Before going further we better know in advance what it nesus?
Nessus is a proprietary comprehensive vulnerability scanning tool. It is free of charge for personal use in a non-enterprise environment. Its goal is to detect potential vulnerabilities on the tested systems. Tanable Network Security Announced the release of Nessus 4.2.0 last month. Nessus is now using a web-based interface to manage scans and their results. Scan results and policies are now stored on the server. Additionally you can now compare the current scan with "older" scans.
BackTrack is the most top rated linux live distribution focused on penetration testing. With no installation whatsoever, the analysis platform is started directly from the CD-Rom and is fully accessible within minutes. Currently BackTrack consists of more than 300 different up-to-date tools roomates are logically structured According to the work flow of security professionals. This event structure Allows Newcomers to find the related tools to a certain task to be accomplished. The software is available in version 4 as a "Pre Release" since June 2009. There have been many changes Introduced into BackTrack 4. The entire project is now based on Ubuntu. They now maintain their own full repositories with modified Ubuntu packages in addition to their own penetration testing tools. Another significant change is the updated kernel version, currently at 2.6.29.4. BackTrack 4 now contains a modified Ubiquity installer roomates Allows to install the distribution on a hard disk. Keeping BackTrack up to date is relatively simple by using the apt-get commands.
Here I will explain how to mengistall Nessus backtrack repository.
- The first thing to do is update the data from the repository to backtrack you.
Ign http://ppa.launchpad.net/gummi/gummi/ubuntu/ lucid/main Translation-en_US
Get:2 http://source.repository.backtrack-linux.org revolution Release.gpg [197B]
Get:3 http://32.repository.backtrack-linux.org revolution Release.gpg [197B]
---------------------------------------------
Get:26 http://32.repository.backtrack-linux.org revolution/testing Packages [58.7kB]
Fetched 8,016kB in 44s (180kB/s)
Reading package lists... Done
drackcyber@bt:~$
2. After you update the time setting up backtrack nesus at you. how is
drackcyber @ bt: ~ $ sudo apt-get install nessus[Sudo] password for drackcyber:Reading package lists ... DoneBuilding dependency treeReading state information ... DoneThe following packages were automatically installed and are no longer required:
libdmraid1.0.0.rc16 python-pyicu libdebian-installer4 libecryptfs0 reiserfsprogs bogl rdate-bterm dmraid ecryptfs-utils libdebconfclient0Use 'apt-get autoremove' to remove them.The following NEW packages will be installed:
Nessus0 upgraded, 1 newly installed, 0 to remove and 0 not upgraded.Need to get 3.036 kB of archives.After this operation, 0B of additional disk space will be used.Get: 1 http://all.repository.backtrack-linux.org/ revolution / testing Nessus 4.4.1-bt5 [3.036 kB]Fetched 3.036 kB in 46s (65.8kB / s)Selecting previously deselected package Nessus.(Reading database ... 314199 files and directories currently installed.)Unpacking nessus (from ... / nessus_4.4.1-bt5_all.deb) ...Processing triggers for desktop-file-utils ...Processing triggers for ureadahead ...Setting up nessus (4.4.1-bt5) ...
- Please run / opt / nessus / sbin / nessus-adduser to add a user
- Register your Nessus scanner at http://www.nessus.org/register/ to OBTAIN
all the newest plugins
- You can start nessusd by typing / etc / init.d / nessusd start
localepurge: Disk space freed in / usr / share / locale: 0 KiBlocalepurge: Disk space freed in / usr / share / man: 0 KiBlocalepurge: Disk space freed in / usr / share / gnome / help: 0 KiBlocalepurge: Disk space freed in / usr / share / OMF: 0 KiBlocalepurge: Disk space freed in / usr / share / doc / kde / HTML: 0 KiB
Total disk space freed by localepurge: 0 KiB
3. Now we run nesus that we install (complete data are required)
drackcyber @ bt: ~ $ sudo / opt / nessus / sbin / nessus-adduser
Login: drackcyber
Login password:
Login password (again):
Do you want this user to be a Nessus 'admin' user? (Can upload plugins, etc ...) (y / n) [n]: y
User rules----------nessusd roomates has a rules system Allows you to restrict the hostsdrackcyber that has the right to test. For instance, you may wanthim to be Able to scan his own host only.
Please see the nessus-adduser manual for the rules syntax
Enter the rules for this user, and enter a BLANK LINE once you are done:
(The user can have an empty rules set)
You can Access this Action
Login: drackcyberPassword: ***********
This user will have 'admin' privileges within the Nessus
serverRules:You can Access this ActionIs that ok? (Y / n) [y] y
User addeddrackcyber @ bt: ~ $
3. After the user add okay we list first ..
