Nessus uses "plugins" to detect vulnerabilities. In a standard setup, Nessus pulls these updates automatically from Tenable’s servers. However, for scanners located in or behind restrictive firewalls, you must download the all-2.0.tar.gz archive manually from a machine with internet access and transfer it to the scanner. How to Download the Newest Version
On your offline Nessus scanner, run the following command in the terminal/command prompt: Linux: /opt/nessus/sbin/nessuscli fetch --challenge download nessusupdateplugins all20targz new
C:\Program Files\Tenable\Nessus\nessuscli.exe fetch --challenge Nessus uses "plugins" to detect vulnerabilities
After the command completes, Nessus will begin "Processing Plugins." This can take anywhere from 10 to 30 minutes depending on your hardware. while this is happening. How to Download the Newest Version On your
Keeping your plugins updated is the only way to ensure your security audits catch the latest CVEs. By mastering the offline update process, you maintain a strong security posture without compromising the isolation of your most sensitive networks.
Once submitted, you will be provided with a link to download nessus-updates-plugins-all-2.0.tar.gz . Installing the Plugins Manually
This guide explains how to securely download the newest version of this archive and manually update your Nessus instance. What is the Nessus Plugins Archive?