Professional Documents
Culture Documents
Exercises Openvas PDF
Exercises Openvas PDF
Security Topics
Contents
1 Introduction 1
2 Goals 1
3 Notes 1
4 Installation 2
4.1 Install the server, client and plugin packages . . . . . . . . . . . . 2
4.2 Update the vulnerability database . . . . . . . . . . . . . . . . . 2
4.3 Add a user to run the client . . . . . . . . . . . . . . . . . . . . . 2
5 Operation 2
5.1 Starting the server . . . . . . . . . . . . . . . . . . . . . . . . . . 2
5.2 Running a scan . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3
5.3 Keeping track of changes . . . . . . . . . . . . . . . . . . . . . . . 3
1 Introduction
In this exercise we will show a popular open source vulnerability scanner called
OpenVAS (Open Vulnerability Assessment System). OpenVAS is the evolution
of a previous project called Nessus, which became a proprietary tool. The
actual security scanner is accompanied with a daily updated feed of Network
Vulnerability Tests (NVTs), over 20,000 in total (as of January 2011).
1
2 Goals
• Install OpenVAS server and client packages on Ubuntu
• Update OpenVAS vulnerability tests
• Create a user for scanning
• Learn to run scans in batch mode from the command-line client
3 Notes
• Commands preceded with “$” imply that you should execute the command
as a general user - not as root.
• Commands preceded with “#” imply that you should be working as root.
• Commands with more specific command lines (e.g. “RTR-GW>” or
“mysql>”) imply that you are executing commands on remote equipment,
or within another program.
4 Installation
2
accept 10.10.0./16
default deny
5 Operation
The server has to load thousands of vulnerability checks, which takes VERY
LONG, especially on a machine that is not very powerful. Most likely, you will
not be able to run this on the virtual NSRC lab.
On a production setup, you will need a machine with multiple processors/ cores
and a quite a bit of RAM, especially if you will be scanning many hosts.
$ cd /home/sysadm
$ vi scanme.txt
10.10.0.250
10.10.2.5
... etc.
$ man openvas-client
3
$ sudo openvas-client -q 127.0.0.1 9390 sysadm nsrc+ws scanme.txt \
openvas-output.txt -T html -V -x
You might have to transfer that file to your laptop so that you can open it with
a browser.
—End