princep4 / Nessus-Practical Public

Notifications You must be signed in to change notification settings
Fork 0
Star 1

Installation of Nessus and performing nessus scan on DVWA vulnerable website

1 star 0 forks Branches Tags Activity

Name		Name	Last commit message	Last commit date
Latest commit History 3 Commits
Nessus_Installation		Nessus_Installation
README.md		README.md

Repository files navigation

Nessus Installation

Downloading of Nessus:

Visit

Download Nessus
Download nessus as per your destro
- I am using Kali Linux to demonstrate.

Installation and Running of Nessus:

Installation:

dpkg -i Nessus-10.3.0-ubuntu1404_amd64.deb

Running the Service:
```
systemctl start nessusd.service
```
Running:
- Visit:
```
https://localhost:8834/#/
```

Configuring Nessus:

Choose free version:
Enter details:
- get temprory mail id from: https://temp-mail.org/en/
Enter Activation Key:
Set Username and Password:
It will download all neccessary plugins:
Dashboard Access:

Running Nessus on Vulnerable Web Application:

I am Using DVWA as my vulnerable web application
Using docker image of DVWA: https://hub.docker.com/r/sagikazarmark/dvwa
My docker image is running on: http://172.17.0.2

Setup of Nessus for Scan:

New scan
Web Application tests
Running DVWA docker image:
Set Nessus for the scanning:
Launch the Scan
See in the logs that our scanner in scanning the Application:

SCAN COMPLETED AND FOUND ALL THE BASIC VULNERABILITIES YOU CAN CONFIGURE AS PER YOUR NEEDS

Contributor: