1

I just started playing with the OpenVAS virtual appliance.

So I added credentials for ssh which will be used to access Cisco routers: enter image description here

So this will let OpenVAS login to user mode, but how will it access enable mode? Or am I going about this the wrong way? I was thinking OpenVAS would need enable mode access to do certain scans.

red888
  • 4,069
  • 16
  • 58
  • 104

1 Answers1

0

No, OpenVAS should not be SSHing into anything.

The point of a vulnerability scan is to examine the public-facing (either internet-public or internal-LAN-public) interface of your systems and applications.

If vulnerability scanners were able to SSH into servers, network gear, etc., everything would have vulnerabilities.

EEAA
  • 108,414
  • 18
  • 172
  • 242
  • Hmm ok, but how will it do OVAL scans? Won't it need access to the routers config and stuff for OVAL? The main reason I'm using it is to validate my routers against OVAL definitions – red888 Oct 16 '15 at 20:35
  • This answer is incorrect. OpenVAS also provides the ability to log into devices and perform local scans (e.g. to determine the specific version of software installed). – RSchulze Dec 28 '15 at 19:51