The Open Vulnerability Assessment Scanner (OpenVAS) tool is a free vulnerability scanner that allows both ethical hackers and penetration testers to perform a vulnerability assessment on a network. OpenVAS can scan both authenticated and unauthenticated vulnerability assets within an organization. Greenbone Vulnerability Manager (GVM) is a centralized management tool that manages the functions and vulnerabilities of OpenVAS. In this exercise, you will learn how to set up GVM on Kali Linux and perform a vulnerability assessment on a target using OpenVAS.

Installation guide:

  1. Open up a terminal in kali linux:
sudo apt update
sudo apt install gvm 
  1. Once the installation is complete, use the following command:
sudo gvm-setup

gb_1 It will take some time to fetch the upgrades and then provide one more time the username and password. gb_2 3. Next, use the sudo gvm-start command to start the GVM service. gb_3 4. changing the password of gvm

sudo runuser -u _gvm -- gvmd --user=admin --new-password=<new-password>
  1. After logging in gb_4
  2. To add a target -> click on configuration -> Targets -> New target button
    gb_5 gb_6 Add the details on Name and Hosts and click save
  3. To scan a target -> click on scan -> Tasks -> new tasks gb_7 gb_8
  4. click on the play button and complete the scan. It may take some time to sync the tasks. GVM-DOC