Nessus 号称是"世界上最流行的漏洞扫描程序,全世界超过75,000个组织在使用它".尽管这个扫描程序可以免费下载得到,但是要从Tenable Network Security更新到所有最新的威胁信息,每年的直接订购费用是$1,200.Linux, FreeBSD, Solaris, Mac OS X和Windows下都可以使用 Nessus.
实验环境
centos6.8_x64
实验软件
Nessus-6.10.5-es6.x86_64.rpm
软件安装
rpm -ivh Nessus-6.10.5-es6.x86_64.rpm
/opt/nessus/sbin/nessuscli adduser admin 用户名自定义 密码自行设置
/opt/nessus/sbin/nessuscli chpasswd admin 修改用户密码
<a href="https://s1.51cto.com/wyfs02/M01/91/EA/wKiom1j5bvmRRYkRAADUKu66Aaw617.png-wh_500x0-wm_3-wmp_4-s_2125298079.png" target="_blank"></a>
<a href="https://s1.51cto.com/wyfs02/M02/91/EA/wKiom1j5bvqjkZQ1AAEvY8Xw4iU363.png-wh_500x0-wm_3-wmp_4-s_153910278.png" target="_blank"></a>
<a href="https://s2.51cto.com/wyfs02/M00/91/E9/wKioL1j5b8LibytbAAICrDBuC2M038.png-wh_500x0-wm_3-wmp_4-s_541486701.png" target="_blank"></a>
name 可以自定义 email 必须是https开头的邮箱 (gmail yahoo均可)
/opt/nessus/sbin/nessuscli fetch --register 软件激活码
/opt/nessus/sbin/nessusd &
netstat -tuplna | grep nessusd
tcp 0 0 0.0.0.0:8834 0.0.0.0:* LISTEN 9437/nessusd
tcp 1 0 172.17.52.230:44922 54.255.254.4:443 CLOSE_WAIT 9437/nessusd
ps -aux | grep nessusd
Warning: bad syntax, perhaps a bogus '-'? See /usr/share/doc/procps-3.2.8/FAQ
root 9437 29.4 2.1 605624 351576 pts/0 Sl 09:36 12:59 nessusd -q
root 9991 2.8 0.8 2335356 146668 ? Sl 09:57 0:39 /opt/nessus/sbin/nessusd
root 10244 0.0 0.0 103256 892 pts/0 S+ 10:20 0:00 grep nessusd
<a href="https://47.93.50.181:8834/#/" target="_blank">https://服务器IP:8834/#/</a>
<a href="https://s5.51cto.com/wyfs02/M00/91/E9/wKioL1j5cGXgRESSAACNOTBjnlo571.png-wh_500x0-wm_3-wmp_4-s_1652661269.png" target="_blank"></a>
<a href="https://s2.51cto.com/wyfs02/M02/91/EA/wKiom1j5cRXD2MvUAAB4pT1ms5E401.png-wh_500x0-wm_3-wmp_4-s_646234553.png" target="_blank"></a>
本文转自 mailfile 51CTO博客,原文链接:http://blog.51cto.com/mailfile/1917999,如需转载请自行联系原作者