Run the nessuscli tool pointing to the path of your downloaded archive: /opt/nessus/sbin/nessuscli update /tmp/all-2.0.tar.gz Use code with caution. Installing on Windows
This is an official Tenable filename as of 2025; rather, it resembles a bundle created by an administrator, a third-party tool, or an older Nessus release (pre-Nessus 6/7/8/10 era). In modern Nessus (versions 8.x, 10.x), the command is nessuscli update <file> and the official plugin feeds have names like all-2.0.tar.gz (without the nessus-update-plugins prefix) or nessus-updates-<timestamp>.tar.gz .
The extraction and compilation phases require significant storage infrastructure. Ensure your host machine has at least 30 GB to 40 GB of free storage space available on the installation drive before running the update.
After successfully downloading the nessus-update-plugins-all-2.0.tar.gz file, follow these steps to install the plugins: download nessus-update-plugins all-2.0.tar.gz
The command will extract the archive and install the plugins. This process can take several minutes.
/opt/nessus/sbin/nessuscli --version
Run the installation command via your command-line interface. Replace with the actual location of your downloaded archive. Run the nessuscli tool pointing to the path
Security professionals frequently need to update vulnerability scanners in isolated environments. Tenable Nessus relies on regular plugin updates to detect the latest security threats. When a Nessus scanner lacks direct internet access, administrators use an offline update bundle.
An online Nessus scanner fetches these updates automatically. An offline scanner requires a manual file transfer.
C:\Program Files\Tenable\Nessus\nessuscli.exe update "C:\path\to\all-2.0.tar.gz" This process can take several minutes
You cannot download the current plugin archive via a direct, static URL. Tenable secures the download using a challenge-and-response system tied to your specific license. Follow these steps to generate the custom download link: 1. Obtain Your Challenge Code
This is an important security note for advanced users who might be dealing with older Nessus versions or alternative scripts. The original, old GPL version of the plugin updater ( nessus-update-plugins-gpl ) retrieved plugins from an unencrypted HTTP source ( http://www.nessus.org/nasl/all-2.0.tar.gz ) and did not use cryptographic signatures to verify the file's authenticity.
By mastering the offline update process, you ensure that even the most isolated, high-security networks are protected against the latest vulnerabilities. Follow the steps outlined in this guide, respect the security considerations, and you will maintain a powerful, up-to-date Nessus scanner ready to defend your digital infrastructure.