Breaking

How to Create a policy in Nessus

  



Policies allow you to create custom templates defining what actions are performed during a scan.

Previous article: How to Install Nessus on Kali


Step 1:

In the Nessus interface, Click Policies on the left side. Click on Create a Policy link on the page.




Step 2: 


Click Advanced Scan





Step 3:

Enter Name and Description of your Policy, then go to Discovery Section



Step 4: 

If we're going to use the data we collected within Nmap we can close the Ping Scan because we already have the lists of the hosts



Step 5:

To see how many ports Nessus will scan, analyze Nessus Services file




Step 6:

Add 1-65535 in the Port Scan Range field




SYN Scan is selected by default. If you like you can select TCP and or UDP scans as well.




Step 7:

Go to Advanced Section. 

Safe checks are enabled by default. 

We can select Scan IP addresses in a random order to make the scan a little more stealthy.





Step 8:

Edit Performance Options

Reduce the number of Max simultaneous host per scan to avoid delays and network traffic - 100

Max number of concurrent TCP sessions per host is not defined by default. We can define an upper bound to keep the host's safe - 800

Define a Max number of concurrent TCP sessions per scan to keep the network traffic safe - 2000




Step 9:

Disable Denial of Service under Plugin Tab, then click Save








No comments:

Powered by Blogger.