Nessus - Activate Scenario

Suggested Reading: What is a Scenario?

Nessus is a commercial tool and therefore a valid license is necessary to activate its Scenario.

Tool Specific Permissions

Tenable’s Nessus offers a comprehensive set of application security scans. ZeroNorth integrates with Nessus, providing a way to orchestrate/automate Nessus scans of your infrastructure and applications.

Required items:

  • Access and connectivity to the Nessus server
  • API “Access Key” and “Secret Key” to the Nessus server

Activate Nessus Scenario

  1. Login to the web UI and then go to zn ADM > Scenarios .
  2. Locate the Nessus Scenario tile.
  3. Click on +Add Scenario to the bottom right of the tile.
  4. Select Scenario Configuration “nessus-web-application-test”

Items in bold are required.

Results

  • Scenario will become available as a drop down when creating a Policy
  • Scenario tile will change from “inactive” to “active”

Using Custom Nessus Policies

If you have a custom policy in your Nessus server that you want to use as a ZeroNorth Scenario, you can create a Custom Template in ZeroNorth which can then be used to activate a Scenario:

  1. Login to the ZeroNorth web UI and then go to zn ADM > Scenarios .
  2. Locate “Nessus” under Products .
  3. Click on the Nessus icon.
  4. In the subsequent screen, click on Add Custom Template
  5. In the Scenario Template input panel, enter:
  • Name

  • Integration Type - select this based on the type of scan that custom Nessus policy is. For example, select “instance” for a web application scan.

  • Nessus template ID - the UUID of the Nessus template

  • Nessus policy ID - the ID of the Nessus policy you want to use

  • Optionally, Description

  1. Click Save .

The template is now available for use in activating a Scenario.