Hello, I am starting to learn about NESSUS and its plugins. Yes, Tenable has modified their license so now you must register in order to get use the product and get updates.I noticed for the NESSUS server, you can configure cron to update the plugins every night; or whenever you wish to run (source: Has anyone experienced a downside with the automatic download for every night or week? Also, you have to purchase licenses for Nessus or you will have to wait 7 days to receive the newest plugins.
Also - I keep hearing rumors that NESSUS is going commericial - please tell me this isn't so. There was a huge debate on the nessus list about this because some plugins are submitted by users and then may become part of the NASL library that costs $$$.They are to Nessus what virus definition files are to antivirus software.Update: Nessus GUI will ask you to set up user credentials after you visit the scanner for the first time after installation at the location 'https://localhost:8834'.Moreover, Nessus GUI automatically fetches the latest plugins after installation now.However, if you wish to install the plugins using command-line, and since 'nessus-fetch' has been deprecated, you need to use 'nessuscli' for updating the plugins: This will start the Nessus service on port 8834. Other than that, unless you get CVS updates (you'll get some flakeyness here), the daily updates are excellent.
We\'ve all been raised by television to believe that one day we\'ll all be millionaires and movie gods and rock stars -- but we won\'t. And we\'re very, very pissed off.\" - Tyler (Brad Pitt) Fight Club. You get the NASLs that are added and updated, however, if you customize a NASL and forget to back it up somewhere else (or change the plugin name, ID and such), it will be overwritten.
If you have specific issues, contact Ron Gula over at Tenable.
The Nessus vulnerability scanner is a great scanner for locating vulnerabilities in clients on local and remote networks. If you try to install it using the repositories, 'apt-get install nessus', you will notice that there is no such package.
For this reason, you need to visit the Tenable website and download the package for Debian 7 (Kali Linux is built over Debian 7): You can download the Nessus installation package (.deb) here.
Now, install the package: "QREDDR-3$FDF-DFSE3-DFSD3" represents the serial code that tenable mailed you after your registration.
If you haven't registered yet, you will have to do it before you can use Nessus. $ nessus-fetch --register will take sometime for updating plugins These plugins are necessary to help Nessus locate the latest vulnerabilities.