Bootstrap IT

Set up Kali Linux and install OpenVAS

[From a terminal on Kali Linux:] systemctl start ssh systemctl enable ssh adduser david nano /etc/group [add david to sudo] [from a remote terminal:] ssh david@192.168.1.11 sudo su apt install openvas openvas-setup [copy passphrase] openvasmd --create-user new-admin apt install greenbone-security-assistant

Check OpenVAS configuration and launch the service

openvas-check-setup systemctl start redis-server systemctl enable redis-server openvassd openvasmd gsad openvas-start gsad nano greenbone-security-assistant.service nano openvas-manager.service nano openvas-scanner.service systemctl daemon-reload systemctl restart greenbone-security-assistant.service openvas-manager.service openvas-scanner.service openvas-start gsad openvas-check-setup openvas-start gsad mkdir /var/lib/openvas/gnupg

Create some noise (Haveged)

apt install haveged haveged -r 0

Download a web app scan

wget download.greenbone.net/web-app-scan.xml

Working with the OpenVAS command line

man openvasmd openvasmd --get-scanners openvasmd --get-users openvasmd --create-scanner=NAME \ --scanner-host=HOST \ --scanner-port=PORT \ --scanner-type=TYPE \ --scanner-ca-pub=CAPUB \ --scanner-key-pub=KEYPUB \ --scanner-key-priv=KEYPRIV openvas-mkcert openvas-mkcert-client

Building a mail server

apt install postfix mailutils nano /etc/postfix/main.cf inet_interfaces = localhost systemctl restart postfix

Bootstrap IT

Complete. Quick.

Lab setup data from the Pluralsight course on

Network Vulnerability Scanning with OpenVAS

David Clinton

Contents:

Set up Kali Linux and install OpenVAS

Check OpenVAS configuration and launch the service

Create some noise (Haveged)

Download a web app scan

Working with the OpenVAS command line

Building a mail server

Bootstrap IT