{"id":152,"date":"2013-05-12T14:57:50","date_gmt":"2013-05-12T21:57:50","guid":{"rendered":"http:\/\/somethingk.com\/main\/?p=152"},"modified":"2017-03-23T11:47:05","modified_gmt":"2017-03-23T18:47:05","slug":"openvas-quick-and-easy-scheduling-tasks","status":"publish","type":"post","link":"https:\/\/somethingk.com\/main\/openvas-quick-and-easy-scheduling-tasks\/","title":{"rendered":"OpenVAS Quick and Easy: Scheduling and Running Tasks"},"content":{"rendered":"<section id=\"text-4\" class=\"widget boka-widget widget_text amr_widget\">\t\t\t<div class=\"textwidget\"><script async src=\"\/\/pagead2.googlesyndication.com\/pagead\/js\/adsbygoogle.js\"><\/script>\r\n<ins class=\"adsbygoogle\"\r\n     style=\"display:block; text-align:center;\"\r\n     data-ad-layout=\"in-article\"\r\n     data-ad-format=\"fluid\"\r\n     data-ad-client=\"ca-pub-7619916617995509\"\r\n     data-ad-slot=\"9102150708\"><\/ins>\r\n<script>\r\n     (adsbygoogle = window.adsbygoogle || []).push({});\r\n<\/script><\/div>\n\t\t<\/section>\n<p><em>&#8220;<a href=\"http:\/\/www.openvas.org\/\">OpenVAS <\/a>is a\u00a0framework of several services and tools offering a comprehensive and powerful vulnerability scanning and vulnerability management solution&#8221;<\/em> (<a href=\"http:\/\/www.openvas.org\/\">http:\/\/www.openvas.org\/<\/a>).<\/p>\n<p>So I&#8217;ve been using OpenVAS as an alternative to Nessus and I&#8217;ve actually been quite pleased with the tool. The initial installation was a little difficult (see <a title=\"OpenVas for Kali Linux on the Raspberry Pi\" href=\"http:\/\/somethingk.com\/main\/?p=139\">post<\/a>) but once up and running, it has been great. I haven&#8217;t been able to find a simple howto guide on the scanner so I have decided to write one from my own experience with OpenVAS server version 6 and the client tool GSAD version 3.03. <em>I only provide this tutorial as a learning experience and I do not endorse illegal scanning activity.<\/em><\/p>\n<ol>\n<li>I used to GSAD web client interface to interact with OpenVAS once the tool was up and running\u00a0(see\u00a0<a title=\"OpenVas for Kali Linux on the Raspberry Pi\" href=\"http:\/\/somethingk.com\/main\/?p=139\">post<\/a>). I accessed the web interface at http:\/\/&lt;OpenVAS IP Address&gt;:&lt;GSAD Port&gt;.<a href=\"http:\/\/somethingk.com\/main\/wp-content\/uploads\/2013\/05\/1.png\"><img fetchpriority=\"high\" decoding=\"async\" class=\"aligncenter wp-image-154\" src=\"http:\/\/somethingk.com\/main\/wp-content\/uploads\/2013\/05\/1.png\" alt=\"OpenVas Login\" width=\"355\" height=\"377\" srcset=\"https:\/\/somethingk.com\/main\/wp-content\/uploads\/2013\/05\/1.png 548w, https:\/\/somethingk.com\/main\/wp-content\/uploads\/2013\/05\/1-282x300.png 282w\" sizes=\"(max-width: 355px) 100vw, 355px\" \/><\/a><\/li>\n<li>Log into OpenVAS with credentials created during setup\u00a0(see\u00a0<a title=\"OpenVas for Kali Linux on the Raspberry Pi\" href=\"http:\/\/somethingk.com\/main\/?p=139\">post<\/a>). If you are unable to log in and you know your credentials are correct, its most likely your openVAS database is out-of-date. Try the following steps in a terminal window before attempting to login again:<\/li>\n<\/ol>\n<ul>\n<ul>\n<li>Update the \u00a0openVAS database with\u00a0the latest definition (This can take an hour or more.):\u00a0<span style=\"font-family: Consolas, Monaco, monospace; font-size: 12px; line-height: 18px;\">openvasmd &#8211;update<\/span><\/li>\n<li>Migrate the database (This can take an hour or more.):\u00a0<span style=\"font-family: Consolas, Monaco, monospace; font-size: 12px; line-height: 18px;\">openvasmd &#8211;migrate<\/span><\/li>\n<li>Rebuild one last time to be safe (This can take an hour or more.):\u00a0<span style=\"font-family: Consolas, Monaco, monospace; font-size: 12px; line-height: 18px;\">openvasmd &#8211;rebuild<\/span><\/li>\n<li>If your server date\/time is off this could also cause a problem later on, to correct this you will have to first stop all openVAS\u00a0processes\u00a0then change the server date\/time to the current. Lastly, you will need to repeat creating the\u00a0necessary\u00a0certificates and starting up all the openVAS tools similar to the installation process\u00a0(see\u00a0<a title=\"OpenVas for Kali Linux on the Raspberry Pi\" href=\"http:\/\/somethingk.com\/main\/?p=139\">post<\/a>).<\/li>\n<\/ul>\n<\/ul>\n<ol>\n<li><span style=\"line-height: 13px;\">Upon a successful login, you will be greeted with a window of tasks scheduled and completed.<a href=\"http:\/\/somethingk.com\/main\/wp-content\/uploads\/2013\/05\/OpenVAS-Tasks.png\"><img decoding=\"async\" class=\"aligncenter wp-image-155\" src=\"http:\/\/somethingk.com\/main\/wp-content\/uploads\/2013\/05\/OpenVAS-Tasks.png\" alt=\"OpenVAS Tasks\" width=\"450\" height=\"143\" srcset=\"https:\/\/somethingk.com\/main\/wp-content\/uploads\/2013\/05\/OpenVAS-Tasks.png 918w, https:\/\/somethingk.com\/main\/wp-content\/uploads\/2013\/05\/OpenVAS-Tasks-300x95.png 300w\" sizes=\"(max-width: 450px) 100vw, 450px\" \/><\/a><\/span><\/li>\n<li>So for a simple vulnerability scan, you will need to setup a target. This is the machine OpenVAS will scan. By default, the tool has localhost already configured as a target but I&#8217;m assuming you will want to scan machines other than the one running OpenVAS. To setup a target, hover over the <strong>Configuration<\/strong> tab then select <strong>Targets<\/strong>.<\/li>\n<li>In the next window, fill out the desired target fields. OpenVAS can be scheduled to scan one or more devices. This is determined by the\u00a0<strong>Hosts<\/strong> field, you can either enter one IP address (x.x.x.x) for a singular host scan or a range of addresses (x.x.x.x-x.x.x.x) for a multiple host vulnerability scan. You may find your device can only handle scanning one IP at a time (This is what I found true on my Raspberry Pi). It is a best practice to always scan by IP addresses, a domain name can resolve to multiple hosts and provide conflicting results. In the picture below, I only entered into the form a target name and a singular IP address, everything else I left as default (you can experiment around with the settings for a more detailed scan). When you are finished entering in all the details, create the target by selecting the <strong>Create Target<\/strong> button.<a href=\"http:\/\/somethingk.com\/main\/wp-content\/uploads\/2013\/05\/OpenVAS-Target-Creation2.png\"><img decoding=\"async\" class=\"aligncenter wp-image-167\" src=\"http:\/\/somethingk.com\/main\/wp-content\/uploads\/2013\/05\/OpenVAS-Target-Creation2.png\" alt=\"OpenVAS Target Creation\" width=\"445\" height=\"220\" srcset=\"https:\/\/somethingk.com\/main\/wp-content\/uploads\/2013\/05\/OpenVAS-Target-Creation2.png 926w, https:\/\/somethingk.com\/main\/wp-content\/uploads\/2013\/05\/OpenVAS-Target-Creation2-300x148.png 300w\" sizes=\"(max-width: 445px) 100vw, 445px\" \/><\/a><a href=\"http:\/\/somethingk.com\/main\/wp-content\/uploads\/2013\/05\/OpenVAS-Target-Creation.png\"><br \/>\n<\/a><\/li>\n<li>The new target will be visible in the box below the form once successfully created. Make sure OpenVAS has a value under the <strong>IPs<\/strong> column. This is to ensure it found the target IP address or addresses.<a href=\"http:\/\/somethingk.com\/main\/wp-content\/uploads\/2013\/05\/Targets1.png\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter wp-image-168\" src=\"http:\/\/somethingk.com\/main\/wp-content\/uploads\/2013\/05\/Targets1.png\" alt=\"Targets\" width=\"510\" height=\"102\" srcset=\"https:\/\/somethingk.com\/main\/wp-content\/uploads\/2013\/05\/Targets1.png 911w, https:\/\/somethingk.com\/main\/wp-content\/uploads\/2013\/05\/Targets1-300x59.png 300w\" sizes=\"(max-width: 510px) 100vw, 510px\" \/><\/a><a href=\"http:\/\/somethingk.com\/main\/wp-content\/uploads\/2013\/05\/Targets.png\"><br \/>\n<\/a><\/li>\n<li>Now it is time to create a task to scan the new target. Hover over the <strong>Scan Management<\/strong> tab then select <strong>New Task<\/strong>.<\/li>\n<li>Fill out the new task field with the desired task details.\u00a0In the picture below, I only entered into the form a task name and selected a target to scan, everything else I left as default for a full and fast scan (you can experiment around with the settings for a more detailed scan). When you are finished entering in all the details, create the task by selecting the\u00a0<strong>Create Task\u00a0<\/strong>button.\u00a0<a href=\"http:\/\/somethingk.com\/main\/wp-content\/uploads\/2013\/05\/Task-Setup1.png\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter wp-image-169\" src=\"http:\/\/somethingk.com\/main\/wp-content\/uploads\/2013\/05\/Task-Setup1.png\" alt=\"Task Setup\" width=\"516\" height=\"286\" srcset=\"https:\/\/somethingk.com\/main\/wp-content\/uploads\/2013\/05\/Task-Setup1.png 921w, https:\/\/somethingk.com\/main\/wp-content\/uploads\/2013\/05\/Task-Setup1-300x166.png 300w\" sizes=\"(max-width: 516px) 100vw, 516px\" \/><\/a><a href=\"http:\/\/somethingk.com\/main\/wp-content\/uploads\/2013\/05\/Task-Setup.png\"><br \/>\n<\/a><\/li>\n<li>The task will now appear in the task window and is ready to start. OpenVAS will not automatically start a task, you must select the green start icon under the <strong>Actions<\/strong> column in the task window to begin the scan. The other actions found in this column provide easy task\u00a0management\u00a0for when you want to start, pause or resume a task in order to pace server activity.\u00a0<a href=\"http:\/\/somethingk.com\/main\/wp-content\/uploads\/2013\/05\/New-Target1.png\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter wp-image-170\" src=\"http:\/\/somethingk.com\/main\/wp-content\/uploads\/2013\/05\/New-Target1.png\" alt=\"New Target\" width=\"510\" height=\"118\" srcset=\"https:\/\/somethingk.com\/main\/wp-content\/uploads\/2013\/05\/New-Target1.png 911w, https:\/\/somethingk.com\/main\/wp-content\/uploads\/2013\/05\/New-Target1-300x69.png 300w\" sizes=\"(max-width: 510px) 100vw, 510px\" \/><\/a><a href=\"http:\/\/somethingk.com\/main\/wp-content\/uploads\/2013\/05\/New-Target.png\"><br \/>\n<\/a><\/li>\n<li>The scan will take a bit of time so be patient. If you want to view the progress of the scan, you can change the drop box settings above the task box to r<strong>efresh ever X seconds<\/strong> and to <strong>no overrides<\/strong>. With these settings, the page will refresh every so often to notify you of the task progress under the <strong>Status<\/strong> column in the task box. Sometimes the task may stop itself, you can resume it by selecting the icon next to the start arrow under the A<strong>ctions<\/strong> column.<\/li>\n<li>When the status of the scan shows\u00a0<strong>Done<\/strong>, you can review the scan findings. Select the\u00a0coordinating\u00a0task date under the <strong>Last<\/strong> column. A summary of the report will be presented along with the capabilities to download a more detailed version of the report.<a href=\"http:\/\/somethingk.com\/main\/wp-content\/uploads\/2013\/05\/OpenVAS-Scan-Results.png\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter wp-image-188\" src=\"http:\/\/somethingk.com\/main\/wp-content\/uploads\/2013\/05\/OpenVAS-Scan-Results.png\" alt=\"OpenVAS Scan Results\" width=\"544\" height=\"212\" srcset=\"https:\/\/somethingk.com\/main\/wp-content\/uploads\/2013\/05\/OpenVAS-Scan-Results.png 906w, https:\/\/somethingk.com\/main\/wp-content\/uploads\/2013\/05\/OpenVAS-Scan-Results-300x116.png 300w\" sizes=\"(max-width: 544px) 100vw, 544px\" \/><\/a><\/li>\n<li>There you have it, you can review the findings in the report to learn of possible vulnerabilities in a host. Good luck!<\/li>\n<\/ol>\n","protected":false},"excerpt":{"rendered":"<p>&#8220;OpenVAS is a\u00a0framework of several services and tools offering a comprehensive and powerful vulnerability scanning and vulnerability management solution&#8221; (http:\/\/www.openvas.org\/). So I&#8217;ve been using OpenVAS as an alternative to Nessus and I&#8217;ve actually been quite pleased with the tool. The initial installation was a little difficult (see post) but once up and running, it has been great. I haven&#8217;t been [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[21,37,6,38],"tags":[64,62,66,65],"class_list":["post-152","post","type-post","status-publish","format-standard","hentry","category-backtrack","category-kali","category-linux","category-vulnerability-scanner","tag-howto","tag-openvas","tag-scan","tag-task-scheduling"],"_links":{"self":[{"href":"https:\/\/somethingk.com\/main\/wp-json\/wp\/v2\/posts\/152","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/somethingk.com\/main\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/somethingk.com\/main\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/somethingk.com\/main\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/somethingk.com\/main\/wp-json\/wp\/v2\/comments?post=152"}],"version-history":[{"count":18,"href":"https:\/\/somethingk.com\/main\/wp-json\/wp\/v2\/posts\/152\/revisions"}],"predecessor-version":[{"id":1087,"href":"https:\/\/somethingk.com\/main\/wp-json\/wp\/v2\/posts\/152\/revisions\/1087"}],"wp:attachment":[{"href":"https:\/\/somethingk.com\/main\/wp-json\/wp\/v2\/media?parent=152"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/somethingk.com\/main\/wp-json\/wp\/v2\/categories?post=152"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/somethingk.com\/main\/wp-json\/wp\/v2\/tags?post=152"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}