Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Nessus-Users
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Nessus v3.0 configuration

from [Tsirgogiannis, Konstantinos] Network Security [Permanent Link]
Subject: Nessus v3.0 configuration
Date: Thu, 22 Nov 2007 18:11:44 +0200 
Hello,

 

My mail concerns the configuration of Nessus client v3.0. I have updated
it, from Nessus Client v1.0, and the currently installed OS is openSuSE
10.3. Both server and client are under the path of (/opt/nessus/sbin for
the nessusd) and (/opt/nessus/bin for the NessusClient).

 

I have placed the .nessusrc file under the path /home/user/IP
Security/tools. Under the same path I have extracted all the rest of the
tools, like nmap4.23, amap5.2, hydra, ettercap, nikto2.00, and
sctp-scan. 

 

In the options tab of the client, I get the following in the window:

 

Nessus SNMP scanner

Nessus TCP scanner

Netstat 'scanner'

Nmap (NASL wrapper)

Ping the remote host

SYN scan

Amap (NASL wrapper)

Scan for LaBrea tarpitted hosts

 

I check all of them, except the last one. So, into the nessus plugins I
have amap.nasl, nmap.nasl and the four executable .nes files. However,
in the advanced tab of NessusClient v3.0, I don't get the following
fields in correspondence to the Prefs tab of the NessusClient v1.0.
These fields are:

 

Amap (NASL) wrapper

Cleartext Protocol settings

Do not scan fragile devices

Nessus TCP scanner

Nikto (NASL) wrapper

Nmap (NASL) wrapper

 

So, do I get fewer fields due to a wrong configuration? Moreover is
there a general rule of how can I implement 3rd party tools, (except
from Nikto), like PROTOS, hydra or sctp-scan, into the Nessus? Thanks in
advance for your feedback. 

 

P.S: I'm referring to the custom policy and not the Microsoft patches
policy.

 

 

Best Regards,

Konstantinos Tsirgogiannis

 

 

 

 

Nokia Siemens Networks S.A

COO SCA Perfect Voice Fixed

R&D Centre Athens, XSWCD1

12, Promitheos str.

GR-145 64 N. Kifisia, Athens

Greece

 

Tel: (+30) 21 06 24 76 99

<mailto:konstantinos.tsirgogiannis@nsn.com>

JPEG image

_______________________________________________
Nessus mailing list
Nessus@list.nessus.org
http://mail.nessus.org/mailman/listinfo/nessus
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • Nessus v3.0 configuration, Tsirgogiannis, Konstantinos <=
Previous by Date:  Re: Nice way to use .nessus files on linux command line?, George A. Theall
Next by Date:  Re: Nessus Windows XP Problem., p1g
Previous by Thread:  Nice way to use .nessus files on linux command line?, Michael Haarsma
Next by Thread:  How do you create a new nessusrc file for scripted runs?, Jason Haar
Indexes:  [Date] [Thread] [Top] [All Lists]