Tenable's Nessus vulnerability scanner in a distroless container. Uses cgr.dev/chainguard/wolfi-base image with zero CVEs and minimal size.
Caution
Due to drastic changes in the licensing mode of the Essentials version, where previously there were 16 IP addresses and no time limit, today this value is reduced to just 5 addresses and database with 30 days of delay. Other than the availability of an official image, this project is now closed.
This project was a school for me, from the use of Docker, multi stage build, to CI, distroless among other resources.
I recommend you check out my new project, all based on open source and which should fill the gap for this one: vulscan.
Warning
The content of this repo is licensed under GPL-3.0 license. You will need to check the Nessus scanner license if you want any other commercial use.or commercial use.
- Docker/Podman/nerdctl
- Nessus License
docker container run -td --name nessus -p 8834:8834 -v \
/etc/localtime:/etc/localtime ciromota/nessus-scanner:latest- Uncomment line 5 in
docker-compose.ymlfor build and run.
docker-compose up -dAccess: https://localhost:8834
# Docker
docker buildx build -t ciromota/nessus-scanner:latest .
# Podman
podman build -t ciromota/nessus-scanner:latest .
# nerdctl
nerdctl image build -t ciromota/nessus-scanner:latest .
# Docker-Slim
docker-slim build --dockerfile Dockerfile --show-blogs --tag ciromota/nessus-scanner.slim .