Exercise 8-3: Playing with dpkg-deb

Exercise 3, Chapter 8 – Playing with dpkg-deb

In this exercise, we want to install Nessus. Nessus is not a simple apt-get installation. It is a process:

Downloading the .deb file from Nessus
Install .deb with dpkg
Register Nessus and get an activation code by email
Generate a challenge code with nessuscli in Kali
Submit the challenge and activation to get access to plugins
Download plugins and install them

This is a long process and isn’t simple. Using the skills we demonstrated in this chapter, download and install Nessus and create a package that includes the plugins and installs them, automatically.

Find, download, install and register the Free Nessus Debian package.
Instead of programmatically installing the plugins through the Nessus web interface, save the plugins to a local file.
Slipstream the signatures into the Nessus .deb package so that you will be able to install Nessus (say across multiple computers), without having each computer re-download the signatures.
Create a new Nessus .deb package that automatically installs the plugins.

Show Answer

First, you’ll have to install Nessus the “standard” way. There are lots of steps. This video solution shows the process in more detail.

The details for the packages are on this page and this page.

Next, with Nessus properly installed, we can modify the package.

1. Extract the package. Are you copy and pasting? Note that your version numbers may differ.

root@kali:~/Downloads# dpkg-deb -R Nessus-6.9.0-debian6_amd64.deb nessus #Raw extract the package

1	root@kali:~/Downloads# dpkg-deb -R Nessus-6.9.0-debian6_amd64.deb nessus #Raw extract the package

2. List the contents of the package:

ls -lR ./nessus

1	ls -lR ./nessus

4. Copy the plugins file to /root/opt/nessus/var/nessus:

cp /root/Downloads/all-2.0.tar.gz nessus/opt/nessus/var/nessus

1	cp /root/Downloads/all-2.0.tar.gz nessus/opt/nessus/var/nessus

Edit the Debian postinst file, find this section, make changes as appropriate:

nano nessus/DEBIAN/postinst

1	nano nessus/DEBIAN/postinst

5. Edit the postinst file to import the offline signatures. Add somewhere in postinst:

echo "UBERHAX - Updating plugins from local file..."
rm -f ${NESSUS_PREFIX}/lib/nessus/plugins/MD5
${NESSUS_PREFIX}/sbin/nessuscli update ${NESSUS_PREFIX}/var/nessus/all-2.0.tar.gz
${NESSUS_PREFIX}/sbin/nessusd -R

test -f ${NESSUS_PREFIX}/etc/nessus/nessus-fetch.rc && {
        echo "Fetching the newest plugins from nessus.org..."
        rm -f ${NESSUS_PREFIX}/lib/nessus/plugins/MD5
        ${NESSUS_PREFIX}/sbin/nessuscli update --plugins-only
        ${NESSUS_PREFIX}/sbin/nessusd -R
}

echo "UBERHAX - Updating plugins from local file..."

rm -f ${NESSUS_PREFIX}/lib/nessus/plugins/MD5

${NESSUS_PREFIX}/sbin/nessuscli update ${NESSUS_PREFIX}/var/nessus/all-2.0.tar.gz

${NESSUS_PREFIX}/sbin/nessusd -R

test -f ${NESSUS_PREFIX}/etc/nessus/nessus-fetch.rc && {

echo "Fetching the newest plugins from nessus.org..."

rm -f ${NESSUS_PREFIX}/lib/nessus/plugins/MD5

${NESSUS_PREFIX}/sbin/nessuscli update --plugins-only

${NESSUS_PREFIX}/sbin/nessusd -R

}

Let’s put icing on the cake and clean up after ourselves. Delete that signature file to save space. We will do this in the postrm file:

rm -f ${NESSUS_PREFIX}/var/nessus/all-2.0.tar.gz

1	rm -f ${NESSUS_PREFIX}/var/nessus/all-2.0.tar.gz

Repackage the deb file. Your version may vary:

dpkg-deb -b nessus nessus_6.9.0_amd64.deb

1	dpkg-deb -b nessus nessus_6.9.0_amd64.deb

Asciinema solution (copy and paste from video permitted):

← Previous Topic