Tenable's Nessus Scanner is a vulnerability scanner that looks for known vulnerabilities, malware, configuration issues, etc. both through network inspection of hosts and through authenticated analysis of the host itself. For more information about Nessus, please consult the following links:
The github repository for the build files is located here.
Each image is tagged with the major, minor, and patch releases. The most current image is always tagged as "latest". For the current listing of tags, please refer to the tags tab for a current listing.
docker volume create nessus_scanner_var
docker run -dt \
-v nessus_scanner_var:/opt/nessus/var/nessus\
-e LINKING_KEY={LINKING_KEY}\
-e SCANNER_NAME={SCANNER_NAME}\
--name nessus_scanner
stevemcgrath/nessus_scanner:latest
/opt/nessus/binand/opt/nessus/sbinhave been added to the system $PATH variable.nessus_adduser.exphas been loaded into/usr/binto facilitate in programmatic user creation when necessary.nessus.shhas been loaded into/usr/binas a wrapper to configure the Nessus daemon before launch.
- LINKING_KEY (required) - Linking key to use for linking the scanner to Tenable.io
- LICENSE (required) - Activation code (if not a Tenable.io linked scanner)
- SECURITYCENTER (required) - If the scanner is to be SecurityCenter linked, then simply set this variable to "Yes" instead of setting a LICENSE or LINKING_KEY variable.
- SCANNER_NAME (optional) - Override the default behavior of registering with the hostname
- MANAGER_HOST (optional) - Nessus Manager address
- MANAGER_PORT (optional) - Nessus Manager service port
- PROXY_HOST (optional) - Proxy address
- PROXY_PORT (optional) - Proxy service port
- PROXY_USER (optional) - Proxy account username
- PROXY_PASS (optional) - Proxy account password
- PROXY_AGENT (optional) - Proxy agent string
- ADMIN_USER (optional) - Username for admin user creation
- ADMIN_PASS (optional) - Password for admin user creation