官网下载地址:https://www.tenable.com/downloads/nessus?loginAttempted=true
rpm -ivh Nessus-8.10.1-es7.x86_64.rpm
systemctl start nessusd.service
firewall-cmd --zone=public --add-port=8834/tcp --permanent #开启Nessus8834端口
firewall-cmd --reload #重启防火墙
在浏览器中访问https://IP:8834,一定要加https,不然会出现400 Bad Request.
选择Managed Scanner→Managed by Tenable.sc
现在会要求创建账号,自己设置账号密码!
等待初始化完成,初始化完成之后是没有扫描界面的,需要获取插件包.
现在先去https://zh-cn.tenable.com/products/nessus/nessus-essentials,注册一个账户,姓名东西随便填,邮箱一定要是能够收到邮件的,需要用来接收激活码,可以在网上搜索临时邮箱!
有了激活码之后需要challenge code
/opt/nessus/sbin/nessuscli fetch --challenge
访问输出的网址https://plugins.nessus.org/v2/offline.php,把challenge code填入第一个框,激活码填入第二个框:
激活成功后会返回一个更新包的下载链接,通过链接下载最新版的插件包.
下载完成后执行
/opt/nessus/sbin/nessuscli update all-2.0.tar.gz
vi plugin_feed_info.inc
------------------------------------------------------------------------------------------------------
find / -name plugin_feed_info.inc
/opt/nessus/var/nessus/plugin_feed_info.inc
/opt/nessus/lib/nessus/plugins/plugin_feed_info.inc
systemctl stop nessusd.service
备份插件 /opt/nessus/lib/nessus/plugins/
cp -r plugins/ plugins_bak
替换/opt/nessus/var/nessus/plugin_feed_info.inc、/opt/nessus/lib/nessus/plugins/plugin_feed_info.inc两个文件
cp plugin_feed_info.inc /opt/nessus/var/nessus/plugin_feed_info.inc
cp plugin_feed_info.inc /opt/nessus/lib/nessus/plugins/plugin_feed_info.inc
启动nessus
systemctl start nessusd.service
完成后,发现设置页面没有变化,但/opt/nessus/lib/nessus/plugins/目录下的插件不见了。
systemctl stop nessusd.service
将备份插件目录/opt/nessus/lib/nessus/plugins/还原
cp -r plugins_bak/ plugins
cp plugin_feed_info.inc /opt/nessus/lib/nessus/plugins/
cp plugin_feed_info.inc /opt/nessus/var/nessus/
systemctl start nessusd.service
再次初始化。
