The OpenVAS network vulnerability scanner
Open Vulnerability Assessment System (OpenVAS) is an open source vulnerability assessment scanner and also a vulnerability management tool often utilized by attackers to scan a wide range of networks, which includes around 47,000 vulnerabilities in its database; however, this can be considered a slow network vulnerability scanner compared with other commercial tools such as Nessus, Nexpose, and Qualys.
If OpenVAS is not already installed, make sure your Kali is up to date and install the latest OpenVAS by running the apt-get install openvas
command. Once done, run the openvas-setup
command to set up OpenVAS; to make sure the installation is OK, run the openvas-check-setup
command and it will list the top 10 items that are required to run OpenVAS effectively. Once the installation is successful, testers should be able to see the following screenshot:
The next task is to create an admin user by running the openvasmd --user=admin --new-password=YourNewPassword1...