• Log in, click "Scans," and click "Add." The scan configuration screen will appear.

Image Modified

• Configure the scan:
  1. Assign a name to the scan for your own reference
  2. Select "Run Now" to start the scan as soon as soon as you're finished with its configuration
  3. Select the "Default Tufts Scan" policy to use the most common scan policy
     1. Decide whether to include an ICMP ping before scanning each host (e.g., scanning a whole subnet) or not to ping, and assume that all hosts are live (e.g., scanning a few hosts you know are live)
  4. List the target(s): 
     by single IP address (e.g., 192.168.0.1) 
     by IP range (e.g., 192.168.0.1-192.168.0.255) 
     by subnet with CIDR notation (e.g., 192.168.0.0/24) 
     or by resolvable host (e.g., www.nessus.org). 
     Only scan hosts you own or control. You are responsible for the results of your scans.

• Click "Run Scan." The scan will start and Nessus will display a progress meter based on the number of IPs which have been scanned.

• Allow the scan to run. When it's complete, it will move from the Scans section to the Reports section.

• Click Reports, select the report for your scan, and click Browse. This will display a list of the target hosts for this scan. Click on a host to view its results.

• Click a host name or IP address to open its results. This will display a list of the open ports found on the host. Click on a port number to view the information collected for that port.
• Click the scan name to return to the list of hosts in the scan.

• Click on a port to see the results of the analysis of that port.

• Click on a plugin/analysis to see the vulnerability assessment for that port. Determine whether it's a problem that needs to be remediated, or just an informational notice.
• Click the host name to return to the list of ports for that host.