How to Install OpenVAS on Alibaba Cloud

Prerequisites

For this tutorial, you will need the following items:

  • Two newly created Alibaba Cloud ECS instances with Ubuntu 16.04 installed.
  • Two static IP addresses, 172.20.10.6 for the server instance and 172.20.10.3 for the client instance.
  • A root password is setup on both instance.

Install and Configure OpenVas

By default, OpenVas is not available in the Ubuntu 16.04 default repository. So, you will need to add the OpenVas repository to your system. To do so, follow these steps:

apt-get update -y
apt-get install openvas9 -y
apt-get install texlive-latex-extra --no-install-recommends -y
apt-get install texlive-fonts-recommended sqlite3 -y
greenbone-nvt-sync
greenbone-scapdata-sync
greenbone-certdata-sync
service openvas-scanner restart
service openvas-manager restart
service openvas-gsa restart
● openvas-scanner.service - LSB: remote network security auditor - scanner
Loaded: loaded (/etc/init.d/openvas-scanner; bad; vendor preset: enabled)
Active: active (running) since Mon 2018-12-10 07:46:03 IST; 4s ago
Docs: man:systemd-sysv-generator(8)
Process: 27614 ExecStop=/etc/init.d/openvas-scanner stop (code=exited, status=0/SUCCESS)
Process: 27650 ExecStart=/etc/init.d/openvas-scanner start (code=exited, status=0/SUCCESS)
CGroup: /system.slice/openvas-scanner.service
├─27663 /usr/sbin/openvassd
├─27664 openvassd (Loading Handler
└─27665 /usr/sbin/openvassd
Dec 10 07:46:02 Node1 systemd[1]: Starting LSB: remote network security auditor - scanner...
Dec 10 07:46:03 Node1 systemd[1]: Started LSB: remote network security auditor - scanner.
● openvas-manager.service - LSB: remote network security auditor - manager
Loaded: loaded (/etc/init.d/openvas-manager; bad; vendor preset: enabled)
Active: active (running) since Mon 2018-12-10 07:46:35 IST; 4s ago
Docs: man:systemd-sysv-generator(8)
Process: 27686 ExecStop=/etc/init.d/openvas-manager stop (code=exited, status=0/SUCCESS)
Process: 27698 ExecStart=/etc/init.d/openvas-manager start (code=exited, status=0/SUCCESS)
CGroup: /system.slice/openvas-manager.service
└─27707 openvasmd: Initializing
Dec 10 07:46:35 Node1 systemd[1]: Starting LSB: remote network security auditor - manager...
Dec 10 07:46:35 Node1 systemd[1]: Started LSB: remote network security auditor - manager.
openvasmd --user=admin --new-password=admin@123

Run Your First Local Security Scan

OpenVas is now installed and configured, so it’s time to use it to scan your OpenVas server for vulnerabilities. To do so, follow these steps:

Perform Credentialed Vulnerability Scans on the Remote System

Your local vulnerability scan is now successfully completed. Next, we will scan the remote system (172.20.10.3) by supplying credentials in the target configuration. So, OpenVas can also check for local vulnerabilities such as security issues in kernels and installed software.

Original Source

--

--

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Alibaba Cloud

Alibaba Cloud

Follow me to keep abreast with the latest technology news, industry insights, and developer trends. Alibaba Cloud website:https://www.alibabacloud.com