CoCalc provides the best real-time collaborative environment for Jupyter Notebooks, LaTeX documents, and SageMath, scalable from individual users to large groups and classes!
CoCalc provides the best real-time collaborative environment for Jupyter Notebooks, LaTeX documents, and SageMath, scalable from individual users to large groups and classes!
Path: blob/master/documentation/modules/auxiliary/scanner/nessus/nessus_rest_login.md
Views: 1904
Vulnerable Application
This module will attempt to authenticate to a Nessus server's RPC interface.
Verification Steps
Start msfconsole
Do:
use auxiliary/scanner/nessus/nessus_rest_login
Do: set usernames and passwords via the
username
andpassword
options, or pass a list viauser_file
andpass_file
optionsDo:
run
Hopefully you see somthing like this:
Installation Steps
This is a summary of installation steps for downloading, installing and running Nessus on Debian. They are as follows:
Go to tenable.com.
Download the latest version of nessus. Take note of the version number.
Run the following command in the same directory as the .deb file:
dpkg -i Nessus-<version number>-debian6_amd64.deb
Restart nessus with the
systemctl start nessusd
command.Use your browser to access port 8834 on localhost (https://localhost:8834).
Options
BLANK_PASSWORDS
Try blank passwords for all users
BRUTEFORCE_SPEED
How fast to bruteforce, from 0 to 5
DB_ALL_CREDS
Try each user/password couple stored in the current database
DB_ALL_PASS
Add all passwords in the current database to the list
DB_ALL_USERS
Add all users in the current database to the list
DB_SKIP_EXISTING
Skip existing credentials stored in the current database (Accepted: none, user, user&realm)
PASSWORD
A specific password to authenticate with
PASS_FILE
File containing passwords, one per line
STOP_ON_SUCCESS
Stop guessing when a credential works for a host
TARGETURI
The path to the Nessus server login API
THREADS
The number of concurrent threads (max one per host)
USERNAME
A specific username to authenticate as
USERPASS_FILE
File containing users and passwords separated by space, one pair per line
USER_AS_PASS
Try the username as the password for all users
USER_FILE
File containing usernames, one per line
VERBOSE
Whether to print output for all attempts
VHOST
HTTP server virtual host