From Fedora Project Wiki
No edit summary
No edit summary
Line 2: Line 2:
|description=Using OpenVAS to scan a hosts or network for vulnerabilities.
|description=Using OpenVAS to scan a hosts or network for vulnerabilities.
|setup=
|setup=
* A remote host with various network services (SSH, HTTP, DNS, SMTP ...).
* '''Requirements:'''A remote host with various network services (SSH, HTTP, DNS, SMTP ...).
For example: a Linux server with OpenSSH, Apache HTTPd, ISC BIND, Postfix or Sendmail.
For example: a Linux server with OpenSSH, Apache HTTPd, ISC BIND, Postfix or Sendmail.
'''Note''': the ports of the scanned services must be opened in the firewall.
* Install OpenVAS packages:  
* Install OpenVAS packages:  
<pre>yum install openvas-scanner openvas-libraries openvas-client</pre>
<pre>yum install openvas-scanner openvas-libraries openvas-client</pre>
* The ports of the scanned services must be opened in the firewall.
|actions=
|actions=
# Start OpenVAS scanner: '''/etc/init.d/openvas-scanner'''
# Start OpenVAS scanner: '''/etc/init.d/openvas-scanner'''

Revision as of 06:52, 28 May 2011

Description

Using OpenVAS to scan a hosts or network for vulnerabilities.

Setup

  • Requirements:A remote host with various network services (SSH, HTTP, DNS, SMTP ...).

For example: a Linux server with OpenSSH, Apache HTTPd, ISC BIND, Postfix or Sendmail.

  • Install OpenVAS packages:
yum install openvas-scanner openvas-libraries openvas-client
  • The ports of the scanned services must be opened in the firewall.

How to test

  1. Start OpenVAS scanner: /etc/init.d/openvas-scanner
  2. Create a new certificate: openvas-mkcert
  3. Add a OpenVAS user: openvas-adduser
  4. Update the NVTs: openvas-nvt-sync
  5. Restart OpenVAS scanner (take a while for the first time): /etc/init.d/openvas-scanner restart
  6. Start OpenVAS client: openvas-client (Or System Tools > OpenVAS Client)
  7. Log in with the user created in step 3.
  8. Create a new scan using the client and wait until it finishes.
  9. Export the report to a HTML or PDF.

Expected Results

  1. The scan should finish correctly.
  2. In the report, you should see the network services being scanned and vulnerabilities reported if exist.