The nessus tool is used to scan for vulnerabilities in the system; nessus is a free vulnerability scanning tool. The installation application and script language of the tool are public. Starting from version 3, it switches to a private authorization agreement. Its scanning engine is free, but there is a charge for support and the latest vulnerability definitions. The scanner can not only check for system vulnerabilities, but also for some configuration errors.
The operating environment of this tutorial: linux7.3 system, DELL G3 computer.
Nessus is a free vulnerability scanning tool. Its installation application and scripting language are all public, but starting from version 3 , it switched to a private licensing agreement. Its scanning engine is free, but it charges for its support and the latest vulnerability definitions. However, the charging is time-limited. If you don't want to pay, you can wait 15 days. After 15 days, other Most of the plugins will be free plugins. This scanner not only checks for system vulnerabilities, but also for partial configuration errors.
nessus is the most used system vulnerability scanning and analysis software in the world. In total, more than 70,000 organizations use Nessus as software to scan their organization's computer systems. Nessus is free for individual users. You only need to fill in your email address on the official website and you will receive your registration number immediately. There is a fee for commercial users. Individual users must register through an agent, otherwise the registration page will often jump automatically, resulting in inability to register and download.
Expand knowledge:
##Introduction to common scanners
Nmap
Nmap is known as the king of scanners. It can perform port scanning, operating system service determination, operating system fingerprint determination, and firewall and IDS evasion technology. Most of the time, Nmap is used for port scanning.LANguard
LANguard is a network scanner that allows users to scan computers within the LAN and collect their NetBIOS information, open ports, sharing status and other related information. This information can be used by administrators for security maintenance, through which designated ports and shared directories can be forcibly closed.X-scan
X-scan is a free vulnerability scanning tool developed by the domestic security organization Xfocus and runs in the Windows environment. It uses multi-threading method to detect security vulnerabilities in the specified IP address segment (or single machine). It has plug-in function and provides two operation modes: graphical interface and command line.AppScan
IBM AppScan is a very easy-to-use and powerful web application security testing tool. It was once famous in the industry as Watchfire AppScan. Rational AppScan can be automated. Web application security vulnerability assessment work can scan and detect all common Web application security vulnerabilities, such as SQL injection (SQL-injection), cross-site scripting (cross-site scripting), buffer overflow (buffer overflow) and the latest Scanning for security vulnerabilities exposed in Flash/Flex applications and Web 2.0 applications.WVS
WVS is a vulnerability scanner on the windows platform. This tool can be used to detect SQL injection, XSS cross-site, and file uploads that may exist in the website. , command execution and other vulnerabilities are comprehensively scanned.OWASP Zed(ZAP)
An open source free tool from the OWASP project, which provides vulnerability scanning, crawler, and Fuzz functions. The tool has been integrated into the Kali Linux system.Nikto
is an open source software that can not only scan and discover web file gaps, but also supports checking the security issues of web servers and CGI. It supports configurations such as scanning for specific types of vulnerabilities and bypassing IDC detection. This tool has been integrated into the Kali Linux system. For more related knowledge, please visit theFAQ column!
The above is the detailed content of What is the function of nessus tool. For more information, please follow other related articles on the PHP Chinese website!
How to configure jsp virtual space
Two-way data binding principle
How to check deleted call records
Comparative analysis of iqooneo8 and iqooneo9
How to solve tomcat startup crash
How to deal with blocked file downloads in Windows 10
How to solve the problem of slow server domain name transfer
Today's Toutiao gold coin is equal to 1 yuan
![[Web front-end] Node.js quick start](https://img.php.cn/upload/course/000/000/067/662b5d34ba7c0227.png)
