How to Install Nessus on Kali Linux 2020.x?. Welcome to one of Kali Linux how-to guides for installing Nessus vulnerability Scanner on Kali Linux 2020.x. Nessus is a widely used, proprietary vulnerability assessment tool for both Web and Mobile applications. Nessus is created to help you reduce your organization’s attack surface and ensure compliance in virtual, physical, mobile and cloud environments.
Nessus has the world’s largest continuously-updated library of vulnerability and configuration checks. This ensures there is a standard for speed and accuracy. With Nessus, you can audit the following environments:
- Network devices: firewalls/routers/switches (Juniper, Check Point, Cisco, Palo Alto Networks), printers, storage
- Virtualization: VMware ESX, ESXi, vSphere, vCenter, Hyper-V, and Citrix Xen Server
- Operating systems: Windows, Mac, Linux, Solaris, BSD, Cisco iOS, IBM iSeries
- Databases: Oracle, SQL Server, MySQL, DB2, Informix/DRDA, PostgreSQL, MongoDB
- Web applications: Web servers, web services, OWASP vulnerabilities
- Cloud: Scans cloud applications and instances like Salesforce and AWS
- Compliance: Helps meet government, regulatory and corporate requirements
- Meets PCI DSS requirements through configuration auditing, web application scanning
Install Nessus Vulnerability Scanner on Kali Linux
Nessus Scanner packages are available on Nessus Downloads page. Confirm the latest release of Nessus for Debian/Kali Linux. As of this article writing, the available release is
Nessus - 8.9.0.
Download the package and confirm it is available locally for installation.
$ ls Nessus-8.9.0-debian6_amd64.deb Nessus-8.9.0-debian6_amd64.deb
Install Nessus Vulnerability scanned on Kali Linux using the command below.
$ sudo dpkg -i Nessus-8.9.0-debian6_amd64.deb Reading package lists... Done Building dependency tree Reading state information... Done Note, selecting 'nessus' instead of './Nessus-8.9.0-debian6_amd64.deb' The following NEW packages will be installed: nessus 0 upgraded, 1 newly installed, 0 to remove and 21 not upgraded. Need to get 0 B/86.2 MB of archives. After this operation, 0 B of additional disk space will be used. Get:1 /home/jkmutai/Nessus-8.9.0-debian6_amd64.deb nessus amd64 8.9.0 [86.2 MB] Selecting previously unselected package nessus. (Reading database ... 274633 files and directories currently installed.) Preparing to unpack .../Nessus-8.9.0-debian6_amd64.deb ... Unpacking nessus (8.9.0) ... Setting up nessus (8.9.0) ... Unpacking Nessus Scanner Core Components... - You can start Nessus Scanner by typing /etc/init.d/nessusd start - Then go to https://kali:8834/ to configure your scanner Processing triggers for systemd (244.1-1) ...
The same command will be used when upgrading Nessus Vulnerability Scanner on Kali Linux. You’ll only change the name of the file.
Start Nessus Service on Kali Linux
After package installation, you need to start the service required for operating Nessus Vulnerability scanner.
sudo systemctl enable nessusd sudo systemctl start nessusd
Confirm the nessusd is actually started and running.
$ systemctl status nessusd.service ● nessusd.service - LSB: Starts and stops the Nessus Loaded: loaded (/etc/init.d/nessusd; generated) Active: active (running) since Sun 2020-02-23 08:37:47 EST; 1s ago Docs: man:systemd-sysv-generator(8) Process: 19079 ExecStart=/etc/init.d/nessusd start (code=exited, status=0/SUCCESS) Tasks: 19 (limit: 2318) Memory: 70.2M CGroup: /system.slice/nessusd.service ├─19081 /opt/nessus/sbin/nessus-service -D -q └─19082 nessusd -q .....
Nessus daemon binds to TCP port
$ sudo ss -ant | grep 8834 LISTEN 0 1024 0.0.0.0:8834 0.0.0.0:* LISTEN 0 1024 [::]:8834 [::]:*
Configure Nessus Vulnerability Scanner on Kali Linux
Visit your Nessus web interface on your server IP or hostname port 8834 to finish Nessus installation and activation.
For me, this will be:
On the first page, select the Nessus product to use.
Since I chose Nessus Essentials installation, I’ll provide personal information to receive an email with a free Nessus Essentials activation code.
Now register Nessus by entering the activation code received on email.
Create Nessus Administrator Account in the next page.
Nessus wills start preparation of the the files needed to scan your assets.
Be informed that this could take some time as Nessus download Plugins and prepare the files needed to scan your assets.
Nessus default page on login should look similar to below.
Add your networks to begin scanning.
You have successfully installed Nessus Vulnerability Scanner on Kali Linux.