From ArchWiki

Nessus is a proprietary vulnerability scanner available free of charge for personal use. There are over 40,000 plugins covering a large range of both local and remote flaws.


Install the nessusAUR package.

Post-installation setup

Register your email at the tenable site and wait for your key to be emailed to you.


The nessusAUR package provides a nessusd.service unit file, see systemd#Using units for details.

Access the web interface at https://localhost:8834 and/or use the commandline interface (/opt/nessus/sbin/nessuscli). In most browsers, you will need to manually accept the SSL certificate you created for the server.


Stop nessusd.service before doing anything with nessuscli.

Activate the license:

# nessuscli fetch --register <Activation Code>

View your current license activation code:

# nessuscli fetch --code-in-use

Plugins update

Stop nessusd.service before doing anything with /nessuscli.

Update the plugins:

# nessuscli update --plugins-only


The package can be removed with pacman, but files created by Nessus, such as the plugin database it downloads, must be removed manually:

Note: This will delete your Nessus configuration files.
# rm -r /opt/nessus

See also