04 Running

Pretty plain jane, isn’t it? Well, don’t blame Victor. YOU didn’t pay anything for it, did you?!?!

Before I forget, go to File | Settings and click on the MySQL tab. Put your DB information in, that’s a good lad.

Now to work. Click on Communications | Connect which should launch a Connect dialog box. Put in the info. Save the password at your own discretion.

If you get the downloading plugins message, you probably did it all right up to this point.

Once it’s connected, it will tell you so in the area that I like to call the “Status Section”.

Now create a session. This is the scan job itself. Go to Session | New and the program will prompt you for a session name. Then we are presented with the Session Properties. In the first tab, Targets. click the Add button. You can add as many targets as you like, or do an entire subnet, or specify a range of addresses. I don’t know if there is a limit to the number of target items in the list, but I doubt you’d run into it if there was one.

Under Session Properties…well…I don’t really know what I’m doing here. I just check ‘em all. No, seriously, they all sound pretty good.

Ah, Port scans…I enabled them all in the bottom pane. What you want to do in the top pane is up to you–the full range that I plugged into the figure below may take a while, depending on how many hosts you’re scanning.

Of note, you don’t have to use the connection tab UNLESS you want to run NessusWX in batch mode. If you are running in batch mode from the command line, you have to have this connection info saved. It looks just like the connection dialog from before.

On the Plugins tab, check the plugin set box and then click Select Plugins. You can then pick and choose, or just click the Enable Non-DoS button. It will then ask you if you wish to enable all port scanners as well–you can click yes unless you have some specific requirement. Click close. Now click Apply. And you’re ready to go. To the next page.

Next: Returns