• Sep 26thNessus Bridge for Metasploit :: Intro

      One of the most frustrating things for me when I started with metasploit (known as msf from here in) was not exploiting something, but finding something to exploit.  I had all these exploits at my finger tips but my ability to find something to pwn was limited by having to move back and forth between a bunch of tools and cross reference things.

      This changed when I did my PwB v3 course, I got much better at determining when and how to use msf to take advantage of something I found.  There was still a lot of moving between tools but I was at least able to identify vulnerable hosts.

      I use Nessus in my day job to scan for vulns and sometimes I need to be able to turn those results into demonstrations or do false positive checking.  It was a little annoying to run the scan either from the cli, or usually from the Nessus Web Client and then have to manually import the Nessusv2 report.

      At the same time MSF Express came out.  WoW, that is some slick shit.

      I got to thinking, why not code a plugin that can do some limited stuff over xmlrpc from within the msfconsole and give me the ability to at least import my scan without having to go download it, transfer it over and then delete it.

      So the Nessus Bridge for Metasploit was born. (Still in dev, so please report bugs)

      The general concept is to allow you to do various tasks with your Nessus server, from within the msf command line.  By that I mean scan with Nessus, review the results, import the results and then exploit the results.

      These next few blog posts will be some pointers on what it can (and can’t) do and how to use it.

      Commands are broken up into the following categories and I will be covering each category in a separate entry.

      • Generic Commands
      • Reports Commands
      • Scan Commands
      • Plugin Commands
      • User Commands
      • Policy Commands

      Click though each link to see a more detailed explanation of the commands available for each category and how to use them


      This entry was posted in Bananas, Security, Stuff, Technology, Things and tagged Bridge, Commands, finger, generic commands, intro one, Metasploit, msf, nessus server, pwb, report bugs by Zate and comments are closed.

      • Comments

        1. Anil says:
          October 1, 2010 at 2:45 am

          Policy Commands:-
          how about including a policy command for creating new policy.

        2. Zate says:
          October 1, 2010 at 7:48 am

          Absolutely, It’s on the list of things I can add. also looking to add template support so you can setup different scan types and create scans based on them.

        3. denied39 says:
          October 1, 2010 at 10:18 am

          Do you know if this will get added to Metasploit Express? We already use Nessus in house and I can’t see making the change to Nexpose, but the add-in to Express would be perfect. Great job by the way!

        4. Zate says:
          October 1, 2010 at 10:20 am

          I doubt it, Express is purely Rapid7. I am toying with the idea of creating something that ties Nessus xmlrpc and Msf xmlrpc together in a web interface though.

        5. bla says:
          October 22, 2010 at 4:17 am

          Is it possible to use OpenVAS instead of Nessus ?

        6. cozmic says:
          December 1, 2010 at 6:19 am

          Zate, awesome plugin, thanks! But does the plugin work with Nessus 4.4?

        7. Zate says:
          December 2, 2010 at 10:47 am

          Yep works with 4.4

        Pings & Trackbacks

        1. Tweets that mention Nessus Bridge for Metasploit :: Intro | Things and Stuff -- Topsy.com says:
          September 26, 2010 at 1:22 pm

          [...] This post was mentioned on Twitter by Rob Fuller, ChrisJohnRiley, jcran, zate, Cteodorski and others. Cteodorski said: RT @mubix: RT @zate: [Blog Post] http://bit.ly/cytlff Intro to Nessus for Metasploit. // NICE work!! [...]

        2. Nessus Bridge for Metasploit :: Report Commands | Things and Stuff says:
          September 27, 2010 at 6:51 pm

          [...] to part 3 of my Nessus Bridge for Metasploit coverage.  Here is part 1 and part 2 if you are just joining [...]

        3. Nessus Bridge for Metasploit by Zate | Phenotyne says:
          September 28, 2010 at 2:22 pm

          [...] have full control of Nessus with auto import all handled from the cli of Metasploit.  Here is Part 1, Part 2, and Part 3 of making it all work [...]

        4. Nessus Bridge for Metasploit :: Scan Commands | Things and Stuff says:
          September 28, 2010 at 5:45 pm

          [...] to part 4 of my Nessus Bridge for Metasploit coverage.  Here is part 1 and part 2 and part 3 if you are just joining [...]

        5. Brincando com o plugin do Nessus para o Metasploit | Alexos Core Labs says:
          September 28, 2010 at 6:41 pm

          [...] o desenvolvedor Zate Berg disponibilizou um plug-in do Nessus para o Metasploit Framework ele está disponivel na versão em [...]

        6. Notes for Linux Basix Eps24 | Information Technology Enthusiast says:
          October 1, 2010 at 10:41 pm

          [...] Tech segment: “Nessus Bridge for Metasploit ” [...]

        7. Nessus Bridge for Metasploit :: Plugin Commands | Things and Stuff says:
          October 6, 2010 at 9:05 pm

          [...] to part 5 of my Nessus Bridge for Metasploit coverage.  Here is part 1, part 2 , part 3 and part 4 if you are just joining [...]

        8. IVIL : An XML schema to exchange vulnerability information | Cupfighter.net says:
          October 18, 2010 at 10:57 am

          [...] Friday I had the pleasure of discussing security software with Zate, the author of the Nessus Bride for the Metasploit framework. During the conversions we both agreed that it would be very practical if there was a way to make [...]

        9. Nessus Via Msfconsole | angger's blog says:
          February 25, 2011 at 11:57 pm

          [...] directly from within msfconsole. The Nessus Bridge, written by Zate and covered in detail at http://blog.zate.org/2010/09/26/nessus-bridge-for-metasploit-intro/ uses xmlrpc to connect to a server instance of Nessus, allowing us to perform and import a [...]

        10. Attack Attack » Using Nessus and Metasploit Together says:
          August 9, 2011 at 1:38 am

          [...] the Nessus API, which lets users programmatically interface with a Nessus server using XMLRPC. Zate Berg took the initiative to write modules in Metasploit that, among other things, can launch a Nessus scan and import the results into the Metasploit [...]

        11. AP¹ [ ALMIGHTY ] | Nessus Via Msfconsole says:
          May 20, 2013 at 5:24 am

          [...] server directly from within msfconsole. The Nessus Bridge, written by Zate and covered in detail at http://blog.zate.org/2010/09/26/nessus-bridge-for-metasploit-intro/ uses xmlrpc to connect to a server instance of Nessus, allowing us to perform and import a [...]

    • Leave a Reply Cancel reply

      Your email address will not be published. Required fields are marked *

      *

      *

      You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>

    • ‹ Older Post Newer Post ›

      Good Old Fashioned Hand Written Code by Eric J. Schwarz

        Things and StuffA Blog about things and stuff.

      • About
      • Hacker Fiction.
      • Nessus Plugin
      • Recommended Books