When pre-auth is enabled then you can also crack the password of users but there is a condition. You need to perform wireshark capture locally to capture the AS-REQ packet. And also require hashcat beta version. Hashcat beta version will give you one such mode that is not available in hashcat normal use exe.
The below two commands you need to run first one by one: docker run -itd --name=ramisec_nessus -p 8834:8834 ramisec/nessus docker exec -it ramisec_nessus /bin/bash /nessus/update.sh Username: admin And you need to change the password: #Enter the command line of the docker container docker exec -it ramisec_nessus bash #Execute the following commands in sequence # Enter this directory cd /opt/nessus/sbin # List logged in users ./nessuscli lsuser # Modify the password of the specified user (take admin as an example) ./nessuscli chpasswd admin After access to the nessus, make sure you turn off the automatic updates otherwise crack will not work after some time. Before any scan you need to run the update.sh command (shown above) to have the latest plugins. Now everytime your system reboots, your docker instance will be shutdown. You need to up it again manually. Here are the commands. 1. docker ps -a Now note down the container id. 2. docker start <container id> C
Comments
Post a Comment