docker 安装 nessus

!!!普通用户有16个IP限制!!!

Version10.8.3

安装注册

官网下载页面

https://www.tenable.com/downloads/nessus

docker 下载,tag 标签页,选择对应 os 的镜像,注意cpu类型 amd64\arm64

https://hub.docker.com/r/tenable/nessus

拉取镜像

docker pull tenable/nessus:latest-ubuntu

运行容器

docker run -itd --name=nessus -p 8834:8834 tenable/nessus:latest-ubuntu

浏览器打开页面 https://127.0.0.1:8834

显示如下信息,耐心等待...

Initializing
Please wait while Nessus is initializing.

每个步骤,按照如下选项设置

  • Register Offline
  • Managerd Scanner
  • Tenable Security Center

官网申请激活码 Register for an Activation Code

https://www.tenable.com/products/nessus/nessus-essentials

查看邮件有激活码

Your activation code for Nessus Essentials is:
YJR6-XXX...

进入容器

docker exec -it nessus bash

继续注册,获取容器的硬件编码

cd /opt/nessus/sbin
ls
# nessus-service  nessuscli  nessusd
# 执行后得到 Challenge code,相同的硬件重复执行,得到的结果相同
./nessuscli fetch --challenge

Challenge code: 3d88e6e1b11c0d...

You can copy the challenge code above and paste it alongside your
Activation Code at:
https://plugins.nessus.org/v2/offline.php
打开上面的链接,输入 Challenge code、激活码,提交

注册成功后的 url,参数u、p是插件临时下载url的凭证,点击链接下载插件 all-2.0.tar.gz

Thank you
You can now obtain the newest Nessus plugins at:
https://plugins.nessus.org/v2/nessus.php?f=all-2.0.tar.gz&u=9f12c8b972b3eea...&p=e65883321743f1...

下载授权文件 Download nessus.license

授权文件复制到容器目录 /opt/nessus/nessus.license

/opt/nessus/sbin/nessuscli fetch --register-offline /opt/nessus/nessus.license

插件复制到容器目录 /opt/nessus/all-2.0.tar.gz

# 安装插件
/opt/nessus/sbin/nessuscli update /opt/nessus/all-2.0.tar.gz

root@7fc46e8de96d:/# /opt/nessus/sbin/nessuscli update /opt/nessus/all-2.0.tar.gz

[info] Copying templates version 202412031651 to /opt/nessus/var/nessus/templates/tmp
[info] Finished copying templates.
[info] Moved new templates with version 202412031651 from plugins dir.
 * Update successful.  The changes will be automatically processed by Nessus.

# 查询插件文件
ll /opt/nessus/lib/nessus/plugins
# -rw------- 1 root root    0 Dec  7 03:55 plugin_feed_info.inc

移除插件目录权限,不是完整版本,避免系统自动删除插件目录内容

# 查询当前目录权限
ls -ld /opt/nessus/lib/nessus/plugins
# 设置只读权限
chmod -R a-w /opt/nessus/lib/nessus/plugins

查看运行的服务 systemctl

systemctl list-units --type=service --all
# nessusd.service loaded inactive dead    Starts and stops the Nessus

重新启动容器或服务,查看容器日志,正在处理插件

2024-12-07 18:36:33 nessus-messages-log stdout | [Sat Dec 07 05:36:18 2024 -0500][52.1] Processing the Nessus plugins...
2024-12-07 18:36:33 nessus-messages-log stdout |
[===...............................................] 6%
[===...............................................] 7%
[====..............................................] 8%

100% 之后登录,查看 About\Overview

Nessus Essentials
Version10.8.3 (#10) LINUX
Licensed Hosts0 of 16 used

Plugins
Last Updated N/A
License Expiration December 06, 2029  Upgrade to Nessus Professional or Nessus Expert
Plugin Set N/A
Policy Template Version 202412031651
Activation CodeYJR6-...
©著作权归作者所有,转载或内容合作请联系作者
【社区内容提示】社区部分内容疑似由AI辅助生成,浏览时请结合常识与多方信息审慎甄别。
平台声明:文章内容(如有图片或视频亦包括在内)由作者上传并发布,文章内容仅代表作者本人观点,简书系信息发布平台,仅提供信息存储服务。

相关阅读更多精彩内容

友情链接更多精彩内容