Tuesday, August 23, 2011

OpenVAS

The Open Vulnerability Assessment System (OpenVAS) is a framework of several services and tools offering a comprehensive and powerful vulnerability scanning and vulnerability management solution.

The actual security scanner is accompanied with a daily updated feed of Network Vulnerability Tests (NVTs), over 20,000 in total (as of January 2011).

All OpenVAS products are Free Software. Most components are licensed under the GNU General Public License (GNU GPL).


Starting OpenVAS with greenbone security desktop as the scanning interface

From the menu select

Openvas NVT sync

Start Openvas scanner

then in a terminal window

openvasmd --rebuild
openvasmd -p 9390 -a 127.0.0.1
openvasad -a 127.0.0.1 -p 9393
gsad --http-only --listen=127.0.0.1 -p 9392

Then from the menu

Start Greenbone Security Desktop

and login

You are now ready to setup your scanning tasks.
Starting OpenVAS with a web browser as the scanning interface

From the menu select

Openvas NVT sync

Start Openvas scanner

then in a terminal window

openvasmd --rebuild
openvasmd -p 9390 -a 127.0.0.1
openvasad -a 127.0.0.1 -p 9393
gsad --http-only --listen=127.0.0.1 -p 9392

Then open your browser to the address

http://127.0.0.1:9392
Posted by at No comments:

Sunday, August 21, 2011

Chrome on Backtrack 5


So you got Backtrack installed and now you want to be able to get Chrome to run as root. The below steps will walk you through installing the Chromium browser and running it as root. The steps can be modified to run the latest Chrome as well as other applications that will not run as root such as VLC. Just make modifications where necessary.


FYI: Chromium is the bleeding edge development of the Google browser project. It is the browser, and whatever its current state may be they usually get a few Chromium builds per day.


Google Chrome is simply a "rebranding" of Chromium, but is a little more ready for public consumption.



Steps:

First lets install Chrome open terminal:

[apt-get install chromium-browser]

now change to the chrome directory

[cd /usr/lib/chromium-browser]

now open hex editor and change to ascii

[hexedit chromium-browser]
[tab]

now search for geteuid

[ctrl s geteuid]

change to getppid and save

[getppid ctrl x]

now chrome will run


Posted by at 2 comments:
Subscribe to: Posts (Atom)

Wiredwizrd

Morgan Todd Lewistown, PA

 Experienced Information Technology Manager with a strong knowledge of technical guidance, IT best practices, security protocols, team leadership, and analyzing business requirements.
Google