OpenVAS
OpenVAS stands for Open Vulnerability Assessment System and is a network security scanner with associated tools like a graphical user front-end. The core component is a server with a set of network vulnerability tests (NVTs) to detect security problems in remote systems and applications.
Contents
Installation
Install the openvas group from the official repositories.
Initial setup
Create a certificate for the server, choosing the default values if desired:
# openvas-mkcert
Create a client certificate:
# openvas-mkcert-client -n -i
Update the plugins and vulnerability data:
# openvas-nvt-sync # openvas-scapdata-sync # openvas-certdata-sync
Start the scanner service:
# systemctl start openvas-scanner
Rebuild the database:
# openvasmd --rebuild --progress
Add an administrator user account:
# openvasmd --create-user=admin --role=Admin
Usage
The openvas-cli package provides the command-line omp
interface. The greenbone-security-assistant package provides a web interface via the gsad
daemon.
See Also
- OpenVAS Official OpenVAS website.