RE: Options for command line scanning

Wed, 28 Feb 2007 08:28:51 -0800 

Yup, already found that whilst reading through the .nessusrc file after 
configuring the nmap.nasl plugin to see what had been added to it.

Doing my test run now.  If anyone's interested, this is the script I just 
whipped up for testing it:

#!/usr/local/bin/bash
# Test Nessus scan via commandline

subnet=$1
target=/root/nmap-results.txt
results=/usr/local/www/data/results

if [ -z $1 ]; then

        printf 'Usage: ./do_nessus.sh {subnet}\n'
        printf 'Example: ./do_nessus.sh 192.168.4.0\n'

else

nmap -n -sS -p1-65535 -oG $target $subnet/24

# The results get dumped directly to the www/results directory to be viewed in
# a web browser, since they're being saved as HTML.
# Yes, the $results directory is protected :)

nessus -q -x -V -c /root/.nessusrc -T html localhost 1241 username password 
$target $results/$subnet.html

fi


-----Original Message-----
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] Behalf Of George A. Theall
Sent: Wednesday, February 28, 2007 11:06 AM
To: Nessus List (E-mail)
Subject: Re: Options for command line scanning


> I'm trying to setup a cron job to scan certain hosts on specific
> ports (output from a previously-run nmap scan), but every option I've
> tried just displays the help screen.  Is it possible to do this from
> the command line?  

Depending on what you mean by a previously-run nmap scan, perhaps. 
You'll need to use the optional nmap.nasl plugin -- 
http://www.nessus.org/documentation/index.php?doc=nmap-usage#nmap_plugin 
  -- along with nmap's greppable output format (-oG). Tweak the Nessus 
client config file how you want, but make sure you have something like this:

    Nmap (NASL wrapper)[file]:File containing grepable results : = 
/home/theall/scans/labnet.ports

where "/home/theall/scans/labnet.ports" is the output file from nmap.

George
-- 
[EMAIL PROTECTED]
_______________________________________________
Nessus mailing list
[email protected]
http://mail.nessus.org/mailman/listinfo/nessus

This message may contain confidential or proprietary information and is 
intended solely for the individual(s) to whom it is addressed.  If you are not 
a named addressee you should not disseminate, distribute or copy this e-mail or 
act upon the information contained herein.  Please notify the sender 
immediately by e-mail if you have received this e-mail by mistake and delete 
this e-mail from your system.

_______________________________________________
Nessus mailing list
[email protected]
http://mail.nessus.org/mailman/listinfo/nessus

Reply via email to