March 25, 2019, 6:33pm

looking forward for the second part

MaangoTaachyon · March 30, 2019, 11:39pm

Interesting, still not sure if I’d use Nessus on a single machine like the example you gave. If it was a network or something then I’d see the usefulness maybe in the next part you could elaborate more on that? Otherwise great job being descriptive!

TR99 · March 31, 2019, 3:11am

I feel like I have had this discussion before regarding when to use Nessus. Good tutorial though, will definitely have to have a play with it again.

Hacker007 · March 31, 2019, 12:37pm

Nice sharing! i keep to watching.

Sparker · March 31, 2019, 4:13pm

Hello everyone

At the end of this month I’m thinking of writing part 2. Stay on track

RedRose · April 23, 2019, 6:27pm

thank you so much . we expect more