Skip to content

Nessus Instance Setup Instructions

Jump to bottom
Shane Frasier edited this page Aug 23, 2018 · 5 revisions

Nessus instance setup

After spinning up a new Nessus instance, follow these steps to prepare it for use with CyHy:

  1. Stop Nessus service: sudo service nessusd stop
  2. Register license key: sudo /opt/nessus/sbin/nessuscli fetch --register-only <activationcode> (temporary 7-day codes available here.)
  3. Create scanner user (as admin): sudo /opt/nessus/sbin/nessuscli adduser <username>
  4. Update plugin feed: sudo /opt/nessus/sbin/nessuscli update --plugins-only
  5. Rebuild plugin database: sudo /opt/nessus/sbin/nessusd -R
  6. Start Nessus service: sudo service nessusd start
  7. Set up ssh tunnel from your local machine to the Nessus instance (add lines below to ~/.ssh/config): 
    Host <bastion_host_IP>
  User <ssh username>
  LocalForward 18834 vulnscan1:8834
  8. Open browser, go to https://localhost:18834
  9. Login with Nessus user created above
  10. Import cyhy-base scan policy
Clone this wiki locally