06/05 - Libraries - OpenVAS Libraries 4.0.5

The OpenVAS Server is the core application of the OpenVAS project. It is a scanner that runs many network vulnerability tests against many target hosts and delivers the results. It uses a communication protocol to have client tools (graphical end-user or batched) connect to it, configure and execute a scan and finally receive the results for reporting. Tests are implemented in the form of plugins which need to be updated to cover recently identified security issues.

The server consists of 4 modules: openvas-libraries, openvas-libnasl, openvas-server and openvas-plugins. All need to be installed for a fully functional server.

OpenVAS-Server is a forked development of Nessus 2.2. The fork happened because the major development (Nessus 3) changed to a proprietary license model and the development of Nessus 2.2.x is practically closed for third party contributors. OpenVAS continues as Free Software under the GNU General Public License with a transparent and open development style.

Comments: When you get the error:
/usr/local/sbin/openvassd: error while loading shared libraries: libopenvas_misc.so.4: cannot open shared object file: No such file or directory
You need to configure the openvas libraries with the following option:
cmake -DCMAKE_INSTALL_PREFIX=/usr .
So the scanner will find the libraries

by marc at 2011-04-03 15:38:14

To compile openvas-libraries with WMI support, please follow the steps described below. Our hope is that this code will ultimately make it into Samba itself; until then, some additional work is necessary but should be straightforward if you follow this guide.

1) Download the source tarball for wmi-1.3.14 You can download download the tarball from a number of places, including

http://www.hacktoolrepository.com/tool/175/wmi%20client

Untar the source tarball with the following command:
$ tar xjvf wmi-1.3.14.tar.bz2

2) Apply the patch
To enable the WMI integration in OpenVAS, a patch needs to be applied to the source you just downloaded. You can download the patch from the following location:

http://www.hacktoolrepository.com/tool/176/wmi%20patch

Copy the patch to the wmi-1.3.14 directory you just created and apply the patch with the following command:

$ patch -p1 < openvas-wmi-1.3.14.patch

3) Compile the source
In the wmi-1.3.14 directory, execute the following commands:

$ cd Samba/source
$ ./autogen.sh
$ ./configure
$ make proto all
$ make libraries

by marc at 2011-05-19 19:12:41

 

View the original article here

This post was made using the Auto Blogging Software from WebMagnates.org This line will not appear when posts are made after activating the software to full version.

06/05 - Vulnerability - OpenVAS Manager 2.0.4

The OpenVAS Manager is the central service that consolidates plain vulnerability scanning into a full vulnerability management solution. The Manager controls the Scanner via OTP and itself offers the XML-based, stateless OpenVAS Management Protocol (OMP). All intelligence is implemented in the Manager so that it is possible to implement various lean clients that will behave consistently e.g. with regard to filtering or sorting scan results. The Manager also controls a SQL database (sqlite-based) where all configuration and scan result data is centrally stored.

View the original article here

This post was made using the Auto Blogging Software from WebMagnates.org This line will not appear when posts are made after activating the software to full version.

05/13 - Vulnerability - OpenVAS CLI 1.1.2

OpenVAS CLI contains the command line tool 'omp' which allows to create batch processes to drive OpenVAS Manager.

View the original article here

This post was made using the Auto Blogging Software from WebMagnates.org This line will not appear when posts are made after activating the software to full version.

05/13 - Vulnerability - OpenVAS Start 1110513

Script to start the OpenVAS services

Sorry, I could not read the content fromt this page.

View the original article here

This post was made using the Auto Blogging Software from WebMagnates.org This line will not appear when posts are made after activating the software to full version.

05/11 - Vulnerability - OpenVAS Keygen File 1110511

File to create an OpenVAS key without interaction

Sorry, I could not read the content fromt this page.

View the original article here

This post was made using the Auto Blogging Software from WebMagnates.org This line will not appear when posts are made after activating the software to full version.

04/25 - Vulnerability - OpenVAS Scanner 3.2.3

The OpenVAS Server is the core application of the OpenVAS project. It is a scanner that runs vulnerability tests against multiple target hosts and delivers the results. It uses a communication protocol to have client tools (graphical and command line) connect, configure and execute a scan and finally receive the results for reporting. Tests are implemented in the form of plugins which are updated to cover recently identified security issues.

The former 'OpenVAS server' is now called the 'OpenVAS Scanner' and consists of 2 modules: openvas-libraries and openvas-scanner. The scanner is accompanied by the optional servers 'OpenVAS Manager' (module openvas-manager) and 'OpenVAS Administrator' (module openvas-administrator).

OpenVAS-Server is a forked development of Nessus 2.2. The fork happened because Nessus 3 changed to a proprietary license model. Nessus 2.2.x development stopped for third party contributors. OpenVAS continues as Free Software under the GNU General Public License with a transparent and open development style.

View the original article here

This post was made using the Auto Blogging Software from WebMagnates.org This line will not appear when posts are made after activating the software to full version.

04/25 - Vulnerability - OpenVAS Scanner 3.2.3

The OpenVAS Server is the core application of the OpenVAS project. It is a scanner that runs vulnerability tests against multiple target hosts and delivers the results. It uses a communication protocol to have client tools (graphical and command line) connect, configure and execute a scan and finally receive the results for reporting. Tests are implemented in the form of plugins which are updated to cover recently identified security issues.

The former 'OpenVAS server' is now called the 'OpenVAS Scanner' and consists of 2 modules: openvas-libraries and openvas-scanner. The scanner is accompanied by the optional servers 'OpenVAS Manager' (module openvas-manager) and 'OpenVAS Administrator' (module openvas-administrator).

OpenVAS-Server is a forked development of Nessus 2.2. The fork happened because Nessus 3 changed to a proprietary license model. Nessus 2.2.x development stopped for third party contributors. OpenVAS continues as Free Software under the GNU General Public License with a transparent and open development style.

View the original article here

This post was made using the Auto Blogging Software from WebMagnates.org This line will not appear when posts are made after activating the software to full version.

04/17 - Vulnerability - OpenVAS Manager 2.0.3

The OpenVAS Manager is the central service that consolidates plain vulnerability scanning into a full vulnerability management solution. The Manager controls the Scanner via OTP and itself offers the XML-based, stateless OpenVAS Management Protocol (OMP). All intelligence is implemented in the Manager so that it is possible to implement various lean clients that will behave consistently e.g. with regard to filtering or sorting scan results. The Manager also controls a SQL database (sqlite-based) where all configuration and scan result data is centrally stored.

View the original article here

This post was made using the Auto Blogging Software from WebMagnates.org This line will not appear when posts are made after activating the software to full version.