Adding Nessus to your Kali Linux system starts with downloading the correct package from the Tenable website. This guide covers exactly how to download Nessus on Kali Linux, step by step, so you can start vulnerability scanning right away. Nessus is a powerful tool for security professionals, and getting it installed properly is your first move.
You might be wondering why you need Nessus on Kali. It’s simple: Kali Linux is built for penetration testing, and Nessus is one of the best vulnerability scanners out there. Combining them gives you a serious edge in finding weaknesses. Let’s get you set up without any hassle.
How To Download Nessus On Kali Linux
Before you start, make sure your Kali system is up to date. Open a terminal and run sudo apt update && sudo apt upgrade -y. This ensures you have the latest packages and avoids conflicts. You’ll also need a stable internet connection because the Nessus package is around 100 MB.
Head over to the Tenable website to grab the right file. You need the Nessus Essentials or Professional version, depending on your license. For most users, the free Essentials tier works fine for home labs and learning. The download page lists packages for different Linux distros, so pick the one for Debian-based systems (like Kali).
Here’s a quick overview of what you’ll do:
- Visit the Tenable downloads portal
- Select the Nessus version you need
- Choose the Debian/Ubuntu package (.deb file)
- Download it to your Kali machine
- Install it using dpkg or apt
Let’s break down each step so there’s no confusion.
Step 1: Access The Tenable Downloads Page
Open your web browser on Kali and go to the Tenable downloads section. The URL is usually https://www.tenable.com/downloads/nessus. You might need to create a free account if you haven’t already. Don’t worry, it’s quick and only requires an email address.
Once you’re logged in, you’ll see a list of Nessus versions. Choose “Nessus Essentials” if you’re just starting out. It’s free for up to 16 IP addresses, which is plenty for practice. For larger scans, you’d need a paid license.
Step 2: Select The Correct Package Format
Scroll down to the Linux section. You’ll see options like RPM, DEB, and tar.gz. Since Kali is based on Debian, you need the .deb file. Look for something like “Nessus-10.7.3-debian10_amd64.deb” or a similar name. The version number might differ, but the format stays the same.
Click the download link for the Debian package. Your browser will save the file, usually to the ~/Downloads folder. Make a note of the exact filename because you’ll need it later.
Step 3: Verify The Download (Optional But Recommended)
It’s a good habit to check the file integrity. Tenable provides SHA256 checksums on the download page. Copy the checksum value, then open a terminal in your Downloads folder. Run:
sha256sum Nessus-*.deb
Compare the output with the checksum from the website. If they match, your download is clean. If not, try downloading again. This step prevents corrupted files from messing up your installation.
Step 4: Install The Nessus Package
Now for the main event. In your terminal, navigate to the directory where the .deb file is located. Use cd ~/Downloads if it’s there. Then run:
sudo dpkg -i Nessus-*.deb
The asterisk acts as a wildcard, so it matches whatever version you downloaded. If you get dependency errors, run sudo apt install -f to fix them. This command installs any missing libraries.
Alternatively, you can use sudo apt install ./Nessus-*.deb. This method automatically resolves dependencies. Choose whichever you prefer. The installation takes about a minute.
Step 5: Start The Nessus Service
Once installed, you need to start the Nessus daemon. Run:
sudo systemctl start nessusd
To make it start automatically on boot, use:
sudo systemctl enable nessusd
Check the status with sudo systemctl status nessusd. It should show “active (running)”. If not, wait a few seconds and check again. The service takes a moment to initialize.
Step 6: Access The Nessus Web Interface
Open your browser and go to https://localhost:8834. You’ll see a warning about the SSL certificate. That’s normal for a self-signed cert. Click “Advanced” and proceed to the site. The first time you access it, Nessus will ask you to set up an account.
Create a username and password. Use something you’ll remember, but make it strong. Then choose your activation code. For Nessus Essentials, you’ll get a code via email after registering on Tenable’s site. Enter that code, and the setup will finish.
Nessus will then download plugins. This can take 10-20 minutes depending on your internet speed. Be patient. Once it’s done, you’ll see the main dashboard. You’re ready to scan!
Common Installation Issues And Fixes
Sometimes things don’t go smoothly. Here are a few problems you might run into and how to solve them.
Dependency Errors During Installation
If dpkg complains about missing packages, don’t panic. Just run sudo apt --fix-broken install. This command will automatically install the required dependencies. After that, try installing the Nessus package again.
Nessus Service Won’t Start
Check the logs with sudo journalctl -u nessusd -n 50. Look for error messages. A common issue is port 8834 being already in use. Run sudo netstat -tulpn | grep 8834 to see if something else is using it. If so, stop that service or change Nessus’s port.
Browser Can’t Connect To Localhost:8834
Make sure the Nessus service is running. Also, check your firewall. Kali usually has no firewall by default, but if you added one, allow traffic on port 8834. You can test with curl -k https://localhost:8834. If you get a response, the web interface is up.
Updating Nessus On Kali Linux
Nessus updates itself automatically for plugins, but the core software needs manual updates. To check for a new version, go to the Tenable downloads page again. Download the latest .deb file and install it over the old one:
sudo dpkg -i Nessus-new-version.deb
This will upgrade your installation without losing your scans or settings. After the upgrade, restart the service with sudo systemctl restart nessusd.
You can also use the Nessus command-line tool for updates. Run sudo /opt/nessus/sbin/nessuscli update to force a plugin update. This is useful if you need the latest vulnerabilities right away.
Uninstalling Nessus If Needed
Maybe you want to remove Nessus for some reason. It’s straightforward. First, stop the service:
sudo systemctl stop nessusd
Then remove the package:
sudo dpkg -r nessus
To remove configuration files as well, use sudo dpkg --purge nessus. This cleans up everything. Your scans and settings are stored in /opt/nessus, so delete that folder manually if you want a complete removal.
Tips For Using Nessus On Kali
Now that you know how to download Nessus on Kali Linux, here are some tips to get the most out of it.
- Always run Nessus as a non-root user for security. The service runs as root internally, but you don’t need to be root to access the web interface.
- Use Nessus Essentials for learning. It’s free and gives you access to most features. Upgrade only if you need to scan more than 16 IPs.
- Schedule scans during off-hours. Vulnerability scanning can be noisy and might disrupt networks. Plan accordingly.
- Combine Nessus with other Kali tools. For example, use Nmap for initial discovery, then Nessus for deep vulnerability checks.
- Keep your Kali system updated. Regular updates ensure compatibility and security.
Frequently Asked Questions
Can I download Nessus on Kali Linux without an internet connection?
No, you need internet to download the package from Tenable. However, you can download the .deb file on another machine and transfer it via USB. Then install it offline using dpkg.
Is Nessus free for Kali Linux users?
Yes, Nessus Essentials is free for home and educational use. It supports up to 16 IP addresses. For professional use, you’ll need a paid license like Nessus Professional.
How do I get an activation code for Nessus on Kali?
Register on Tenable’s website for a free account. They’ll send you an activation code via email. Use that code during the web interface setup.
What if I download the wrong package for Kali?
If you download the RPM package by mistake, it won’t install on Kali. Just delete it and download the correct .deb file. The Tenable site clearly labels each package.
Can I use Nessus on older versions of Kali?
Yes, as long as your Kali version is based on Debian 10 or later. Older versions might have compatibility issues. Check the Nessus system requirements on Tenable’s site.
Final Thoughts
You now know exactly how to download Nessus on Kali Linux. The process is simple: get the .deb file from Tenable, install it with dpkg, start the service, and set up the web interface. With Nessus running, you can start finding vulnerabilities in your targets.
Remember to keep your tools updated and practice ethical hacking. Nessus is a powerful scanner, but it’s only as good as the person using it. Use it responsibly and always have permission before scanning systems.
If you run into any issues, the Tenable forums and Kali community are great resources. Don’t hesitate to ask for help. Happy scanning, and stay secure out there.