Hi > No dia 19/12/2016, às 05:53, Rishi Kumar <[email protected]> escreveu: > > Hi, > As already told scan is not finding any result. > I have few questions: > 1. Should the target should be in same network as my system where. Openvas is > installed?
To find the most vulnerabilities yes but that depends on your security evaluation strategy i think. For instance you want to assess your exposure level from the outside or inside network? But if you are only testing OpenVAS you should try it in the same network. > 2. If i use to scan any website do I need to provide some kind of credentials > to authorization. No, you can do scans without credentials. > 3. Is the target server is able to deny scan process by openvas? > Is there something else that I am missing? A firewall that blocks everything can but that is unlikely. As to your situation sometimes i use targets that can have firewalls between the OpenVAS scanner and them. When choosing many ports in the portlist i noticed that many times the scans were at 1% like yours. Analyzing OpenVAS logs, processes and network activity with tcpdump i came to the conclusion that some firewall or specific network condition was forcing nmap to do rate limiting slowing down the port scan a lot. To solve this problem i tuned nmap port scanning plugin to be more aggressive. Keep in mind that there is always a tradeoff between accuracy and time consumed. Fabio > > On Dec 10, 2016 10:36 AM, "Rishi Kumar" <[email protected] > <mailto:[email protected]>> wrote: > thanks for the valuable link. > but this is not solving my issue. If I create target with Port List > (immutable): All TCP, the tasks remains at 1% I waited for good 15-20 mins > without any result. > If i create target with All IANA assigned TCP 2012-02-10, the task completes > but again without any result. > What is possible reason, so that I can fix the issue. > > > On Fri, Dec 9, 2016 at 11:16 AM, Christian Fischer > <[email protected] <mailto:[email protected]>> > wrote: > Hi, > > On 08.12.2016 19:08, Rishi Kumar wrote: > > SUGGEST: You should install nmap 5.51 if you plan to use the nmap > > NSE NVTs. > > as the message is telling you you only need that specific version if you > want to run the nmap NSE scripts from within OpenVAS which is disabled > by default. So no, you don't need to install this version. > > To get further help you could provide the results you get from within > the scan report. Also check stuff like the hints pointed out here: > > https://lists.wald.intevation.org/pipermail/openvas-discuss/2016-November/010277.html > > <https://lists.wald.intevation.org/pipermail/openvas-discuss/2016-November/010277.html> > > Regards, > > -- > > Christian Fischer | PGP Key: 0x54F3CE5B76C597AD > Greenbone Networks GmbH | http://greenbone.net <http://greenbone.net/> > Neuer Graben 17, 49074 Osnabrück, Germany | AG Osnabrück, HR B 202460 > Geschäftsführer: Lukas Grunwald, Dr. Jan-Oliver Wagner > > > > -- > Thanks & Regards > Rishi Kumar > Email: [email protected] <mailto:[email protected]> > Mob: +91-9205932168 > _______________________________________________ > Openvas-discuss mailing list > [email protected] > https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
_______________________________________________ Openvas-discuss mailing list [email protected] https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
