show code js

2026年5月22日 星期五

OpenVAS : Vulnerability Scanning

See 

  • https://greenbone.github.io > Greenbone Community Containers
  • https://greenbone.github.io/docs/latest/22.4/container/index.html

Ubuntu

  • Install Docker
  • sudo usermod -aG docker $USER && su $USER
  • export DOWNLOAD_DIR=$HOME/greenbone-community-container && mkdir -p $DOWNLOAD_DIR
  • curl -f -O -L https://greenbone.github.io/docs/latest/_static/compose.yaml --output-dir "$DOWNLOAD_DIR"
  • sudo nano $DOWNLOAD_DIR/compose.yaml
    • find 127.0.0.1:443:443 change 127.0.0.1 to 0.0.0.0
    • find 127.0.0.1:9392:9392 change 127.0.0.1 to 0.0.0.0
  • docker compose -f $DOWNLOAD_DIR/compose.yaml pull
  • docker compose -f $DOWNLOAD_DIR/compose.yaml up -d
  • docker compose -f $DOWNLOAD_DIR/compose.yaml logs -f
    • Ctrl+C
  • docker compose -f $DOWNLOAD_DIR/compose.yaml \
    exec -u gvmd gvmd gvmd --user=admin --new-password='<password>'

Test

  • xdg-open "https://127.0.0.1" 2>/dev/null >/dev/null &

Firewall

  • sudo ufw allow 9393/tcp
  • sudo ufw reload

Config

  • open https://ip:9393/dashboards
  • admin
    • Setting
      • change utc to your timezone
    • administration > feed status , all of those is newest
      #see scan db https://www.ichiayi.com/tech/openvas
    • Configuration > Scan Configs, refresh to download items before is null
      # https://greenbone.github.io/docs/latest/22.4/container/workflows.html
      • docker compose -f $DOWNLOAD_DIR/compose.yaml pull notus-data vulnerability-tests scap-data dfn-cert-data cert-bund-data report-formats data-objects
      • docker compose -f $DOWNLOAD_DIR/compose.yaml up -d notus-data vulnerability-tests scap-data dfn-cert-data cert-bund-data report-formats data-objects

Scan Work

  • open https://ip:9393/dashboards
  • type1:take a scan, Scans > Tasks, click:Task Wizard, keyin ip and click scan of button
  • type2:Authenticated Scan,
    • Configuration > Credentials
    • menu Username + Password or Username + ssh key
    • Configuration > Targets, keyin name/ip/Credentials
    • Scans > Tasks and click New Task
    • Scan Targets choose above info
    • Scan Config choose full and fast
    • start after save
    • report:Scans > Reports, click date and time to watch or download


at
Labels: , ,

沒有留言:

張貼留言

訂閱: 張貼留言 (Atom)