On Thursday 09 October 2003 03:08 am, Biswas, Proneet wrote:
> Hi,
> I want to save various Nessus configurations and then start them at a
> presheduled time as background tasks.
>
> Example:
> I create a template "TEMPLATE1" which has only the web ctageory
> plugins selected.
> I create a template "TEMPLATE2" which has only the 3com ctageory
> plugins enabled.
>
> TEMPLATE1 : I want to run this at 2:00 PM on host 1.1.1.1 everyday
> TEMPLATE2 : I want to run this at 4:00 PM on host 1.1.1.2 everyday
>
> Is there any way I can save the configuration in Nessus right now or
> will I need to build wrappers ?
Create TEMPLATE1 in the Nessus GUI. Run a brief scan to force the .nessusrc
to be saved (I'd be interested in knowing if there is a better way to save
the .nessusrc file). Copy ~/.nessusrc to someplace permanent and give it a
new name. Do the same thing again only set it up for TEMPLATE2.
Edit the new nessusrc files and remove the paranoia entries.
Create two files, one for each of the IP addresses you want to scan.
Do a one-time run of each configuration from the command line. I seem to need
to do this sometimes to establish the certificates. Even if not needed for
that purpose, it is good to test the process. Here is how to scan from the
command line:
nessus -qx -c TEMPLATE_nessusrc localhost 1241 nessus_account \
nessus_password IP_address_file output_file.nbe
Put the commands in your crontab.
Remember that when you add new plugins they will be added and turned on upon
your next usage of that nessusrc file.
After I had a .nessusrc file I liked I used it as a template to create other
ones. Normally all you need to adjust are the plugin selections and the
ports scanned.
Beirne
--
Beirne "Bern" Konarski
[EMAIL PROTECTED] "Untouched by Scandal"
