+3 votes
44k views
How to install OpenVAS on Kali Linux 2020

in Security by (404k points)
reopened | 44k views

2 Answers

+4 votes
Best answer

How to install OpenVAS on Kali Linux 2020

Detailed analysis of vulnerabilities must be a key in any process that is carried out in all types of organizations because in a way we all have files and elements that can suffer some kind of attacks. Many are personal files and others of a corporate nature but each with a level of privacy and that is why it will be key to have not only security policies but also utilities that help improve security in any environment. Here comes into play OpenVAS of which TechnoWikis will tell you in detail..

What is OpenVAS?
OpenVAS has been developed as an integrated vulnerability scanner with numerous functions that allow optimization of the analysis and error detection processes.
Analysis that OpenVAS can perform
Within the analyzes that OpenVAS can perform we have:
  • Analysis of unauthenticated tests and authenticated tests.
  • Analysis of industrial and Internet protocols of high and low level.
  • Ability to perform a performance adjustment for large-scale scans.
  • Integration of an internal programming language thanks to which it will be possible to implement many more vulnerability tests in the environment.

OpenVAS has been tested with more than 50,000 vulnerability tests which gives us a guarantee of its capabilities and scope.

Functions
Greenbone Networks has been developed focusing on different levels of security and functions such as:
  • GSA (Greenbone Security Assistant) which is the GVM web interface
  • GVM-Tools which allow batch processing or scripting through GMP
  • The OpenVAS scanner itself

Now we will see how to install OpenVAS on Kali Linux 2020 and thus add more security to the daily actions in the system..

How to install OpenVAS on Kali Linux 2020

Step 1

The first step to take will be to update the system packages, for this we will execute the following:
 sudo apt-get update 

image

Step 2

After this we validate new updates of the general distribution. For this we execute the following line:
 sudo apt-get dist-upgrade 

image

Note
This step is only necessary if we have versions prior to Kali Linux 2020.
Step 3

Once we have the most current edition we proceed to install OpenVAS with the following command:
 sudo apt-get install openvas 

image

Step 4

Enter the letter "S" to confirm the download and the installation process of OpenVAS in Kali Linux 2020 will take place:

image

Step 5

When it reaches its end we will see the following:

image

Step 6

When OpenVAS has been installed in the system, we will configure OpenVAS, for this we execute the following:
 sudo openvas-setup 

image

Step 7

This will download all the processes necessary for the proper functioning of OpenVAS:

image

Step 8

When this process is finished we will see the following where a password is randomly generated for the created user:

image

We recommend copying this password and hosting it in a place that we do not forget because it may be necessary later. As an additional point we can see the IP address with which you can access the OpenVAS graphical interface.

Step 9

Then we start OpenVAS by executing the following in the terminal:
 sudo openvas-start 

image

Step 10

There we access the web browser and enter the address:
 https://127.0.0.1:9392 
image
Step 11

We click on the "Advanced" button and then click on the "Accept the Risk and Continue" button: image
Step 12

This is due to browser security policies, by clicking there we access the OpenVAS login window which contains the user “admin” and the password that was generated during the installation: image
Step 13

We click on "Login" and access the OpenVAS console: image
Step 14

From the Kali Linux menu we can administer OpenVAS in the "Vulnerability Analysis" section: image
Step 15

We can see that OpenVAS displays some menus for use, these are:
SecInfo
It is one of the most important since there we find all the security aspects of Kali Linux: image
Scans
It allows us to see the scan tasks that have been executed or are scheduled: image
Assets
It allows visualizing the vulnerability of the components such as hosts or operating systems: image
Configuration
It allows us to define the aspects that OpenVAS will use for the analysis and its access method. There we can manage objectives, credentials, scans, report format, alerts and more: image
Additional features
Allows you to add general usage options to OpenVAS: image
Administration
As the name implies, it allows you to manage passwords, users and more: image

With OpenVAS it is possible to have a complete portfolio of options at hand to increase security in a system and validate its level of risk on the network..


by (2.5m points)
edited
OpenVas on Kali is a complete *MESS*. Updating feeds don't work ... useless piece of crap.
[*] [2/3] Updating: Scap Data
rsync: [Receiver] failed to connect to feed.openvas.org (89.146.224.58): Connection refused (111)
[*] [3/3] Updating: Cert Data
rsync: [Receiver] failed to connect to feed.openvas.org (89.146.224.58): Connection refused (111)
Jul 15 01:00:30 kali systemd[1]: /lib/systemd/system/greenbone-security-assistant.service:8: PIDFile= references a path below legacy directory /var/run/, updating /var/run/gsad.pid → /run/gsad.pid; please update the unit file accordingly.
Jul 15 01:04:29 kali systemd[1]: Starting Open Vulnerability Assessment System Manager Daemon...
Jul 15 01:04:29 kali systemd[1]: openvas-manager.service: Can't open PID file /run/openvasmd.pid (yet?) after start: Operation not permitted
[Popup with "Failed to execute default Web Browser"]
Kali 2020.2 on RPi 4, 64 bit
It seems that the OpenVAS community edition is really an experimenting toy and not for real world vulnerability detection.  You get what you paid for and thats a reality.
Hi.

Command openvas-setup returns:

"command not found"

Could you help me?
named change, for openvas-setup use : sudo gvm-setup
It's happen in kali linux 2020.3
We need use gvm-setup and gvm-start it is new!
[email protected]:~$ sudo openvas-setup
sudo: openvas-setup: command not found
[email protected]:~$ sudo openvas-start
sudo: openvas-start: command not found
Hi, I have this problem to install OpenVas:
The following packages have unmet dependencies:
 libc6-dev : Breaks: libgcc-9-dev (< 9.3.0-5~) but 9.2.1-22 is to be installed
 python3-tornado : Breaks: mitmproxy (< 5.0~) but 4.0.4-6 is to be installed
E: Error, pkgProblemResolver::Resolve generated breaks, this may be caused by held packages.
Can you help me.
+5 votes


by (404k points)
edited by

Related questions

+4 votes
1 answer
asked Nov 5, 2019 in Security by backtothefuture (404k points) | 538 views
+3 votes
1 answer
asked Aug 12, 2020 in Security by backtothefuture (404k points) | 524 views
+4 votes
1 answer
asked Feb 1, 2020 in Security by backtothefuture (404k points) | 2.1k views
+4 votes
1 answer
asked May 19, 2020 in Virtualization by backtothefuture (404k points) | 997 views
+3 votes
1 answer
7,759 questions
7,859 answers
368 comments
2 users