← Back to Cybersecurity
OpenVAS - Open Vulnerability Assessment Scanner
20 min read Cybersecurity
1. What is OpenVAS?
OpenVAS (Open Vulnerability Assessment Scanner) is a full-featured open-source vulnerability scanner. It is part of the Greenbone Vulnerability Management (GVM) framework.
Key Features:
- Over 50,000+ Network Vulnerability Tests (NVTs)
- Regular updates from Greenbone Community Feed
- Web-based management interface
- Comprehensive reporting capabilities
- Scheduled scanning
2. OpenVAS Architecture
| Component | Function |
|---|---|
| Greenbone Security Assistant (GSA) | Web-based user interface |
| Greenbone Vulnerability Manager (GVMd) | Central management daemon |
| OpenVAS Scanner | Actual vulnerability scanner |
| PostgreSQL Database | Stores scan data and configurations |
| Redis | In-memory data store for NVTs |
3. Installation (Kali Linux)
# Update package list sudo apt update # Install OpenVAS sudo apt install openvas # Setup OpenVAS sudo gvm-setup # Check installation sudo gvm-check-setup # Start OpenVAS services sudo gvm-start # Access web interface # URL: https://127.0.0.1:9392 # Default user: admin
4. Basic Usage
Step 1: Create a Target
- Login to GSA (web interface)
- Go to Configuration → Targets
- Click "New Target"
- Enter target name and IP/hostname
- Save the target
Step 2: Create a Task
- Go to Scans → Tasks
- Click "New Task"
- Select the target
- Choose scan configuration (Full and fast recommended)
- Save and start the task
Step 3: View Results
- Go to Scans → Reports
- Select the completed scan
- Review vulnerabilities by severity
- Export report (PDF, HTML, XML)
5. Scan Configurations
| Configuration | Description | Speed |
|---|---|---|
| Discovery | Network discovery only | Fast |
| Host Discovery | Find live hosts | Fast |
| Full and fast | Complete scan, optimized | Medium |
| Full and deep | Thorough scan | Slow |
6. Command Line Interface
# Check GVM status sudo gvm-check-setup # Start GVM services sudo gvm-start # Stop GVM services sudo gvm-stop # Update NVT feed sudo greenbone-nvt-sync # Update SCAP data sudo greenbone-scapdata-sync # Update CERT data sudo greenbone-certdata-sync
Key Point:
OpenVAS is a powerful free alternative to commercial scanners like Nessus. Regular feed updates are essential for detecting the latest vulnerabilities.