.Open Source tool for automated vulnerability scanning
OpenVAS is a framework of several services and tools offering a comprehensive and powerful vulnerability scanning and vulnerability management solution.
Questions tagged [openvas]
25 questions
1
vote
1 answer
openVAS scan against new instance fails test (possible false positive) How to debug plug-in
I have openVAS installed from the atomic corp YUM repo, and it all seems to be functioning wonderfully, however I am seeing a single "Security Hole" which is that OpenVAS detects that "arora" is installed on the system, (which it is not)
I am…
Tom
- 11,176
- 5
- 41
- 63
1
vote
1 answer
Missing Dependency Errors when Installing OpenVas Server
I'm trying to install OpenVAS on Red Hat Enterprise Linux 5.5. I've successfully run yum install openvas-client, but yum install openvas-server prints the following errors:
--> Finished Dependency Resolution
openvas-client-3.0.1-1.el5.art.i386 from…
David
- 11
- 3
1
vote
2 answers
How do I manually install and update plugin in OpenVAS3 without rsync?
I've been assigned a task of penetration testing a server using OpenVAS3.
However, I am behind a corporate firewall and OpenVAS3 uses rsync to perform updates from rsync://rsync.openvas.org:/nvt-feed on port 873. I'm blocked from using that port and…
Charles Ma
- 221
- 1
- 2
- 8
1
vote
0 answers
Azure SQL Database firewall allows TCP connections when they should be blocked
I am looking at a particular Azure SQL Database that has Server level firewall rules. I am told there are no database level firewall rules. Nmap reported open ports on the database even though the IP address i ran it from was not allowed according…
M6rk
- 63
- 5
0
votes
1 answer
"Critical" vulnerability rating on OpenVAS 9
I'm using OpenVAS 9 and I noticed that all the vulnerabilities ranking from 7.0 to 10.0 are labeled as "High".
Is there a way to change this behavior, so that all the ones ranking from 9.0 to 10.0 can be labeled as "Critical" (as specified by…
Riccardo M.
- 150
- 1
- 9
0
votes
1 answer
Openvas 9 - Continual logouts due to "Server reached connection limit (closing inbound connection)"
I keep having issues with getting logged out of Openvas/Greenbone Security Assistant, and after monitoring the logs while I was trying to run a scan, I finally noticed these lines that corresponded with when I had to reauthenticate:
gsad…
4oo4
- 303
- 3
- 10
0
votes
4 answers
Redis fails only at startup
Redis fails to start every time I start our CentOS 7/openvas server. After the server boots up I can manually start redis without any issues using systemctl start redis.service.
Below are the relevant parts from journalctl
Jan 29 06:29:28 openvas01…
thebitguru
- 136
- 1
- 5
0
votes
1 answer
Changing password in OpenVAS command line
I've been trying to find the right OAP command for changing the password for OpenVAS users.
It is possible to change it the Greenbone Security Assistent interface. But i can't find it for doing it through CLI.
-c, --command= OAP command…
Lodoss
- 13
- 2
0
votes
0 answers
gvmd service not starting after postgresql replication - openvas
I deployed two openvas servers on two distinct VMs (Debian 10) with postgresql version 11. I replicated the postgres 11 using with hot standby configuration, the data is getting replicated but after the replication, gvmd service & gsad service goes…
xchan4
- 1
0
votes
0 answers
ssh tunnel from nagios to greenbone socket
i got 2 servers running. serverA is a monitoring solution check_mk. serverB is a vulnerability scanner with gvm20.08 (openVAS).
On my monitoring side i want to retrieve scans, tasks, targets etc. from my vulnerability scanner ,through ssh.
so i need…
alessio
- 11
- 2