环境:
KALI 2022
Nessus 10.3.0
问题描述:
Kali2022 如何安装Nessus 10.3.0
解决方案:
1.Kali里面用浏览器前往官网下载Nessus
https://www.tenable.com/downloads/nessus
2.打开文件所在文件夹,在里面打开终端
dpkg -i Nessus-10.3.0-debian9_amd64.deb──(root㉿kali)-[/tmp/mozilla_root0]
└─# dpkg -i Nessus-10.3.0-debian9_amd64.deb
正在选中未选择的软件包 nessus。
(正在读取数据库 ... 系统当前共安装有 298561 个文件和目录。)
准备解压 Nessus-10.3.0-debian9_amd64.deb ...
正在解压 nessus (10.3.0) ...
正在设置 nessus (10.3.0) ...
Unpacking Nessus Scanner Core Components...
- You can start Nessus Scanner by typing /bin/systemctl start nessusd.service
- Then go to https://kali:8834/ to configure your scanner3.启动服务
/bin/systemctl start nessusd.service4.查看本机ip
ip a
5.浏览器访问https://本机ip:8834
6.选择Managed Scanner→Managed by Tenable.sc,点击 Continue,
输入用户名和密码,进入页面后是没有scan的,然后退出nessus。
7.获取激活密钥Challenge code
/opt/nessus/sbin/nessuscli fetch --challenge──(root㉿kali)-[/tmp/mozilla_root0]
└─# /opt/nessus/sbin/nessuscli fetch --challenge
Challenge code: 50c77787aaa965656565www05eb858e95b1
You can copy the challenge code above and paste it alongside your
Activation Code at:
https://plugins.nessus.org/v2/offline.php8.访问网址https://zh-cn.tenable.com/products/nessus/nessus-essentials,填写信息,通过邮箱获得activation code(这个code只能用一次)
9.进入邮箱找到激活码
10.访问网址https://plugins.nessus.org/v2/offline.php,将上述challeng code和activation code依次填入
11.访问下面地址,下载all-2.0.tar.gz,然后复制下面的license,begin开始全复制
12.将两个文件放在/opt/nessus下
13.执行更新操作
/opt/nessus/sbin/nessuscli update all-2.0.tar.gz
/opt/nessus/sbin/nessuscli fetch --register-offline license记住version后面的数字
202209291936
14.重启服务,再次打开nessus登录页面,确认插件编译完成后,出现登录框,进入页面。此时nessus已经可以使用了,但是一次只能使用16个ip进行扫描(如果无需破解,完成此步骤即可)
service nessusd restart
15.如果以上无法创建账户,就进入/opt/nessus/sbin目录下使用./nessuscli adduser 用户名命令进行添加
──(root㉿kali)-[/opt/nessus/sbin]
└─# ./nessuscli adduser admin
Login password:
Login password (again):
Do you want this user to be a Nessus 'system administrator' user (can upload plugins, etc.)? (y/n) [n]: y
User rules
----------
nessusd has a rules system which allows you to restrict the hosts
that admin has the right to test. For instance, you may want
him to be able to scan his own host only.
Please see the Nessus Command Line Reference for the rules syntax
Enter the rules for this user, and enter a BLANK LINE once you are done :
(the user can have an empty rules set)
16.然后重启nessus服务,再访问网页就直接进入填写用户名密码的界面而不是初始化界面了,用前面账户登入
service nessusd restart
成功登入
17.依次点击new scans -->Advanced Scan,如果此时Plugins下有很多插件,说明安装成功了
18.破解(之前的方法是在/opt/nessus/lib/nessus/plugins目录下和/opt/nessus/var/nessus目录下分别修改plugin_feed_info.inc文件,但是这个方法在重新启动nessus后会发现插件全部消失了,这里使用了另一个方法,但是会麻烦一点)。退出nessus,在/opt/nessus/var/nessus目录下修改plugin_feed_info.inc文件。在/opt/nessus/lib/nessus/plugins目录下删除plugin_feed_info.inc文件,plugin_feed_info.inc内容修改如下
PLUGIN_SET =202102012215;#这边的数字是第7步时version后面的数字
PLUGIN_FEED = “ProfessionalFeed (Direct)”;
PLUGIN_FEED_TRANSPORT = “Tenable Network Security Lightning”;19.重启nessus,重新打开nessus页面,即可看到破解成功(打开后如果发现没有成功,重复第9步即可),此时可以看到变成了unlimited
service nessusd restart20.检查系统开机自启动,如果服务是自启动,将其关掉(在kali中是没有自启动的)
sudo sysv-rc-conf --list #查看开启自启动列表
sudo systemctl disable nessusd.service #禁用开机自启动21.在每次启动nessusd服务之前都要先删除/opt/nessus/lib/nessus/plugins目录下的plugin_feed_info.inc文件,然后再启动,否则打开后所有的插件就会全部消失。如果不小心没有删除文件,则将两个plugin_feed_info.inc文件都删掉,从第7步开始重新弄即可。
rm /opt/nessus/lib/nessus/plugins/plugin_feed_info.inc
service nessusd start #开启服务
https://localhost:8834/开始扫描任务
扫描完成
查看漏洞 信息
