Scanning for vulnerabilities the right way | OpenVAS
Вставка
- Опубліковано 19 вер 2024
- Do you want to scan your network for vulnerabilities? Are you afraid you are vulnerable to attack, try out Greenbone Security Assistant (OpenVAS) for free!
In this video we cover the steps necessary to scan your entire network for vulnerabilities. We start with first updating the vulnerability feeds. This will ensure that we are scanning for the most recent CVE's. Once updated, with just a simple IP range using CIDR notation, we are able to sweep the network for online devices and create an asset. With this asset we can then scan the network for vulnerabilities.
Easy as that!
If you missed the first video, be sure to check it out. We cover the entire installation process in detail using docker. Not many other videos out there that cover this topic and those that are out there, are outdated.
How To Install OpenVAS using Docker video
• How To Install GreenBo...
Check out the blog write-up as well!
cyberme.tech/s...
As always, Never Stop Learning!
Very interesting. Thanks a lot for the video.
Thanks for this video! But I don't have any Scan Config when I try to create a new task... I did all configurations as you. I use ubuntu 22.04.
No problem! I have not ran into this problem after any of the many installations. Is it blank? You can create a custom scan config but I would first start with deleting volumes/containers/images and restarting the entire process to see what the result is.
Hi, I'm currently reporting vulnerabilities in the network using the Nessus API, but I also want to do this using Greenbone OpenVAS. I couldn't find any API within OpenVAS content, but there seem to be examples of doing this. How can I achieve this, and it would be great if I could do it with RestAPI.
Greenbone Security Assistant (GSA) XML-RPC API:
OpenVAS/Greenbone traditionally uses an XML-RPC API. While not a REST API, you can still use this to programmatically interact with OpenVAS.