\n
- \n
- Integrate with Nessus to scan for the latest CVE\u2019s and vulnerabilities<\/li>\n
- Download detailed vulnerability reports in HTML and CSV format.<\/li>\n
- Import all vulnerabilities into Sn1per Professional<\/li>\n<\/ul>\n
Requirements<\/h4>\n
\nThis add-on requires a Sn1per Professional<\/a> or Sn1per Enterprise<\/a> license along with the following components:<\/p>\n
- \n
- Nessus v10.x<\/li>\n<\/ul>\n
This assumes that you already have a working Nessus installation running the latest version (10.x). If not, you can obtain a free Nessus license from https:\/\/www.tenable.com\/downloads\/nessus?loginAttempted=true<\/a><\/p>\n
Installation<\/h4>\n
\nAfter Nessus is installed, follow the steps below:<\/p>\n
- \n
- Run
\/etc\/init.d\/nessusd start<\/code> to start the Nessus service<\/li>\n- Open a new browser window and go to: https:\/\/127.0.0.1:8834\/#\/<\/a> and login to confirm your Nessus installation<\/li>\n<\/ol>\n
Configuration<\/h4>\n
\nModify an existing configuration template under the \/sniper\/conf\/ directory (ie. \/usr\/share\/sniper\/conf\/vulnscan_only) and add your Nessus IP, username and password to the appropriate fields seen below.<\/p>\n
NOTE: You can also create a copy of an existing template you want to use and modify that template to configure your scan as well (see here<\/a> for details on creating dynamic configuration templates):<\/p>\n
# NESSUS CONFIG\r\nVULNSCAN=\"1\"\r\nNESSUS=\"1\"\r\nNESSUS_HOST=\"127.0.0.1:8834\"\r\nNESSUS_USERNAME=\"admin\"\r\nNESSUS_PASSWORD='your_password_here'\r\nNESSUS_POLICY_ID=\"c3cbcd46-329f-a9ed-1077-554f8c2af33d0d44f09d736969bf\" #DEFAULT POLICY<\/code><\/pre>\nSelecting A Scan Policy<\/h4>\n
\nTo select a different scan policy to use for the scan, you will need to use web developer tools while accessing the Nessus web UI. To do this, click the “Policies” menu and click on the policy you want to use for Sn1per scans and click “Save”. Under the “Network” tab in web developer tools, you will see a “PUT” request with the UUID of the policy on the request body. You will need to update your Sn1per conf NESSUS_POLICY_ID setting with this value prior to running the scan.<\/p>\n
![\"\"](\"https:\/\/sn1persecurity.com\/wordpress\/wp-content\/uploads\/2022\/01\/Nessus-Scan-Policy.png\")
<\/a><\/h4>\nRunning scans<\/h4>\n
\nRun a test vuln scan to confirm your installation:<\/p>\n
sniper -t <target> -c <full_path_to_your_sn1per_custom_conf> -m normal -w <workspace_name><\/code><\/pre>\nNOTE<\/strong>: This can also be done using the Command Execution Add-on from the web UI.<\/p>\n
Reporting<\/h4>\n
\nAfter the scan(s) complete, results will be shown in the workspace report view under the “Vulnerabilities<\/strong>” section and from the host report as well as the “Vulnerability Report Viewer<\/strong>“.<\/p>\n
Demo<\/h4>\n
\n - Open a new browser window and go to: https:\/\/127.0.0.1:8834\/#\/<\/a> and login to confirm your Nessus installation<\/li>\n<\/ol>\n
- Run
- Nessus v10.x<\/li>\n<\/ul>\n