How to install Nessus essentials vulnerability scanner
Nessus is a free-ish open-source vulnerability scanner. You can find more information here: https://www.tenable.com/products/nessus
First, we will need to download a copy of Ubuntu 20.04.5. This will be the operating system that we will install, Nessus.
Ubuntu 20.04.5 LTS (Focal Fossa)
(https://releases.ubuntu.com/focal/)
Once you have the iso downloaded, create a VM with it. I’m just going
(Select the Ubuntu version we just downloaded) -> Next
Now, let’s configure our Network Adapter to Tech Subnet since that is where our web application lies.
Our Ubuntu installation will start
Make sure to install a snapshot and navigate to the Nessus download page.
Download Nessus
Download Nessus and Nessus Manager
https://www.tenable.com/downloads/nessus
Make sure to install the Linux - Ubuntu - amd64
Open the command prompt and go to downloads.
Then, what you can do is type sudo dpkg -i Nessus-10.4.1-ubuntu1404_amd64.deb
Once that is done installing, we can type: sudo systemctl start nessusd.service
To make sure Nessus is started, you can do the following command:
systemctl status nessusd.service
Now, we need to permit the default HTTPS web port for Nessus.
sudo ufw allow 8834/tcp
Now, let’s see what our IP for this VM.
|
|
Mine is 172.20.25.18
So to reach Nessus, we have to go to the following link:
https://172.20.25.18:8834/
We will reach this page:
We will install Nessus Essentials since it is free for educators, students, and hobbyists.
You will get the following, enter your name and email
You should get an activation code sent to you to your email. Input the activation code.
Create an account
Wait for the installation to be finished.
To make compiling faster, I will try to meet the system requirement. Let change the spec.
Guess we have to wait for it to be finished. Once it finishes, it should look something like this.
We have completed our installation portion.
Next part: https://securitynguyen.com/posts/scan-windows-10/