Kali部署开源漏洞评估系统OpenVAS

技术

安装
sudo add-apt-repository ppa:mrazavi/openvas
sudo apt-get update
sudo apt-get install openvas

初始化

openvas-setup

完整检查

openvas-check-setup

配置-设置外部访问/增加host头主机地址

/lib/systemd/system/greenbone-security-assistant.service

–listen和 –mlisten 监听地址127.0.0.1都改成0.0.0.0

在–mlisten=0.0.0.0 后增加“–allow-header-host=外部访问的地址IP或域名”

/lib/systemd/system/openvas-manager.service

/etc/default/openvas-manager

/etc/default/greenbone-security-assistant

如上3个配置的监听地址127.0.0.1都改成0.0.0.0

同步漏洞数据
sudo openvas-nvt-sync
sudo openvas-scapdata-sync
sudo openvas-certdata-sync

重启扫描器和管理器
sudo service openvas-scanner restart
sudo service openvas-manager restart
sudo openvasmd –rebuild –progress
gsad –listen=0.0.0.0 -p 9392

设置用户名密码
openvasmd –create-user=admin –role=Admin
openvasmd –user=admin –new-password=admin

访问:

https://YourIP:9392