Centos部署破解Nessus全过程

Centos部署Nessus，解除ip限制全过程

环境准备

Centos7版本的虚拟机即可

话不多说 开始操作

1. 从nessus官网下载Nessus

https://www.tenable.com/downloads/nessus

2. 去nessus官方申请激活码，姓名随便填，邮箱必须正确，用来接收激活码

https://www.csdn.net/
电子邮件163、qq 什么的都可以 只要能接受邮件即可
等几分钟邮箱会接收到一个邮件，类似内容如下：

3.部署Nessus

将下载好的Nessus-8.15.6-es7.x86_64.rpm上传到虚拟机中，然后安装

[root@nessus ~]# rpm -ivh Nessus-8.15.6-es7.x86_64.rpm
warning: Nessus-8.15.6-es7.x86_64.rpm: Header V3 RSA/SHA256 Signature, key ID 1c0c4a5d: NOKEY
Preparing...                          ################################# [100%]
Updating / installing...
   1:Nessus-8.15.6-es7                ################################# [100%]
Unpacking Nessus Core Components...
 - You can start Nessus by typing /bin/systemctl start nessusd.service
 - Then go to https://nessus.novalocal:8834/ to configure your scanner

启动Nessus、查看端口

[root@nessus ~]# systemctl start nessusd
[root@nessus ~]# netstat -nltp
Active Internet connections (only servers)
Proto Recv-Q Send-Q Local Address           Foreign Address         State       PID/Program name    
tcp        0      0 0.0.0.0:8834            0.0.0.0:*               LISTEN      7716/nessusd        
tcp        0      0 0.0.0.0:111             0.0.0.0:*               LISTEN      600/rpcbind         
tcp        0      0 0.0.0.0:22              0.0.0.0:*               LISTEN      1213/sshd           
tcp        0      0 127.0.0.1:25            0.0.0.0:*               LISTEN      1061/master         
tcp6       0      0 :::8834                 :::*                    LISTEN      7716/nessusd        
tcp6       0      0 :::111                  :::*                    LISTEN      600/rpcbind         
tcp6       0      0 :::22                   :::*                    LISTEN      1213/sshd           
tcp6       0      0 ::1:25                  :::*                    LISTEN      1061/master         

打开游览器，访问https://ip:8834，点 “继续前往”

选择“Managed Scanner”，并点击Continue

选择Tenable.sc，点Continue

设置用户名，密码，点Submit

进入nessus设置页面。这个时候，nessus是没有Scans功能

4. 离线激活

获得质询码

[root@nessus ~]# /opt/nessus/sbin/nessuscli fetch  --challenge

Challenge code: 3b8aa342172bf71a60db25e844c005b1630b43c6

You can copy the challenge code above and paste it alongside your
Activation Code at:
https://plugins.nessus.org/v2/offline.php

获取离线插件包地址及激活证书
浏览器打开网页 https://plugins.nessus.org/v2/offline.php，输入第二步申请的激活码，以及上一步得到的质询码

得到更新插件地址，及license证书

将下载的插件包、证书上传到虚拟机中
安装插件包

[root@nessus ~]# /opt/nessus/sbin/nessuscli update ./all-2.0.tar.gz
[info] Copying templates version 202209081509 to /opt/nessus/var/nessus/templates/tmp
[info] Finished copying templates.
[info] Moved new templates with version 202209081509 from plugins dir.
[info] Moved new pendo client with version 21220 from plugins dir.
 * Update successful.  The changes will be automatically processed by Nessus.

离线激活Nessus

[root@nessus ~]# /opt/nessus/sbin/nessuscli fetch --register-offline ./nessus.license
Your Activation Code has been registered properly - thank you.

备份/opt/nessus/lib/nessus/plugins/

[root@nessus ~]# cp -r /opt/nessus/lib/nessus/plugins/ ./

重启Nessus

[root@nessus ~]# systemctl restart nessusd

刷新网页，等待插件初始化

完成后进入Nessus系统。显示激活成功，具有了scan功能。但显示仅允许扫描16个IP

5. 解除IP限制

点击https://plugins.nessus.org/v2/plugins.php获取当前版本号

停止Nessus服务，创建plugin_feed_info.inc

[root@nessus ~]# systemctl stop nessusd
[root@nessus ~]# vim plugin_feed_info.inc
PLUGIN_SET = "202209182151";
PLUGIN_FEED = "ProfessionalFeed (Direct)";
PLUGIN_FEED_TRANSPORT = "Tenable Network Security Lightning";

将plugin_feed_info.inc替换到 /opt/nessus/var/nessus/plugin_feed_info.inc

[root@nessus ~]# cp /root/plugin_feed_info.inc /opt/nessus/var/nessus/

将 /opt/nessus/lib/nessus/plugins/plugin_feed_info.inc 文件删除

 [root@nessus ~]# rm -rf /opt/nessus/lib/nessus/plugins/plugin_feed_info.inc

启动nessus服务

[root@nessus ~]#  systemctl start nessusd

打开浏览器，访问nessus，会看到nessus初始化插件，完成后，看设置页面显示 unlimited。表示解除IP限制成功。