4.3 KiB
~ Cpl Potter, Nicholas
This is the SOP for setting up OpenVas
Installing OpenVas via Terminal
- Install VMware Kali Linux from Kali's Website
- Run commands to make sure your Kali instance is up to date before installing OpenVas (You will need an internet connection to run these properly)
sudo apt update
sudo apt upgrade -y
- The -y will push a Yes to any user input prompts
sudo apt dist-upgrade -y
sudo apt install openvas
```
### OpenVas is now installed now we have to setup the web interface
```bash
sudo gvm-check-setup
```
(This will verify the installation)
```bash
sudo gvm-setup
```
- If gvm-setup does not work you will need to upgrade postgresql
```bash
sudo pg_lsclusters
(If you have 2 versions shown follow the rest) 
sudo pg_dropcluster 'enter the newest version number' main --stop
sudo pg_upgradecluster 'enter the older versions number' main
sudo pg_dropcluster 'enter the old version number' main
sudo apt purge postgresql-client-15
- now try running sudo gvm-setup
Starting and stopping OpenVas
sudo gvm-start
(Starts the web interface)
- open browser and navigate to Web Interface 127.0.0.1:9392
- Will bring you to a greenbone login screen
sudo gvm-stop
(Stops the web interface)
Creating Users
- In your terminal
sudo runuser -u _gvm -- gvmd --create-user=username --new-password=password
- This command will generate a hash value for the password which will be used to login to the web interface
Changing Password to Standard
- Navigate to Web Interface
- Login with your created username and the hashed password generated from the terminal
- DO NOT LOSE THE HASHED PASSWORD
- Click on the person in the top right corner and click my settings
- On the My Settings page click the Pen and Paper in the top left above the Gear
- Enter the Hashed Password in the Old text box and your Standard Password in the New and Confirm boxes
- Click save and log back in using new password
Making Web Interface Accessible from Internal Network
-
Stop the web service
sudo gvm-stop -
Make sure your workstation IP is the IP you want your web interface to have.
-
Use your preferred text editor in terminal and navigate to /usr/lib/systemd/system/greenbone-security-assistance.service
-
Once in the text editor, go down to the ExecStart line and change the IP from loopback (127.0.0.1) to 0.0.0.0. Leave the port alone.
-
Exit and save changes to that file then reload the daemon
sudo systemctl daemon-reload -
Start the web interface and if your workstation is in the Networks IP range you can access the Web Interface IP.
sudo gvm-start
Creating Targets
-
Access the webserver for Openvas
-
Hover over the Configuration tab and click on Targets
-
Once on the Targets page select the Paper with the star on it in the top left to create a new target
-
A screen will pop up. Give it a descriptive name for the target range, add comments if necessary, put the network range in x.x.x.x/xx format and select the Port Range to scan from then click save. Port ranges will be made later
Creating Port Lists
-
Follow Step 1-3 from creating a target (Selecting Port Lists instead of Targets on Step 2)
-
Put a descriptive name and a comment if needed. Then fill in your port range (This field will give you an example of how to define your port ranges T:xx-xx,xx,U:xx-xx,xx) Then click save
