How To

Installation and Use of Nessus in Vulnerability Scanning

It’s been said a million times before: security scanning tools are a necessity for pen-testing, information gathering, and sometimes general computer use. When fulfilled, a security scanner can give you a head start on upgrading your security applications.

For Linux based users, the installation is simple:
  1. (sudo) dpkg –install Nessus-4.4.1-debian5_i386.deb (example version – check for most recent)
  2. /opt/nessus/sbin/nessus-adduser (enter password if you’re not already root)
  3. Register your product & copy activation code when email is received
  4. /opt/nessus/bin/nessus-fetch –register CODEHERE
  5. /etc/init.d/nessusd start
  6. Type in your browser: https://127.0.0.1:8834/
  7. Login and follow installation prompts
Key features of Nessus (courtesy of Infosec Institute) include:
  • Identifies vulnerabilities that allow a remote attacker to access sensitive information from the system
  • Checks whether the systems in the network have the latest software patches
  • Tries with default passwords, common passwords, on systems account
  • Configuration audits
  • Vulnerability analysis
  • Mobile device audits
  • Customized reporting
To Top

Pin It on Pinterest

Share This