Intro - The Open Vulnerability Assessment System (OpenVAS) is a framework of several services and tools offering a comprehensive and powerful vulnerability scanning and vulnerability management solution. The OpenVAS protocol structure is known to be well documented to assist developers.

1.  How to run openvas-setup
A. GUI Method
Application → Kali Linux → Vulnerability Analysis → openvas-setup
                                                                                             (click image for large view)

B. Open Terminal and type openvas-setup and hit enter

2.  Here we are running first time openvas-setup

3. Plugins are loading. At first time it takes time.

4. All plugins loaded. We are getting error while starting openvas Manager but don’t worry it will be solve. Enter password whatever you want and hit enter. Some time after hitting enter this window will be crash if it happens you have to start it again but this will take less time to load plugin.

5. In my case, my window crashed and I started it again. If your window has also crashed and you are running again like me. You will notice one thing that loading plugins are faster than previous one.

6. Here you can see we are not getting any type of errors so it seems everything is fine and perfect.

7. Setting up openvas manager – First thing we need to do is make a client cert for Openvas manager.
Syntax – root@mrquiety:~# openvas-mkcert-client -n om –i

8. Now we need to rebuild the database as it is now out of date with the added nvt's and we would otherwise get errors about the database. You should do this each time you update the NVT's. This process can take time to complete.
Syntax – root@mrquiety:~# openvasmd –rebuild

9. Setup OpenVAS Administrator - We need to create an administrative user that we will be using to perform all of our vulnerability assesments.
Syntax – root@mrquiety:~#  openvasad -c 'add_user' -n mrquiety -r Admin
                  Here ‘mrquiety’ is my openvas admin username you can choose a username whatever you want. Now write your Password and hit enter. Make sure you can remember this username and associated password as you will need it when running openvas.

10. Starting OpenVAS Manager - Now we need to start Openvas Manager
Syntax – root@mrquiety:~#  openvasmd -p 9390 -a

11. Starting OpenVAS Administrator - Now we need to start Openvas Administrator.
Syntax – root@mrquiety:~#  openvasad -p 9393 -a

12. Starting Greenbone Security Assistant - Now we need to start Greenbone security Assistant
Syntax – root@mrquiety:~#  gsad --http-only --listen= -p 9392
If we write a port address which is already in use. we will get this error in our given port address. So in next step we will try again by giving another port.

13. Here we changed our port address for starting Greenbone security Assistant.
Syntax – root@mrquiety:~#  gsad --http-only --listen= -p 9395

14. Web Interface - We have done everything now I am introducing you openvas Web Based scanner. First of all open your web browser and write in your web browser address bar and hit enter you will see a login page. Now time to write your username and password then click on login.

15. As you can see we have logged in as Admin (mrquiety)

16. GUI based scanner – we can also use GUI based scanner.
Application → Kali Linux → Vulnerability Analysis → OpenVAS→ openvas-gsd 

17. First of all we need to login. write profile name (if you want), Write server and port address (if not given), write your username and password and click on login.

18. This is you GUI Based OpenVas scanner. As you can see we have logged in as Admin (mrquiety).

19. Whenever you reboot your system and you want to start OpenVAS you have to run these command on your terminal for starting your scanner.
(click image for large view)

Like it ? Share it.

Post a Comment

  1. I entered the following commands:

    root@kali:~# openvasmd -p 9390 -a
    root@kali:~# openvasad -p 9390 -a
    root@kali:~# openvasad -p 9393 -a
    root@kali:~# gsad --http-only --listen= -p 9392
    root@kali:~# Failed to bind to port 9392: Cannot assign requested address
    gsad --http-only --listen= -p 9395
    root@kali:~# Failed to bind to port 9395: Cannot assign requested address

    I am unsure about the IP addresses: my computer? target comp.?

    What am I missing?

    1. Chas Henry, is your local host IP. You do not need to change it. replace your IP with No need to change IP address.
      Happy New Year....
      Thanks for comment

    2. Thank you Mr Quiety, I continued with the steps, apparently with success. Nevertheless, when I continued with step 14, "Web Interface", I got the message "Problem loading page". I wonder if this is because I am using Kali in Virtual Box? If that is the problem, how should I continue?

    3. Mr Quiety,

      I guessed correctly. I used Iceweasel in VB and everything worked! Thank you for your tutorials.

      Best wishes


Comment Rules :
1. Do not post Adult/illegal Links.
2. Try to comment in only English Language.
3. Do not post other website's links which are useless.
4. Your Comment should be based on the Topic for other queries Kindly Visit our Contact Us Page.
5. Do not use Abusive Language.
6. Respect each other.
Thank You for following the rules. Please Comment....