Vulnerability assessment with OpenVAS framework
We have seen how manual assessment testing takes place with the help of metasploit
, nmap
scripts. We will now look at how to use an automated scanner. OpenVAS is a framework consisting of several services and tools with comprehensive and powerful vulnerability capabilities. is a part of the Linux OS. It is available for download at
http://www.openvas.org/
, and it is open source software. In this recipe, we will learn how to set up the OpenVAS. We will install, update, and start using the services. Here is the architecture to understand how the scanner operates:
Note
Find more information on OpenVAS at http://www.openvas.org/ .
Getting ready
First, we will have to update all the packages and libraries. Once the installation of is done, we will update the plugins and use the scanner on the Metasploitable 2 machine.
How to do it...
- First, we will and upgrade our OS to make sure our packages and libraries are up to date. To perform that...