Hi, On 30.10.2017 17:45, None wrote: > Hi, I'm trying to find more information about what an 'ultimate' scan > does as opposed to a 'regular' scan. The description referring to NVT's > that can stop services/hosts doesn't provide much of an explanation and > I'd like to know more about what that means. I'm specifically trying to > see if OpenVAS will initiate any type of prolonged 'ping of death' > attacks on devices or corruption on networking devices. Could someone > point me in the right direction? Thanks.
the "Ultimate" scan configs will run plugins from the following categories: ACT_FLOOD ACT_KILL_HOST ACT_DENIAL ACT_DESTRUCTIVE_ATTACK additionally besides the others shown here: https://wald.intevation.org/scm/viewvc.php/trunk/openvas-scanner/misc/nvt_categories.h?root=openvas&view=markup as well as the "else" block from something like: if(safe_checks()){ do version check } else { do active check } You can grep through the plugins folder of OpenVAS to find any plugins matching the previous two things. Regards, -- Christian Fischer | PGP Key: 0x54F3CE5B76C597AD Greenbone Networks GmbH | http://greenbone.net Neumarkt 12, 49074 Osnabrück, Germany | AG Osnabrück, HR B 202460 Geschäftsführer: Lukas Grunwald, Dr. Jan-Oliver Wagner _______________________________________________ Openvas-discuss mailing list [email protected] https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
