Install OpenVas9 in Ubuntu Server
-
(ModEdit)
OpenVAS - Open Vulnerability Assessment Scanner
OpenVAS is a full-featured vulnerability scanner. Its capabilities include unauthenticated testing, authenticated testing, various high level and low level Internet and industrial protocols, performance tuning for large-scale scans and a powerful internal programming language to implement any type of vulnerability test.
1- Download and install Ubuntu 18.04 on Server.
https://ubuntu.com/download/server
2- Upgrade OS to latest updates performing
sudo apt update && sudo apt upgrade3- Add Software APt for OpenVas
sudo apt-get install software-properties-common4- Add OpenVas Repository
sudo add-apt-repository ppa:mrazavi/openvas sudo apt-get update sudo apt install openvas9 sudo apt install sqlite3 sudo greenbone-nvt-sync sudo greenbone-scapdata-sync sudo greenbone-certdata-sync sudo service openvas-scanner restart sudo service openvas-manager restart sudo openvasmd --rebuild --progress5- To enable pdf reports:
sudo apt install texlive-latex-extra --no-install-recommends sudo apt install texlive-fonts-recommended --no-install-recommends-To install openvas-nasl utility
sudo apt install libopenvas9-dev7- Access your Openvas to your Ubuntu Server IP address, i.e. https://192.168.x.x:4000. Username and password by default is admin/admin
-
Why 18.04?
-
@JaredBusch said in Install OpenVas9 in Ubuntu Server:
Why 18.04?
At the moment is just dependency on the package (supposedly supported) but it shouldn’t matter. You are correct, it can run in 19.04.
-
@dbeato I understand OpenVas is a vulnerability scanner. Do you set it up to automatically scan hosts on the LAN or how does it work?
-
@Pete-S said in Install OpenVas9 in Ubuntu Server:
@dbeato I understand OpenVas is a vulnerability scanner. Do you set it up to automatically scan hosts on the LAN or how does it work?
I am going to post another post of how it works. Basically you can run scan on demand or scheduled on a hourly, daily, weekly or monthly basis.
-
@dbeato said in Install OpenVas9 in Ubuntu Server:
@Pete-S said in Install OpenVas9 in Ubuntu Server:
@dbeato I understand OpenVas is a vulnerability scanner. Do you set it up to automatically scan hosts on the LAN or how does it work?
I am going to post another post of how it works. Basically you can run scan on demand or scheduled on a hourly, daily, weekly or monthly basis.
Great! I look forward to that.
-
@dbeato Thank-you sir ! Very nice and actually rather apropos for an existing location that I have particular concerns about.
-
the thing is openvas versions is all over the place, dont they have a new version 10 right now, a month ago it was on 8 .
-
@Emad-R said in Install OpenVas9 in Ubuntu Server:
the thing is openvas versions is all over the place, dont they have a new version 10 right now, a month ago it was on 8 .
how is that all over the place? They had 8, it is now 9, and 10 will be the next one. That's not "all over the place", that's a "normal sequence".
Now Windows, that's all over the place.
-
if you ask me they are going commercial also version 10 is called something else with diff naming
-
@Emad-R said in Install OpenVas9 in Ubuntu Server:
if you ask me they are going commercial also version 10 is called something else with diff naming
All they did is rename OpenVAS to Greenbose Vulnerability Management (GVM). Nearly every product renames at some point. They didn't even change the versions, though, so it couldn't be less erratic.
OpenVAS 8 (Released before 2017)
OpenVAS 9 (Released 2017)
GVM 10 (Released 2019)8... 9... 10... in order.
GVM 10 isn't commercial, it's still open source.
-
@Emad-R said in Install OpenVas9 in Ubuntu Server:
the thing is openvas versions is all over the place, dont they have a new version 10 right now, a month ago it was on 8 .
It was 8 then 9 and the 10 version is GVM. I am testing it still but hasn’t been stable for me yet.
