Stack Overflow
Stack Overflow

Questions tagged [nessus]

Nessus is a commercial vulnerability scanner offered by Tenable Security

Nessus is a commercial vulnerability scanner offered by Tenable Security.

Nessus features high-speed discovery, configuration auditing, asset profiling, sensitive data discovery and vulnerability analysis of your security posture. Nessus scanners can be distributed throughout an entire enterprise, inside DMZs and across physically separate networks

98 questions
1
vote
1 answer

Running nessu on Ubuntu on WSL2

I am unable to start nessus in WSL using: /bin/systemctl start nessusd.service I get the following error: System has not been booted with systemd as init system (PID 1). Can't operate. Failed to connect to bus: Host is down
sanath
  • 21
  • 3
1
vote
0 answers

aws inspector vs Nessus which one to chose for aws cloud

So we want to setup a security scanners for a mixed environment of Linux & windows instances on AWS so i came across Inspector and Nessus so i just want to get little more clearity and experts advice on which one to chose thanks!!
Satyashil Deshpande
  • 186
  • 2
  • 4
  • 17
1
vote
2 answers

OpenVAS: CLI Vulnerability Scanning [CentOS]

I have been trying to figure out how I can execute tasks from the command line with OpenVAS (without any interactions with their web gui) I've tried running this command: omp --port=9392 --host= --username=admin --password=admin --xml…
Phil
  • 3,342
  • 5
  • 28
  • 50
1
vote
0 answers

How to create .audit file to upload a custom amazon AWS audit for Audit Cloud Infrastructure

I am new to nessus Audit Cloud Infrastructure. I have an infrastructure over AWS cloud with Unix based machine. Audit Cloud Infrastructure requires an audit file without it an error is coming as below :- Error (400): At least one audit must be…
Shubham Jain
  • 16,610
  • 15
  • 78
  • 125
1
vote
2 answers

how to access whole nessus through shell script

I am trying to do a script to get me access of advance scan option of nessus in localhost. So I want advance scan operation through shell script without GUI. I want all operations like login, advance scan and export report are performed through…
sknsk
  • 19
  • 1
  • 7
1
vote
1 answer

How can I use nessrest api (python) to export nessus scan reports in xml?

I am trying to automate the running of and downloading nessus scans using python. I have been using the nessrest api for python, and am able to successfully run a scan, but am not being successfully download the report in nessus format. Any ideas…
securisec
  • 31
  • 1
  • 6
1
vote
2 answers

Passing a CSV between multiple PowerShell scripts

I have a bunch of individual scripts to build various reports based off of a weekly Nessus scan. In each individual script I perform this: Function Get-FileName($initialDirectory) { …
Tchotchke
  • 399
  • 1
  • 2
  • 18
1
vote
0 answers

update nessus scan targets using python

I am trying to update the nessus scan targets using python script as the ips of the target servers are not fixed. The documentation of python-nessus-client 0.1.1, does not say anything about updating an existing scan. Is there any way to do this ?
user3351750
  • 927
  • 13
  • 24
1
vote
1 answer

how to submit targets via the nessus API?

I am trying to create a new scan in Nessus (6.4) via the API following the documentation. I have a policy set up and the code to create the scan is import requests headers = { "X-ApiKeys": "accessKey =…
WoJ
  • 27,165
  • 48
  • 180
  • 345
1
vote
2 answers

Apache vulnerabilities not detected?

I am scanning some servers with Nessus and there is something I do not understand. Nessus detect that the web server is Apache/2.2.16 (on Debian). If yo go to http://httpd.apache.org/security/vulnerabilities_22.html you can see a lot of…
user3575946
  • 11
  • 1
1
vote
2 answers

cgi generic sql injection problems

I was scanning a site when the following vulnerability popped up: CGI Generic SQL Injection nessus sais that An attacker may exploit this flaw to bypass authentication, read confidential data, modify the remote database, or even take control of the…
that guy
  • 404
  • 1
  • 7
  • 15
0
votes
1 answer

Does Nessus depend or use directory paths for determining versions?

I have a bit of confusion going on here at work. I and a handful of engineers believe that nessus (being a port scanner as far as we know) won't care one bit that I wish to rename the tomcat directory on our server from…
D-Klotz
  • 1,973
  • 1
  • 15
  • 37
0
votes
2 answers

nessus scan intepretation based upon on credentials?

Can someone clearly state the difference between running a nessus scan with/out credentials? What would happen if i scan a unix based system with no credentials and about the same time using ssh account? How would the results differ> And in what…
asadz
  • 174
  • 15
0
votes
0 answers

Dashboard Sharing from Tenable Security Centre to an External User

Is there any way to share dashboards from tenable to an external user mail id? I've tried in many ways but ended up finding solution for sharing it to the Groups with internal users. Appreciate your prompt response for my query.
mounica dhulipudi
  • 1
  • 1
0
votes
0 answers

Jenkins not detected when scanning with Nessus

Running Credentialed Basic Network Scans I tried looking at the scan results for details regarding the latest set of vulns for Jenkins. While I am not sure if my version of Jenkins is affected, the service is not detected at all. It seems that the…
gusgrave
  • 45
  • 5
1
2
3 4 5 6 7