Diberdayakan oleh Blogger.
RSS

Nessus Remote Security Scanning

22.41 |

Nessus Remote Security Scanning

a. Software name and URL address
This software can be downloaded at http://www.tenable.com/products/nessus or in www.nessus.org
b. Functions of Nessus software
Nessus is the scanning software, which can be used to audit the security of a system, such as vulnerability, misconfiguration (eg open mail relay, missing patches, etc.), security patches that have not been applied, the default password, and denial of service.
Nessus is also used to detect potential vulnerabilities on the system tested. For example: vulnerabilities that allow remote cracker to control or access sensitive data on a system; the default password, a few common passwords, and password is blank / not present on some system accounts. Nessus can also contact the Hydra (an external tool) to launch dictionary attacks: denial of service against TCP / IP stack using the package.
c. Specification of hardware or network
Nessus can be used and supported by many types of operating systems and platforms:
1) Debian 5 (i386 and x86-64)
2) Fedora Core 12, 13 and 14 (i386 and x86-64)
3) FreeBSD 8 (i386 and x86-64)
4) Mac OS X 10.4, 10.5 and 10.6 (i386, x86-64, ppc)
5) Red Hat ES 4 / CentOS 4 (i386)
6) Red Hat ES 5 / CentOS 5 / Oracle Linux 5 (i386 and x86-64)
7) Red Hat ES 6 (i386 and x86-64)
8) Solaris 10 (sparc)
9) SuSE 9.3 (i386)
10) SuSE 10.0 (i386 and x86-64)
11) Ubuntu 8.04, 9.10, 10:04 and 10:10 (i386 and x86-64)
12) Windows XP, Server 2003, Server 2008, Server 2008 R2, Vista and 7 (i386 and x86-64)

d. Steps of use:
Instalas done in Windows XP. click the file with the extension. exe and let all processes run automatically. Now who do the installation on Ubuntu.
1) First, find the program that will be installed using apt-cache command:
root @ Gimli: / home / hatred # apt-cache search nessus
libnasl-dev - Nessus Attack Scripting Language, static libraries and headers
libnasl2 - Nessus Attack Scripting Language, shared library
libnessus-dev - Nessus static libraries and headers
libnessus2 - Nessus shared libraries
nessus - Remote network security auditor, the client
nessus-dev - Nessus development header files
nessus-plugins - Nessus plugins
nessusd - Remote network security auditor, the server
Harden-remoteaudit - Audit your remote systems from this host
2) Once the list of installed programs to be displayed, and then install:
root @ Gimli: / home / hatred # apt-get install nessus nessus-dev nessusd nessus-plugins
3) After that, create a username and password to login to the Nessus server as the following:
root @ Gimli: / home / hatred # nessus-adduser
Using / var / tmp as a temporary file holder


Add a new user nessusd
----------------------
Login: godril
Authentication (pass / cert) [pass]: pass
Login password:
Login password (again):

User rules
------------------------
nessusd the which has a rules system allows you to restrict the hosts That godril has the right to test. For instance, you may want him to be Able to scan his own host only. Please see the nessus-adduser (8) man page for the rules syntax. Enter the rules for this user, and hit ctrl-D once you are done: (the user can have an empty rules set)


Login: godril
Password: ***********
DN:
Rules:

Is that ok? (Y / n) [y] y
user added.
root @ Gimli: / home / hatred #
4) After that do the registration to the Nessus website. Registration form at http://www.nessus.org/register/. Quite easy, then the point will be sent a registration code to the email that we list on the form. Register aims to be able to download new plugins from the Nessus. Nessus itself has two subscription methods to get these plugins. The first method is by paying membership (Direct Feed). With this membership we will gain fresh plugins. While the free membership (Delayed Feed), is a free membership, which will get the plugin after 7 days issued to the membership plugin Direct Feed.
5) After completing the registration, will mendapatakan activation code via email. Example part of the contents of his email is like this:
Nessus Registration to me
show details 1:09 pm (2 hours ago)
Your activation code for the Nessus plugin feed is C60A-8900-28DD-F5D3-6FBB

Here C60A-8900-28DD-F5D3-6FBB is an activation code. Then run the following command in the console shell:
root @ Gimli: / home / hatred # nessus-fetch - register C60A-8900-28DD-F5D3-6FBB
Your activation code has been registered properly - thank you. Now fetching the newest plugin set from plugins.nessus.org. Your Nessus installation is now up-to-date. Make sure to call regularly use the command 'nessus-update-plugins' to stay up to date. To automate the update process, please visit root @ Gimli: / home / hatred #
6) Done.

To update your plugin, run the command nessus-update-plugins. As for running a Nessus client, at the shell prompt type:
shell> nessus &
and the screen will appear Nessus GUI client as below:





References:
1. http://en.wikipedia.org/wiki/Nessus_ 28software% 29%
2. http://www.tenable.com/products/nessus
3. http://www.nessus.org/sites/drupal.dmz.tenablesecurity.com/files/uploads/documents/nessus_4.4_installation_guide.pdf
4. http://orangescat.wordpress.com/2009/03/31/nessus-security-scanner/
5. http://www.otakudang.org/index.php?/archives/65-Instalasi-Nessus-Di-Ubuntu-Ramadhan-Day-8.html

  • Digg
  • Del.icio.us
  • StumbleUpon
  • Reddit
  • RSS
Diposting oleh - Rizki -

0 komentar:

Posting Komentar

Langganan: Posting Komentar (Atom)