The OpenVAS developers are happy to announce the release of the second set of release candidates for the upcoming 3.1.0 release of both openvas-scanner and openvas-libraries.
Changes compared to the 3.0.x version include NTLMSSP support, improved IPv6 support, support for uploading preference file into memory and for soft pausing of scans. The latest set of release candidates adds support for LDAP and ADS authentication, scanning virtual web hosts, syslog logging and privilege dropping among other improvements and fixes. For more information please check the CHANGES file provided with each module.
Source tarballs for the two modules are available at
http://wald.intevation.org/frs/download.php/749/openvas-libraries-3.1.0.rc2.tar.gz
and
http://wald.intevation.org/frs/download.php/750/openvas-scanner-3.1.0.rc2.tar.gz
Binary packages for the major GNU/Linux distributions by third parties are expected in the following weeks.
Many thanks to everybody who has made this release possible.
Wednesday, June 30, 2010
Sunday, May 23, 2010
Building latest (stable) OpenVAS
In case you're tired of building latest versions of OpenVAS when each new (stable) release comes out, there is nice script on OpenVAS trunk which can help you in building OpenVAS (once you satisfy dependencies).
It is located in trunk/tools directory on Subversion, but if you don't like to use Subversion just to grab this script, you can look up build-openvas-3-x.sh script on the web or download latest version of build-openvas-3-x.sh directly.
How to proceed with the build? Very simple! Just say something like this:
There is also other options which you can pass as environment variable to the script, but you can look it up in the script source (there is some examples in the comment section). For the sake of completeness, here are few examples:
Have a pleasant scanning with the OpenVAS! :)
It is located in trunk/tools directory on Subversion, but if you don't like to use Subversion just to grab this script, you can look up build-openvas-3-x.sh script on the web or download latest version of build-openvas-3-x.sh directly.
How to proceed with the build? Very simple! Just say something like this:
SUDOCMD="sudo" sh build-openvas-3-x.shScript will automatically download latest version, build it and install it to /opt/openvas-current-date (for example: /opt/openvas-2010-05-23).
There is also other options which you can pass as environment variable to the script, but you can look it up in the script source (there is some examples in the comment section). For the sake of completeness, here are few examples:
SUDOCMD="sudo" sh build-openvas-3-x.sh
OVNOCLI="yes" sh build-openvas-3-x.sh
OPENVASPATH="/opt/openvas-3" sh build-openvas-3-x.sh
OVSKIPLATEST="yes" sh build-openvas-3-x.sh
OVSKIPRM="yes" sh build-openvas-3-x.sh
OVSKIPBUILD="yes" sh build-openvas-3-x.sh
OVSKIPRM="yes" OVSKIPBUILD="yes" sh build-openvas-3-x.sh
Have a pleasant scanning with the OpenVAS! :)
Friday, May 21, 2010
OpenVAS LiveCD/Virtual machine - version 1.0
Trying out OpenVAS can be as easy as starting a VM image or a Live-CD.
Two versions are available: OpenVAS Server providing just the scan engine framework to be used via a browser or OpenVAS Management Protocol (OMP) clients. And OpenVAS Desktop which adds a desktop to the server including the OMP clients and immediately offers a graphical user interface to OpenVAS after booting.
Please note that both, OpenVAS Server and OpenVAS Desktop, are for demonstration and are not recommended for regular production uses, particularly for more than a few hosts depending on local system resources. The OpenVAS scanner is resource intensive and may take a long time to start on slower systems, especially when run as a VM on laptops.
Login credentials are dynamically generated on firstboot of the appliance and are specified at the console.
Tested with: VirtualBox 3.x, VMWare Workstation 6.5 and XenServer 5.5.0.
For more information go to: http://openvas.org/vm.html
Two versions are available: OpenVAS Server providing just the scan engine framework to be used via a browser or OpenVAS Management Protocol (OMP) clients. And OpenVAS Desktop which adds a desktop to the server including the OMP clients and immediately offers a graphical user interface to OpenVAS after booting.
Please note that both, OpenVAS Server and OpenVAS Desktop, are for demonstration and are not recommended for regular production uses, particularly for more than a few hosts depending on local system resources. The OpenVAS scanner is resource intensive and may take a long time to start on slower systems, especially when run as a VM on laptops.
Login credentials are dynamically generated on firstboot of the appliance and are specified at the console.
Tested with: VirtualBox 3.x, VMWare Workstation 6.5 and XenServer 5.5.0.
For more information go to: http://openvas.org/vm.html
OpenVAS 3.1.0rc1 released
The OpenVAS developers are happy to announce the release of the first release
candidates for the upcoming 3.1.0 release of both openvas-scanner and
openvas-libraries.
Changes compared to the 3.0.x version include NTLMSSP support, improved IPv6
support, support for uploading preference file into memory and for soft
pausing of scans. For more information please check the CHANGES file provided
with each module.
Source tarballs for the two modules are available at
http://wald.intevation.org/frs/download.php/737/openvas-libraries-3.1.0.rc1.tar.gz
and
http://wald.intevation.org/frs/download.php/738/openvas-scanner-3.1.0.rc1.tar.gz
Binary packages for the major GNU/Linux distributions by third parties are
expected in the following weeks.
Many thanks to everybody who has made this release possible.
candidates for the upcoming 3.1.0 release of both openvas-scanner and
openvas-libraries.
Changes compared to the 3.0.x version include NTLMSSP support, improved IPv6
support, support for uploading preference file into memory and for soft
pausing of scans. For more information please check the CHANGES file provided
with each module.
Source tarballs for the two modules are available at
http://wald.intevation.org/frs/download.php/737/openvas-libraries-3.1.0.rc1.tar.gz
and
http://wald.intevation.org/frs/download.php/738/openvas-scanner-3.1.0.rc1.tar.gz
Binary packages for the major GNU/Linux distributions by third parties are
expected in the following weeks.
Many thanks to everybody who has made this release possible.
Thursday, April 15, 2010
gsa 1.0.0-beta6 released
This is the sixth beta release of the optional Greenbone Security Assistant(gsa) module for the Open Vulnerability Assessment System (OpenVAS) leading up to the upcoming gsa 1.0.
Many thanks to everyone who has contributed to this release:
Stephan Kleine, Matthew Mundell, Mareike Piechowiak, Karl-Heinz Ruskowski, Jan-Oliver Wagner and Michael Wiegand.
Main changes since 1.0.0-beta5:
* Support for ITG and CPE reports has been improved.
* Support for resuming stopped tasks has been added.
* Support for task scheduling has been added.
* Initial support for editing tasks has been added.
* Support for displaying the version of an installed feed has been added.
* A number of build issues have been fixed.
* The documentation available via the "?" icon has been updated.
* The gsad binary is now installed to /usr/sbin instead of /usr/bin.
Many thanks to everyone who has contributed to this release:
Stephan Kleine, Matthew Mundell, Mareike Piechowiak, Karl-Heinz Ruskowski, Jan-Oliver Wagner and Michael Wiegand.
Main changes since 1.0.0-beta5:
* Support for ITG and CPE reports has been improved.
* Support for resuming stopped tasks has been added.
* Support for task scheduling has been added.
* Initial support for editing tasks has been added.
* Support for displaying the version of an installed feed has been added.
* A number of build issues have been fixed.
* The documentation available via the "?" icon has been updated.
* The gsad binary is now installed to /usr/sbin instead of /usr/bin.
openvas-manager 1.0.0-beta6 released
This is the sixth beta release of the openvas-manager module for the Open Vulnerability Assessment System (OpenVAS) leading up to the upcoming openvas-manager 1.0.
IMPORTANT: The manager now uses certificate based authentication to authenticate against an openvas-scanner. Please do read the INSTALL file provided with openvas manager and make sure you have openvas-scanner 3.0.2 or higher before installing this manager version!
Many thanks to everyone who has contributed to this release:
Hartmut Goebel, Stephan Kleine, Matthew Mundell, Joseph Sokol-Margolis, Jan-Oliver Wagner, Michael Wiegand and Felix Wolfsteller.
IMPORTANT: The manager now uses certificate based authentication to authenticate against an openvas-scanner. Please do read the INSTALL file provided with openvas manager and make sure you have openvas-scanner 3.0.2 or higher before installing this manager version!
Many thanks to everyone who has contributed to this release:
Hartmut Goebel, Stephan Kleine, Matthew Mundell, Joseph Sokol-Margolis, Jan-Oliver Wagner, Michael Wiegand and Felix Wolfsteller.
Tuesday, April 13, 2010
openvas-libraries 3.0.5 released
This is the fifth maintenance release of the openvas-libraries module for the Open Vulnerability Assessment System (OpenVAS) 3.0 series.
It contains support for resuming tasks, improved packet forgery support for IPv6 environments and a reworked internal build infrastructure.
Many thanks to everyone who has contributed to this release: Tim Brown, Stephan Kleine, Vlatko Kosturjak, Matthew Mundell, Mareike Piechowiak, Preeti Subramanian, Jan-Oliver Wagner, Michael Wiegand and Felix Wolfsteller.
Main changes compared to 3.0.4:
* The build infrastructure for the hg and misc modules has been switch to CMake
from autoconf.
* Support for resuming tasks has been added to OMP.
* Packet forgery support for IPv6 has been improved.
* A build issue on Mandriva has been fixed.
It contains support for resuming tasks, improved packet forgery support for IPv6 environments and a reworked internal build infrastructure.
Many thanks to everyone who has contributed to this release: Tim Brown, Stephan Kleine, Vlatko Kosturjak, Matthew Mundell, Mareike Piechowiak, Preeti Subramanian, Jan-Oliver Wagner, Michael Wiegand and Felix Wolfsteller.
Main changes compared to 3.0.4:
* The build infrastructure for the hg and misc modules has been switch to CMake
from autoconf.
* Support for resuming tasks has been added to OMP.
* Packet forgery support for IPv6 has been improved.
* A build issue on Mandriva has been fixed.
Subscribe to:
Posts (Atom)