OpenVAS
De Linuxmemo.
Version du 31 mars 2013 à 09:00 par Linuxmemo (discuter | contributions)
The Open Vulnerability Assessment System (OpenVAS) is a framework of several services and tools offering a comprehensive and powerful vulnerability scanning and vulnerability management solution.
Sommaire |
Installation et setup
- Step 1: Configure OBS Repository
sudo apt-get -y install python-software-properties sudo add-apt-repository "deb http://download.opensuse.org/repositories/security:/OpenVAS:/UNSTABLE:/v5/xUbuntu_12.04/ ./" sudo apt-key adv --keyserver hkp://keys.gnupg.net --recv-keys BED1E87979EAFD54 sudo apt-get update
- Step 2: Quick-Install OpenVAS
sudo apt-get -y install greenbone-security-assistant gsd openvas-cli openvas-manager openvas-scanner openvas-administrator sqlite3 xsltproc
- Step 3: Quick-Start OpenVAS
(copy and paste whole block, during first time you will be asked to set a password for user "admin")
test -e /var/lib/openvas/CA/cacert.pem || sudo openvas-mkcert -q sudo openvas-nvt-sync test -e /var/lib/openvas/users/om || sudo openvas-mkcert-client -n om -i sudo /etc/init.d/openvas-manager stop sudo /etc/init.d/openvas-scanner stop sudo openvassd sudo openvasmd --migrate sudo openvasmd --rebuild sudo killall openvassd sleep 15 sudo /etc/init.d/openvas-scanner start sudo /etc/init.d/openvas-manager start sudo /etc/init.d/openvas-administrator restart sudo /etc/init.d/greenbone-security-assistant restart test -e /var/lib/openvas/users/admin || sudo openvasad -c add_user -n admin -r Admin
- Step 4: Log into OpenVAS as "admin"
Open https://localhost:9392/ or start "gsd" on a command line as a regular user (not as root!).
Clients
- OpenVAS-Client
/usr/bin/OpenVAS-Client
Obsolète car resté a la version du protocole OMP
- OpenVAS CLI
/usr/bin/omp
Ligne de commande
- Greenbone Security Assistant
Service web /usr/sbin/gsad
- Greenbone Security Desktop
/usr/bin/gsd
Service
- OpenVAS-Scanner
- OpenVas-Manager
- OpenVAS-Administrator
Data
- NVT's
- Results
- Configs
