K8S安装
## kubectl apply -f store-claim.yaml
kubectl apply -f nessus-ingress.yaml
kubectl apply -f nessusPod.yaml
## kubectl delete -f store-claim.yaml
kubectl delete -f nessus-ingress.yaml
kubectl delete -f nessusPod.yamlpod.yaml
---
apiVersion: apps/v1
kind: Deployment
apiVersion: apps/v1
metadata:
name: nessus
namespace: nessus
labels:
app: nessus
spec:
replicas: 1
selector:
matchLabels:
app: nessus
template:
metadata:
labels:
app: nessus
spec:
containers:
- name: nessus
image: jbreed/nessus
ports:
- name: https
containerPort: 8834
protocol: TCP
imagePullPolicy: IfNotPresent
restartPolicy: Always
---
kind: Service
apiVersion: v1
metadata:
name: nessus-service
namespace: nessus
labels:
app: nessus-service
spec:
ports:
- name: https
protocol: TCP
port: 443
targetPort: 8834
selector:
app: nessus
type: ClusterIP
ingress.yaml
---
apiVersion: networking.k8s.io/v1
kind: Ingress
metadata:
name: alb-nessus
namespace: nessus
annotations:
kubernetes.io/ingress.class: alb
alb.ingress.kubernetes.io/scheme: internet-facing
alb.ingress.kubernetes.io/target-type: ip
alb.ingress.kubernetes.io/listen-ports: '[{"HTTPS":443}]'
alb.ingress.kubernetes.io/certificate-arn: arn:aws:acm:::certificate/23-acc3-5323bde457f4
spec:
rules:
- http:
paths:
- path: /
pathType: Prefix
backend:
service:
name: nessus-service
port:
number: 443windows安装
官网下载地址:https://www.tenable.com/downloads/nessus
安装完成后进行系统设置,打开访问网址 https://127.0.0.1:8834,初始化扫描器。
根据提示步骤,选择 Managed Scanner
再选择 Tenable.sc
最后,点击继续,创建账号密码即可登录。
首先注册Nessus账号
注册地址:https://zh-cn.tenable.com/products/nessus/nessus-essentials
之后会收到一封邮箱邮件,复制邮件里的 Activation Code 值
再打开 Nessus 本地安装目录,执行CDM命令获取 Challenge Code 值
访问更新包链地址:https://plugins.nessus.org/v2/offline.php
将上面获取到的值( Challenge Code 和 Activation Code)填写进去,点击提交, 获取 all-2.0.tar.gz 文件。
Thank you
You can now obtain the newest Nessus plugins at:
https://plugins.nessus.org/v2/nessus.php?f=all-2.0.tar.gz&u=d07ceb84e29c79555afbe34f70038483&p=ca97f5bb5ded7ba5038426244908b49f
You can copy the following license and paste it into the Nessus console to proceed:
-----BEGIN TENABLE LICENSE-----
bjUxRlRVVXpTeUZkTm1CNkpQLzVXZzZkOFV0emFyYmFuc29jRnk3WWpCcnBJK2FJeGFHakFWZnBo
Z3czNFRMTjc2ZE5mUEd5SFlQamY1amNmT2x6dExuWWdJYkMyL3VVaEZzRklqRUtiSk9iOVU2Rklr
U08xUCtZbE1ZMHlSNXkxdEZSVS9POFptL2JyNEZxVnYwT1RLK1YwV1JXejcwYWExL1NqbzlFTCtG
TERhNHRxMEpESmZOMFNoTmRRYVArei9sQkhRVTR0eVorcExDSGQxMjBCWS91L0NabXJEV2E1cDEv
WlZDZk9zb1MwSHVta2x0TTd6dlpVLzl0aUZEcm9YOUR2UFo4VFhmLzZVVVQzczM0eEVmY1pZVTM0
b2xnZ2tqUzFoUEdwa0RMVXJ0LzE3WitYeFJXTUZ4c2tZUDFGcUdBVzFNcG1ad0liZHpZVTNueSt6
T21uL0dHRWd2VnVBTVNMKzRnaEVjWTFTc3Zoa3QydnlXQ2FBN3B2bTlNRERhVDk5N3FRWU8ycEw4
djBSTUJ5cmZheTR1UitIVVFsV3FndmEwdzFKYmRTYk5rclJOVHJNdFp6OFlvMi9vL0R3QWtWS2cr
Wnd0NGNmL0NyYS9JYm1udmFmYVVjRVJOMmFnR2JoT0RZcGdFdXBLMGFYWEZKeGk4bU9lZytHb3Vq
WjRLbUJiMGhla1FYOTJYQ0hORWlPYXE0NFRNQjB5LzNTbWtMSW9DTGFPelNkUDlyTTZ0N0p1Skpr
V282aHZYckhCNVpmWE84L09helB0dGN1ZXNXU1AyUm1XUjUrcW1PMzVNQnMwcmpKemtKNGJoMHlL
T0E1Z3dzdFBGbHlwNmFpZ2hhYmdyaTlkWDkreXoxU29TaitkanJwVzVvWTVkUmEzenFqZ2JyeGs9
DQp7ImFjdGl2YXRpb25fY29kZSI6IjhDNUstQzRGVy01VjJLLVBTU0gtN0RCRiIsInVwZGF0ZV9w
YXNzd29yZCI6ImNhOTdmNWJiNWRlZDdiYTUwMzg0MjYyNDQ5MDhiNDlmIiwicGVuZG9fYXBpX2tl
eSI6ImE3YzhkNWM0LWI2YWUtNDg2Ny03ZGFiLTY5YTkyYTA4NDdlMSIsIm5hbWUiOiJOZXNzdXMg
SG9tZSIsInR5cGUiOiJob21lIiwiZXhwaXJhdGlvbl9kYXRlIjoxODM2NzE3MTcxLCJjdXN0b21l
cl9pZCI6MCwiaXBzIjoxNiwidXBkYXRlX2xvZ2luIjoiZDA3Y2ViODRlMjljNzk1NTVhZmJlMzRm
NzAwMzg0ODMiLCJkcm0iOiJiYjY0ZTdiMWZlNjk2NmNlOTExMTY0NGQ2ZmMwMjY5MiJ9
-----END TENABLE LICENSE-----
OR
You may also install the license using Nessus command line tools:
Linux/Unix
/opt/nessus/sbin/nessuscli fetch --register-offline nessus.license
Windows
C:\\Program Files\\Tenable\\Nessus\\nessuscli.exe fetch --register-offline nessus.license
macOS
/Library/Nessus/run/sbin/nessuscli fetch --register-offline nessus.license
FreeBSD
/usr/local/nessus/sbin/nessuscli fetch --register-offline nessus.license
Download nessus.license将下载好的 all-2.0.tar.gz 文件放到 Nessus 的安装目录下,然后执行如下更新命令(使用管理员身份运行、需要等待几分钟):
PS D:\Program Files\Tenable\Nessus> .\nessuscli.exe update .\all-2.0.tar.gz
[info] Copying templates version 202303071847 to D:\Program Files\Tenable\Nessus\nessus\templates\tmp
[info] Finished copying templates.
[info] Moved new templates with version 202303071847 from plugins dir.
[info] Moved new pendo client with version 21691 from plugins dir.
* Update successful. The changes will be automatically processed by Nessus.
注意:更新完漏洞库后,记住version版本号,如上述中的version版本号为202303071847 ,之后破解时会用到这个。
修改安装目录下的配置文件 plugin_feed_info.inc,可以用 Everything 工具快速查找到该文件。
位置在:
D:\Program Files\Tenable\Nessus\nessus\plugin_feed_info.inc
D:\Program Files\Tenable\Nessus\nessus\plugins\plugin_feed_info.inc
注意:如果没有找到 plugin_feed_info.inc 文件,那就在相应目录下自己手动新建下就好了。
同时修改这两个目录下的配置文件内容如下,其中PLUGIN_SET的值就是之前更新漏洞库时的版本号 202303071847
PLUGIN_SET = "202303071847";
PLUGIN_FEED = "ProfessionalFeed (Direct)";
PLUGIN_FEED_TRANSPORT = "Tenable Network Security Lightning";最后,打开系统任务管理器,点击服务栏,找到 Tenable Nessus,鼠标右击点击重新启动即可,由于要加载漏洞库,所以需要耐心等待。
此时,再访问 https://127.0.0.1:8834/ 登录账号后,查看漏洞库已更新至最新版,而且是无限制IP。
之前是这样的:
翻译:
Plugins are compiling. Nessus functionality will be limited until compilation is complete.
插件正在编译中。Nessus的功能将受到限制,直到编译完成。
等待插件编译完
使用介绍
新建扫描,填写扫描配置信息,然后保存
点击启动,耐心等待扫描结束
如果你在破解完后使用工具扫描网站,发现每个目标扫描时间都是几秒钟就立刻结束,扫描不到任何漏洞。那么很有可能是你在破解重启Nessus服务环节的时候,软件自动把Nessus的漏洞库插件全清除了,也就是在安装目录下(C:\ProgramData\Tenable\Nessus\nessus\plugins\)没有任何漏洞插件文件了。文章来源:https://www.toymoban.com/news/detail-640803.html
如果真碰到这种情况,那就按照之前的步骤重新更新下漏洞库,然后再破解一遍。或者是在更新完漏洞库后,将nessus\plugins\目录拷贝一份,等破解完重启服务,重进Nessus加载完后退出,再将事先拷贝的文件复制回去。文章来源地址https://www.toymoban.com/news/detail-640803.html
到了这里,关于Nessus 扫描的文章就介绍完了。如果您还想了解更多内容,请在右上角搜索TOY模板网以前的文章或继续浏览下面的相关文章,希望大家以后多多支持TOY模板网!
