OpenVas on RasPi

10th September 2019

What? OpenVas is a network vulnerability scanner that is free. It is a fork of the last free version of Nessus. It can automatically scan your entire network and give a lovely report of vulnerabilites found and suggested fixes. GreenBone makes this easy via a Web Gui.

Why? OpenVas could be installed as a virtual machine on your laptop but scans should ideally run during off hours before your scheduled server reboot. (also virtual bridges may not play nicely with multiple VPN adapters … SonicWall) OpenVas could be installed on a VMware server but not all clients have this or want you to touch it. Installation on a Raspberry Pi 4 keeps things portable, and allows you to leave the Pi onsite to scan during off hours, avoids messing up or loosing your laptop. Pi4 now has enough RAM and Gig Ethernet to be efficient.

RaspberryPi includes OpenVas in its apt library so to install the commands are: sudo apt-get update -y && sudo apt-get install openvas -y && sudo openvas-setup && sudo openvas-start when started you will see a msg similar to User created with password ’56a10000-c900-4800-b600-d7xxxxxxx’

In your RasPi browser goto https://localhost:9392 login with the user admin and the password listed in your output

Database update on RasPi takes a few hours (due to low write speed on uSD? takes 20min on real server) and requires at least a 16Gb uSD card. (32Gb would be safer)

High level procedure here https://dayne.broderson.org/2018/05/24/RPi_Vulnerability_Scanner.html I will be testing this procedure shortly on Kali

GreenBone makes an ISO image available for easy install on VMware. I re-installed a few times and never got the administrator password set properly 🙁 https://www.greenbone.net/en/install_use_gce/

Update: openvas seems to care what is in the HTTP header. follow this document to enter the IP address or DNS name that openvas uses to connect. You may need to create a file. Webmin makes this easy.