nessusrc -V -T html -q ip-address 1241 user pass target file.html
problem is about the plugins, say i want to choose only plugins for ftp, cgi, firewalls
in the gui type of nessus i have no problem in choose what plugins should i used,
however in commandline, from the config file 'nessusrc' it just give numbers and im not sure if from below 10180 is for cgi plugins.
now how do i categorize each plugins: if sample 10180 == cgi, 11840 is for ftp
so i can and save time and bandwidth
*this is my nessusrc in my homeDIR
%nessus -v nessus (Nessus) 2.0.10 for FreeBSD
(C) 1998 - 2002 Renaud Deraison <[EMAIL PROTECTED]>
SSL used for client - server communication# This file was automagically created by nessus trusted_ca = /usr/local/etc/nessus/com/nessus/CA/cacert.pem nessusd_host = 127.0.0.1 nessusd_user = user begin(SCANNER_SET) 10180 = yes 10277 = no 10278 = no 10331 = no 10335 = yes 10841 = no 10336 = no 10796 = no 11219 = no 11840 = yesbegin(SERVER_PREFS) max_hosts = 30 max_checks = 10 log_whole_attack = yes cgi_path = /cgi-bin:/scripts port_range = default optimize_test = yes language = english checks_read_timeout = 5 non_simult_ports = 139, 445 plugins_timeout = 320 safe_checks = yes auto_enable_dependencies = yes use_mac_addr = no save_knowledge_base = no kb_restore = no only_test_hosts_whose_kb_we_dont_have = no only_test_hosts_whose_kb_we_have = no kb_dont_replay_scanners = no language = english checks_read_timeout = 5 non_simult_ports = 139, 445 plugins_timeout = 320 safe_checks = yes auto_enable_dependencies = yes use_mac_addr = no save_knowledge_base = no kb_restore = no only_test_hosts_whose_kb_we_dont_have = no only_test_hosts_whose_kb_we_have = no kb_dont_replay_scanners = no kb_dont_replay_info_gathering = no kb_dont_replay_attacks = no kb_dont_replay_denials = no kb_max_age = 864000 plugin_upload = no plugin_upload_suffixes = .nasl, .inc slice_network_addresses = no end(SERVER_PREFS)
begin(PLUGINS_PREFS)
Nmap[radio]:TCP scanning technique : = connect()
Nmap[checkbox]:UDP port scan = no
Nmap[checkbox]:RPC port scan = no
Nmap[checkbox]:Ping the remote host = no
Nmap[checkbox]:Identify the remote OS = no
Nmap[checkbox]:Use hidden option to identify the remote OS = no
Nmap[checkbox]:Fragment IP packets (bypasses firewalls) = no
Nmap[checkbox]:Get Identd info = no
Nmap[radio]:Port range = User specified range
Nmap[checkbox]:Do not randomize the order in which ports are scanned = yes
Nmap[entry]:Source port : = any
Nmap[radio]:Timing policy : = Normal
HTTP login page[entry]:Login page : = /
HTTP login page[entry]:Login form fields : = user=%USER%&pass=%PASS%
Ping the remote host[entry]:TCP ping destination port(s) : = built-in
Ping the remote host[checkbox]:Do a TCP ping = yes
Ping the remote host[checkbox]:Do an ICMP ping = no
Ping the remote host[entry]:Number of retries (ICMP) : = 10
Ping the remote host[checkbox]:Make the dead hosts appear in the report = no
Ping the remote host[checkbox]:Log live hosts in the report = no
SMB use host SID to enumerate local users[entry]:Start UID : = 1000
SMB use host SID to enumerate local users[entry]:End UID : = 1200
NIDS evasion[radio]:TCP evasion technique = none
NIDS evasion[checkbox]:Send fake RST when establishing a TCP connection = no
_________________________________________________________________
MSN 8 helps eliminate e-mail viruses. Get 2 months FREE*. http://join.msn.com/?page=features/virus
_______________________________________________ Nessus mailing list [EMAIL PROTECTED] http://mail.nessus.org/mailman/listinfo/nessus
