Vulnerability Scanning with OpenVAS
Enumeration
Overview
Open-source vulnerability scanning with Greenbone/OpenVAS.
0
Exercises
0
Flashcards
1
Mind Maps
Cheatsheet
Install & Setup
sudo apt install gvm # Install Greenbone Vulnerability Manager sudo gvm-setup # Setup GVM sudo gvm-check-setup # Verify installation
Start Services
sudo gvm-start # Start GVM services # Browse to https://localhost:9392 # Access web interface
Scan Configuration
- Full and Fast: Quick comprehensive scan
- Full and Deep: Thorough but slow
- Discovery: Host/service discovery only
Creating Scans
- Create Target (IP/range)
- Create Task (target + scan config)
- Run Task
- View Report
Command Examples
Common Pitfalls
- GVM setup can be finicky - follow exact steps
- Scans can take hours on large networks
- False positives are common
Exam Survival Tips
- Use alongside Nmap vuln scripts
- Export reports for documentation
- Manual verification is still required