# 停止服务 sudo systemctl stop nessusd
为防止更新失败导致扫描器停摆,建议备份当前的插件目录。如果不小心在更新中出错,这可以让你快速完成回滚。
Enter:
On a computer with internet access, go to the Tenable Offline Registration page and enter your Challenge Code and Activation Code.
It contains the plugins themselves, usually structured for compatibility with various Nessus versions.
Nessus update plugins can be downloaded from the official Tenable website, the company behind Nessus. These plugins are usually provided in a format specific to your Nessus installation, such as .tar.gz files for Linux systems.
Unauthorized sites often host modified archives. Attackers can alter the plugins to skip specific vulnerabilities on your network or execute malicious code on your scanner, compromising your entire security operation. 2. Legal and Compliance Violations
Nessus relies on frequent plugin updates to detect the latest vulnerabilities. In secure, air-gapped, or isolated environments, scanners lack direct internet access. Administrators must download these update packages manually to keep their scanners effective.
On Windows, run Command Prompt or PowerShell as Administrator.
Even with careful execution, offline plugin updates can fail. Here are the most frequent problems and their solutions:
Attackers frequently modify these archives to inject malicious plugins or backdoors into your scanner.
If you operate your Nessus scanner in a secure, air-gapped environment without direct internet access, Tenable provides a legitimate way to download the plugin archive manually:
在更新插件时,请停止运行中的 Nessus 服务,以避免文件占用冲突。