OpenVAS
De Linuxmemo.
Version du 2 avril 2013 à 11:45 par Linuxmemo (discuter | contributions)
The Open Vulnerability Assessment System (OpenVAS) is a framework of several services and tools offering a comprehensive and powerful vulnerability scanning and vulnerability management solution.
Sommaire |
Installation et setup
- Step 1: Configure OBS Repository
sudo apt-get -y install python-software-properties sudo add-apt-repository "deb http://download.opensuse.org/repositories/security:/OpenVAS:/UNSTABLE:/v5/xUbuntu_12.04/ ./" sudo apt-key adv --keyserver hkp://keys.gnupg.net --recv-keys BED1E87979EAFD54 sudo apt-get update
- Step 2: Quick-Install OpenVAS
sudo apt-get -y install greenbone-security-assistant gsd openvas-cli openvas-manager openvas-scanner openvas-administrator sqlite3 xsltproc
- Step 3: Quick-Start OpenVAS
(copy and paste whole block, during first time you will be asked to set a password for user "admin")
test -e /var/lib/openvas/CA/cacert.pem || sudo openvas-mkcert -q sudo openvas-nvt-sync test -e /var/lib/openvas/users/om || sudo openvas-mkcert-client -n om -i sudo /etc/init.d/openvas-manager stop sudo /etc/init.d/openvas-scanner stop sudo openvassd sudo openvasmd --migrate sudo openvasmd --rebuild sudo killall openvassd sleep 15 sudo /etc/init.d/openvas-scanner start sudo /etc/init.d/openvas-manager start sudo /etc/init.d/openvas-administrator restart sudo /etc/init.d/greenbone-security-assistant restart test -e /var/lib/openvas/users/admin || sudo openvasad -c add_user -n admin -r Admin
- Step 4: Log into OpenVAS as "admin"
Open https://localhost:9392/ or start "gsd" on a command line as a regular user (not as root!).
Clients
- OpenVAS-Client - Obsolète car resté a la version du protocole OMP
/usr/bin/OpenVAS-Client
- OpenVAS CLI - Ligne de commande
/usr/bin/omp omp -h 127.0.0.1 -p 9390 -u admin -w pass -X '<help/>'
Ref des commandes OMPv3: http://www.openvas.org/omp-3-0.html
- Greenbone Security Assistant - Service web
/usr/sbin/gsad
- Greenbone Security Desktop - Programme client "bureau"
/usr/bin/gsd
Service
- OpenVAS-Scanner
le scanner OpenVAS
- OpenVas-Manager
fonctionnalités pour gérer et organiser les résultats de l'analyse, agit comme une couche entre le scanner OpenVAS et ses clients
- OpenVAS-Administrator
openvasad gestion des comptes utilisateur et la gestion des feeds openvasad --enable-modify-settings -c set_role -u openvas -r Admin openvasad --enable-modify-settings -c <modify_user> <name>Foobar</name> <password modify="0"> </password> <role>Admin</role> <hosts allow="0"> </hosts> </modify_user> -u admin
Ref des commandes OAP: http://www.openvas.org/openvas-cr-30.html
Data
- NVT's
For online-synchronisation use the command
openvas-nvt-sync
to update your local NVTs with the newest ones from the feed service. The command allows rsync, wget or curl as transfer method. The feed is usually updated every weekday.
- Results
- Configs
Metasploit plugin
load openvas openvas_connect admin pass 127.0.0.1 9390 openvas_help openvas_target_create <name> <hosts> <comment> openvas_config_list openvas_task_create <name> <comment> <config_id> <target_id> openvas_task_start <id> openvas_task_list
Bugs
- Failed to receive data: A TLS packet with unexpected length was received.