If you wanted to pass params to nessus via the cli for batch processing you
could do something like this:
nessus -x -T text -c $_nessus_conf -q 127.0.0.1 1241 <nessususername> <pass>
<target_file> <outputfile>
*Note* These notes are from shell scripts that are a few years old. I haven't
done this on a newer version of nessus so you may want to check it out.
Daniel Clemens
-----Original Message-----
From: listbounce@securityfocus.com [mailto:listbounce@securityfocus.com] On
Behalf Of Kevin Reiter
Sent: Wednesday, April 11, 2007 8:31 AM
To: "José Luis Jerez"; pen-test@securityfocus.com
Subject: RE: Nessus-Nmap command line
Sounds like a question better suited for the Nessus list, but since I happen to
know the answer, .. :)
You have to install the nmap.nasl on your server first (see www.nessus.org for
the docs), then configure it via the GUI client. Once you do that, check your
.nessusrc file, and you'll see the available nmap options you can set for your
Nessus scans on both the commandline and when using the GUI client.
HTH
Kevin
Kevin Reiter
Senior Security Engineer
Financial Services, Inc.
21 Harristown Road
Glen Rock, New Jersey 07452
(201)652-6000, ext. 588
PGP ID: 0xEE665233
-----Original Message-----
From: listbounce@securityfocus.com
[mailto:listbounce@securityfocus.com]On Behalf Of "José Luis Jerez"
Sent: Tuesday, April 10, 2007 1:21 PM
To: pen-test@securityfocus.com
Subject: Nessus-Nmap command line
Hi,
I have seen in nessus client the option to use nmap as scanner, but I can't
find the nessus command line in order to use nmap. Does anybody know how to do
it?
Thanks,
This message may contain confidential or proprietary information and is
intended solely for the individual(s) to whom it is addressed. If you are not
a named addressee you should not disseminate, distribute or copy this e-mail or
act upon the information contained herein. Please notify the sender
immediately by e-mail if you have received this e-mail by mistake and delete
this e-mail from your system.
------------------------------------------------------------------------
This List Sponsored by: Cenzic
Need to secure your web apps?
Cenzic Hailstorm finds vulnerabilities fast.
Click the link to buy it, try it or download Hailstorm for FREE.
http://www.cenzic.com/products_services/download_hailstorm.php?camp=701600000008bOW
------------------------------------------------------------------------
-----------------------------------------
Confidentiality Notice: This e-mail communication and any
attachments may contain confidential and privileged information for
the use of the designated recipients named above. If you are not
the intended recipient, you are hereby notified that you have
received this communication in error and that any review,
disclosure, dissemination, distribution or copying of it or its
contents is prohibited. If you have received this communication in
error, please notify me immediately by replying to this message and
deleting it from your computer. Thank you.
------------------------------------------------------------------------
This List Sponsored by: Cenzic
Are you using SPI, Watchfire or WhiteHat?
Consider getting clear vision with Cenzic
See HOW Now with our 20/20 program!
http://www.cenzic.com/c/2020
------------------------------------------------------------------------
