Download Nessusupdateplugins All20targz New [better]
Nessus offline updates allow administrators to keep their vulnerability scanners current without a direct internet connection. This is essential for secure, air-gapped environments. Mastering the Offline Update: Using the Nessus Tar.gz
Keeping your Nessus scanner updated in a restricted network requires a manual touch. While most modern tools rely on a constant "home" connection, high-security environments often use the all-2.0.tar.gz archive to bridge the gap. Why Update Manually? Air-Gapped Security: Protects the scanner from external threats. Regulatory Compliance: Meets strict "no-internet" policy requirements. Controlled Rollouts: Allows teams to test plugin sets before deployment. 🛠️ The Prerequisites Before you start the process, ensure you have: Administrative access to the Nessus host (Linux or Windows). Your unique Challenge Code from the Nessus UI (Settings > Activation Code). A machine with internet access to download the all-2.0.tar.gz 🚀 Step-by-Step Implementation 1. Generate the Download Link
You cannot download the file directly from a static URL. You must visit the Tenable Offline Registration Enter your Challenge Code Enter your Activation Code
Submit to receive the unique download link for the plugin archive. 2. Transfer the File all-2.0.tar.gz
file to your offline Nessus server using a secure method like a hardened USB drive or a cross-domain transfer solution. 3. Execute the Update Use the command line to tell Nessus to ingest the new data. For Linux: /opt/nessus/sbin/nessuscli update all- Use code with caution. Copied to clipboard For Windows: powershell # Run as Administrator C:\Program Files\Tenable\Nessus\nessuscli.exe update all- Use code with caution. Copied to clipboard 4. Restart the Service
After the command finishes, restart the Nessus service to begin the plugin compilation process. Note that the UI may be slow for several minutes while it processes the new definitions. ⚠️ Common Troubleshooting Corrupt Archives:
If the update fails, verify the MD5 hash provided on the download page. Expired Links: download nessusupdateplugins all20targz new
The download link generated by Tenable is temporary. If the download stalls, you must re-generate the link. Disk Space:
Ensure you have at least 5GB of free space, as the plugin expansion process is resource-heavy.
To download the all-2.0.tar.gz file for manual Nessus plugin updates, you must first generate a unique download URL through Tenable's offline registration process. This file contains the complete set of plugins required for an offline or air-gapped installation. 1. Obtain the Download URL
The download link is not public and is tied to your specific activation code.
Generate a Challenge Code: On your Nessus host, run the following command to get a challenge code: Linux: /opt/nessus/sbin/nessuscli fetch --challenge
Windows: "C:\Program Files\Tenable\Nessus\nessuscli.exe" fetch --challenge Nessus offline updates allow administrators to keep their
Visit the Registration Page: Go to the Tenable Offline Activation Page in a web browser.
Submit Codes: Enter your Challenge Code and your Nessus Activation Code.
Save the URL: After submitting, you will be provided with a unique link that looks like https://plugins.nessus.org/get.php?f=all-2.0.tar.gz&u=.... Save this URL, as it can be reused for future updates. 2. Install the Plugins
Once you have downloaded the all-2.0.tar.gz file, you can install it via the UI or CLI. Option A: Command Line (Recommended)
Place the file on the Nessus host and run the update command: Linux: /opt/nessus/sbin/nessuscli update all-2.0.tar.gz
Windows: "C:\Program Files\Tenable\Nessus\nessuscli.exe" update all-2.0.tar.gz Python Script Example: import requests import tarfile import
macOS: /Library/Nessus/run/sbin/nessuscli update all-2.0.tar.gz Option B: User Interface Log in to Nessus as an administrator. Navigate to Settings > About > Software Update. Click Manual Software Update.
Select Upload your own plugin archive, choose your file, and click Continue.
Note: After installation, Nessus must process the new plugins, which may take 10–15 minutes before they appear in the "Plugin Set" version under the About page. Install Plugins Manually (Tenable Nessus 10.12)
Here’s a review of the process for downloading NessusUpdatePlugins-all-20.tar.gz (or the typical naming like NessusUpdatePlugins-<version>-tar.gz for Nessus version 20.x):
Security Activity Report: Nessus Plugin Download
Report ID: SOC-2024-10-25-001 Date/Time: [Insert Current Date/Time] Analyst: [Your Name / Automated System]
Method 2: Manual Extraction (Legacy)
For older Nessus versions expecting all-2.0.tar.gz:
cd /opt/nessus/var/nessus/
tar -xzvf /path/to/all-2.0.tar.gz
/etc/init.d/nessusd restart
Python Script Example:
import requests
import tarfile
import hashlib
import os
def download_nessus_plugin(url, target_dir):
# Download the plugin
response = requests.get(url)
if response.status_code != 200:
print(f"Failed to download plugin. Status code: response.status_code")
return
# Save the plugin to a temporary file
tmp_file_path = os.path.join(target_dir, 'temp.tar.gz')
with open(tmp_file_path, 'wb') as file:
file.write(response.content)
# Validate the plugin (simple example with SHA256)
expected_hash = 'your_expected_hash_here'
with open(tmp_file_path, 'rb') as file:
actual_hash = hashlib.sha256(file.read()).hexdigest()
if actual_hash != expected_hash:
print("Plugin file validation failed.")
return
# Extract and install the plugin
try:
tar = tarfile.open(tmp_file_path, 'r:gz')
tar.extractall(target_dir)
tar.close()
os.remove(tmp_file_path)
print("Plugin installed successfully.")
except Exception as e:
print(f"Failed to extract or install plugin: e")
# Usage
url = 'https://example.com/nessus-plugins/all-20.tar.gz'
target_dir = '/path/to/nessus/plugins'
download_nessus_plugin(url, target_dir)
Step 1: Get the Official Checksum
On the same Tenable portal page where you downloaded the file, look for an MD5 or SHA256 hash next to the download link. Copy it.