ComputerSecurityStudent (CSS) [Login] [Join Now]

|SECURITY TOOLS >> NESSUS >> Current Page |Views: 13086

(NESSUS: Lesson 2)

{ Install Nessus on BackTrack 5R1 }

Section 0. Background Information
  1. What is NESSUS?
    • Tenable Network Security provides enterprise-class solutions for continuous monitoring and visibility of vulnerabilities, configurations, user activity and system events that impact security and compliance.

    • Nessus features high-speed discovery, configuration auditing, asset profiling, sensitive data discovery and vulnerability analysis of your security posture

  2. Pre-Requisite
  3. Lab Notes
    • In this lab we will do the following:
      1. Install Nessus.
      2. Start the Nessus service
      3. Configure Nessus certificate
      4. Login Nessus

  4. Legal Disclaimer
    • As a condition of your use of this Web site, you warrant to that you will not use this Web site for any purpose that is unlawful or that is prohibited by these terms, conditions, and notices.
    • In accordance with UCC § 2-316, this product is provided with "no warranties, either express or implied." The information contained is provided "as-is", with "no guarantee of merchantability."
    • In addition, this is a teaching website that does not condone malicious behavior of any kind.
    • You are on notice, that continuing and/or using this lab outside your "own" test environment is considered malicious and is against the law.
    • © 2013 No content replication of any kind is allowed without express written permission.


Section 1: Login to BackTrack
  1. Start Up VMWare Player
    • Instructions:
      1. Click the Start Button
      2. Type Vmplayer in the search box
      3. Click on Vmplayer


  2. Open a Virtual Machine
    • Instructions:
      1. Click on Open a Virtual Machine


  3. Open the BackTrack5R1 VM
    • Instructions:
      1. Navigate to where the BackTrack5R1 VM is located
      2. Click on on the BackTrack5R1 VM
      3. Click on the Open Button


  4. Edit the BackTrack5R1 VM
    • Instructions:
      1. Select BackTrack5R1 VM
      2. Click Edit virtual machine settings


  5. Edit Virtual Machine Settings
    • Instructions:
      1. Click on Network Adapter
      2. Click on the Bridged Radio button
      3. Click on the OK Button


  6. Play the BackTrack5R1 VM
    • Instructions:
      1. Click on the BackTrack5R1 VM
      2. Click on Play virtual machine


  7. Login to BackTrack
    • Instructions:
      1. Login: root
      2. Password: toor or <whatever you changed it to>.


  8. Bring up the GNOME
    • Instructions:
      1. Type startx


Section 2: Bring up a console terminal
  1. Start up a terminal window
    • Instructions:
      1. Click on the Terminal Window


  2. Obtain the IP Address
    • Instructions:
      1. ifconfig -a
    • Note(FYI):
      • My IP address
      • In your case, it will probably be different.


Section 3: Create Duplicate Firefox Instance
  1. Create Duplicate Firefox Instance
    • Note(FYI):
      • Nessus 6.x.x and higher no longer runs on Firefox 5.0.1 that comes with BackTrack5R1.
      • Since many subsequent lesson screenshots are taken with Firefox 5.0.1, we will create a duplicate instance of Firefox that will we upgrade to an compatible version for Nessus.


  2. Create Duplicate Firefox Instance
    • Instructions:
      1. cp -rp /opt/firefox/ /root/
      2. cd /root/firefox/
      3. ./firefox &
      4. The FireFox Browser will appear shortly
    • Note(FYI):
      • Command #1, Use the (cp) command to (-p) preserve the ownerships and (-r) recursively copy the entire (/opt/firefox/) directory to the (/root) directory.
      • Command #2, Navigate to the (/root/firefox) directory. 
      • Command #3, Run Firefox from the (/root/firefox) directory.


  3. Firefox Check for Updates
    • Instructions:
      1. Help --> About Firefox
      2. Check for Updates
    • Note(FYI):
      • Command #2, Firefox will now check for updates.


  4. Firefox apply Update
    • Instructions:
      1. Click the Apply Update Button
    • Note(FYI):
      • Command #1, The Firefox browser will close.  Shortly after, the Select Your Add-ons windows will appear.


  5. Select Your Add-ons (Part 1)
    • Instructions:
      1. Uncheck all boxes
      2. Click the Next Button


  6. Select Your Add-ons (Part 2)
    • Instructions:
      1. Click the Done Button


  7. Firefox Check for Updates (One More Time) 
    • Instructions:
      1. Help --> About Firefox
      2. Click the Check for Updates Button
    • Note(FYI):
      • Command #2, Although Firefox was updated to 12.0, that is still not enough to support Nessus 6.x and greater.  So, we will need to apply another update.


  8. Firefox apply Update (One More Time)
    • Instructions:
      1. Click the Apply Update Button
    • Note(FYI):
      • Command #1, The Firefox browser will close.  Shortly after, the Select Your Add-ons windows will appear


  9. Verify Update 
    • Instructions:
      1. Help --> About Firefox
      2. Firefox should be at its highest level for this version of BackTrack.
      3. Exit Firefox.
    • Note(FYI):
      • Command #2, Now Firefox is at an acceptable level for Nessus 6.x.x and higher.


Section 4: Download Nessus
  1. Download Nessus
    • Instructions:
      1. cd /var/tmp
      2. wget
    • Note(FYI):
      1. If (Nessus-6.10.9) is not the latest version, you can retrieve the latest Nessus version from the following website
Section 5: Install Nessus
  1. Install Nessus
    • Instructions
      1. cd /var/tmp
      2. ls -l Nessus*
      3. dpkg -i Nessus*
    • Notes
      • #1, Change Directory (cd) into the (/var/tmp) directory.
      • #2, Use (ls -l) to long list the details of the Nessus package.
      • #3, Use (dpkg -i) to install the Nessus package. 
      • For steps #2 and #3 I am using a the wildcard(*) just encase the version changes.


  2. Start Nessus
    • Instructions
      1. /etc/init.d/nessusd start
      2. ps -eaf | grep -v grep | grep nessusd
      3. netstat -naop | grep -i 8834
    • Notes
      • #1, The script (/etc/init.d/nessusd) provides the ability to start, stop and restart the Nessus Application.
      • #2, Use the process (ps) command to display all (-eaf) running processes.  Use (grep -v grep) to ignore (-v) any lines that contain the actual grep process.  Use (grep nessusd) to display only lines that contain the (nessusd) process.
      • #3, Use (netstat) to display all (-a) numeric (-n) network connections and list timers (-o) and process IDs (-p).


Section 6: Obtain Nessus Activation Code
  1. Start Duplicate Firefox Instance
    • Instructions:
      1. cd /root/firefox/
      2. ./firefox &


  2. Obtain Registration Code
    • Instructions:
      1. Place the following URL into Firefox
      2. Supply First Name
      3. Supply Last Name
      4. Supply Email
      5. Click the Register Button


  3. Thank You For Registering
    • Note(FYI):
      1. You will receive an email from Nessus containing your registration Key.


Section 7: Registered Nessus
  1. Initial Access to the Nessus Application
    • Instructions:
      1. Place the following URL into Firefox
      2. Click on the I Understand the Risks twistie
      3. Click the Add Exception Button
      4. Click the Confirm Security Exception Button
    • Note(FYI):
      • You are receiving this message because Nessus uses a self-signed certificate that is required for the HTTPS protocol. 
      • In other circumstance, it is would be in your best interest to not proceed.


  2. Welcome to Nessus
    • Instructions:
      1. Click the Continue Button


  3. Nessus Account Setup
    • Instructions:
      1. Username: admin
      2. Password: Supply Password
      3. Confirm Password
      4. Click the Continue Button


  4. Nessus Registration
    • Instructions:
      1. Registration: Nessus (Home, Professional or Manager)
      2. Activation Code: Paste Activation Code
      3. Click the Continue Button
    • Note(FYI):
      • #2, The Activation Code should have been sent to your email address that you supplied earlier.


  5. Nessus Downloading Updates
    • Note(FYI):
      1. It will take between 30 to 60 minutes for the download to complete.


  6. Nessus Initialization
    • Note(FYI):
      1. It will take between 60 to 120 minutes for the initialization to complete.


Section 8: Login to Nessus
  1. Login To Nessus
    • Instructions:
      1. Login: admin
      2. Password: Supply Password
      3. Click the Sign In Button


  2. Nessus Menu
    • Note(FYI):
      1. Below is the Nessus Menu
      2. Do not click Sign Out -or- Close the Browser until you complete the Proof of Lab.


Section 9: Proof of Lab
  1. Start up a terminal window
    • Instructions:
      1. Click on the Terminal Window


  2. Proof of Lab
    • Instructions
      1. dpkg -p nessus
      2. netstat -nao | grep 8834 | grep -v grep
      3. date
      4. echo "Your Name"
        • Put in your actual name in place of "Your Name"
        • e.g., echo "John Gray"
      5. date
    • Proof Of Lab Instructions:
      1. Press the PrtScn key
      2. Paste into a word document
      3. Upload to Moodle


Section 10: Log Out of Nessus
  1. Logout of Nessus
    • Instructions:
      1. Click on admin
      2. Click Sign Out


Help ComputerSecurityStudent
pay for continued research,
resources & bandwidth