Originally Posted by macamba
Dictionaries are located in the /pentest/passwords/dictionaries lib
Nessus 3.0
Hello,
Currently i use the Beta version of Back|Track.
I know that because of the license, Nessus 3.0 could not be distributed with the CD.
I want to install it by myself. That was no problem with ASC, but no i have a problem Back|Track. It seems to me that the Slax distro has no support for RPM or DEB packages. And there is no source of shell script to download on the Nessus site. Also YUM or APT-GET does not work.
How should i install Nessus version 3.0?
(I installed LIVE Back|Track CD on harddisk already)
By the way where can i find the password lists in Back|Track?
Regards,
Macamba
Dictionaries are located in the /pentest/passwords/dictionaries lib
Thanx! How can I obtain .mo file for installation under SLAX?
command is rpm2tgz Nessus.rpm
Nice Slackware manual!
From the developers log it seems like the had Nessus 3.0 working on BackTrack at one point. Even though they had to go back to Nessus 2, it would be nice if they or anyone could post a How To for others to set it up on their own BackTrack CD. That way it wouldn't violate the Nessus license and BackTrack users would still be able to use the latest Nessus.
I will do it this week.
Thanks, I'm sure many people will appreciate it. Maybe it could even get on the wiki too.
Are there any solutions?
WIKI installing Nessus 3.0
Here is a short WIKI for installing Nessus 3.0:
Created by: Macamba
Date: 4 march 2006
For this installation procedure to work
- Back|Track needs to be installed on harddisk;
- you should login as root.
Step 1:
Download the following packeges from Nessus.org to /tmp on your harddisk:
- Nessus-3.0.1-fc4.i386.rpm (server)
- NessusClient-1.0.0.RC4.tar (client)
Step 2: Install Nessus 3.0.1
Convert the server packege to .tgz with the following command:
- cd /tmp
- rpm2tgz Nessus-3.0.1-fc4.i386.rpm (now you have Nessus-3.0.1-fc4.i386.tgz in /tmp)
- gunzip Nessus-3.0.1-fc4.i386.tgz
- cd / (you back in root)
- tar -xf /tmp/Nessus-3.0.1-fc4.i386.tar
- now you have the following directory (/opt/nessus)
Step 3: Install Nessus 1.0 0 RC4
- cd /tmp
- tar -zxf /tmp/NessusClient-1.0.0.RC4.tar.gz
- cd NessusClient-1.0.0.RC4/
- ./configure
- make
- make install (the following message appears " NessusClient has been sucessfully installed")
Step 4: Configure Nessus
- cd /opt/nessus/sbin
- nessus-mkcert
CA certificate life time in days [1460]: 1460
Server certificate life time in days [365]: 365
- nessus-adduser
Login : root
Authentication (pass/cert) [pass] : pass
Login password : toor
Login password (again) : toor
- the following message appears: "Enter the rules for this user, and hit ctrl-D once you are done : (the user can have an empty rules set)"
- ctrl-D
- Is that ok ? (y/n) [y] y
Step 5: Run Nessus
- nessusd
- NessusClient
Regards,
Macamba
As you see in the above instruction i didn't removed the old Nessus 2.2.6.
This because i run into problems.
Does anybody know how to check if the correct instance (2.2.6 or 3.0.1) is running now?
If i run 'nessusd -d' from version 3.0.1, the output says it's 2.2.6. Is this a bug or something in my configuration?
Somehelp would be appreciated!
Macamba
Posting Permissions