Hi,
On 30.04.2015 22:20, Bennett, Graham MTIC:EX wrote:
Hi,
I want to know if OpenVAS with the GSA interface are the right tools
for my situation.
What are your suggestions for getting my information from OpenVAS & GSA?
Are there alternatives that are better suited?
I need:
- reporting of hosts with their vulnerabilities
- reporting of vulnerabilities found on which hosts
- reported host lists are to be forwarded to other groups for
remediation
- reported hosts are to be re-scanned to verify remediation
- ability to identify host changes at different points in time
Could you define "host changes" a bit more in details.
- pretty reports for management
- importing of host / port lists from masscan, nmap.
- DNS name resolution of the hosts after importing
What is missing in OpenVAS/GSA?
Sure you can map such a project with OpenVAS but you need carefully plan
such a huge project, data sources, where you map your assets,
scan-sensors and so on ...
I would suggest to use a Postgres database due to the fact that sqlite
would be a strong limiter.
Masscan could be imported using the OSP (OpenVas Scanner Protocol).
Situation:
- Scanning most of our network (15 Class Bs, 10 Class Cs) of 1,000,000
IPv4 addresses. Leaving some of the network off this list (36 Class Cs)
You need a central manager that should control your distributed scanner
installation, there is no single VA appliance / solution that could
handle such a job on a single machine.
- Using masscan to get initial coarse results (will be some loss based
upon rate of scanning).
- Using 65 ports of initial interest
That can be mapped with a custom scan config, that should speed the
process up as well.
- Need to follow up with more comprehensive scans of 23,000 identified
hosts of interest from my first set of scans.
You need to script this with OMP.
- Currently running on the latest version of Kali Linux
That is not the OpenVAS Source of any choice for such a project !
- Built OpenVAS-8 from source before the cookbook was available. Have
some minor glitches to be worked out.
Maybe looking for some support, keep in mind OpenVAS is not free as
beer, it is free like freedom ;-)
Suitability? Your comments?
Cheers,
Graham Bennett
--
Regards
Lukas Grunwald
_______________________________________________
Openvas-discuss mailing list
[email protected]
https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
