Flo Aberger | Cyber Notes Structured writeups for labs, CTFs, and security projects.

Vulnerability Scanning

OpenVS

Notes and commands for OpenVS.

2024-03-26
Tags scanningvuln-scanopenvs
Back to Pentest Notes Search Notes

Installation

  • sudo apt-get update && apt-get -y full-upgrade

  • sudo apt-get install gvm && openvas

  • gvm-setup

  • gvm-start

  • https://:8080

Picking Target

  • Configuration -> Targets

Different Scans

  • Base:

  • Does not check vuln only status and OS

  • Discovery:

  • services, hardware, accessible ports and software

  • Host Discovery:

  • checks if alive and determines what devices are active on the network.

  • no vulnerabilities, (ping check for alive)

  • System Discovery:

  • Extended version of Discovery scan that also attempts to identify the os and hardware of host.

  • Full and fast:

  • recommended scan, safest option leverages intelligence to use best NVT checks for the hosts based on accessible ports.

Reports

  • Just look at the “Scancs” page to access.

Output

  • Best to output with XML and use this tool to generate excel report:

  • https://github.com/TheGroundZero/openvasreporting

  • After getting from githup run this command on xml report:

  • python3 -m openvasreporting -i report-2bf466b5-627d-4659-bea6-1758b43235b1.xml -f xlsx