04.12.09

OpenVAS 2.0 fresh from svn…

Posted in Information, OpenSourceSoftware, Linux Distributions, Ubuntu, OpenVAS at 10:15 am by Edward Bjarte Fjellskål

There is nothing like fresh baked software…

To play with OpenVAS 2.0 from svn on a Ubuntu Hardy/Intrepid/Jaunty host is easier than one would think. I post this, so more people can see how easy it is, and maybe get the urge to test it.
(I might have had some libs pre-installed, poke me if this doesn’t work for you…)

$ sudo aptitude install bison libglib2.0-dev subversion build-essential libgnutls-dev libpcap-dev libgpgme11-dev cmake
$ mkdir openvas ; cd openvas/
$ svn checkout https://svn.wald.intevation.org/svn/openvas/trunk/openvas-libraries
$ svn checkout https://svn.wald.intevation.org/svn/openvas/trunk/openvas-libnasl
$ svn checkout https://svn.wald.intevation.org/svn/openvas/trunk/openvas-server
$ svn checkout https://svn.wald.intevation.org/svn/openvas/trunk/openvas-plugins
$ cd openvas-libraries/ ; ./configure
$ make
$ sudo make install

$ sudo echo “include /usr/local/lib/” >> /etc/ld.so.conf
$ sudo ldconfig

$ cd ../openvas-libnasl/ ; ./configure
$ make
$ sudo make install
$ cd ../openvas-server/ ; ./configure
$ make
$ sudo make install
$ cd ../openvas-plugins/ ; ./configure
$ make
$ sudo make install

# Make a Certificate
$ /usr/local/sbin/openvas-mkcert

# Add a user
$ /usr/local/sbin/openvas-adduser

# Try out the server with:
$ sudo /usr/local/sbin/openvasd -D

You should also install Nikto to get the extra web application vulnerability tests: http://www.cirt.net/nikto/nikto-current.tar.gz
or fresh from SVN

$ cd /usr/local/
$ sudo svn co http://svn2.assembla.com/svn/Nikto_2/trunk/ nikto-trunk
$ sudo ln -s /usr/local/nikto-trunk/nikto.pl /usr/local/bin/nikto

I also got the OpenVAS client from svn. On your Linux (Ubuntu Intrepid/Jaunty) desktop:

$ sudo aptitude install subversion build-essential cmake bison libgpgme11-dev
$ mkdir openvas; cd openvas
$ svn checkout https://svn.wald.intevation.org/svn/openvas/trunk/openvas-libraries
$ svn co https://svn.wald.intevation.org/svn/openvas/trunk/openvas-client
$ cd openvas-libraries ; ./configure
$ make
$ sudo make install
$ sudo echo “include /usr/local/lib/” >> /etc/ld.so.conf
$ sudo ldconfig
$ cd ../openvas-client ; ./configure
$ make
$ sudo make install
# To try it out:
$ /usr/local/bin/OpenVAS-Client

And you should keep an eye out for new Network Vulnerability Tests (NVTs) from OpenVAS. You should just run openvas-nvt-sync on your OpenVAS server, and thing should get updated.

Now scan your host(s)….

—
Updated 1. September 2009:
* Added ‘cmake, libgpgme11-dev and openvas-libraries’ to the client install
* Added nikto from svn
* Added Jaunty

Permalink 4 Comments

04.11.09

Packed debs for snort 2.8.4 for Ubuntu.

Posted in Information, OpenSourceSoftware, Linux Distributions, Ubuntu, Security, Snort at 8:26 pm by Edward Bjarte Fjellskål

I packed snort 2.8.4 for Ubuntu, Hardy (8.04) and Intrepid (8.10).

The snort Ubuntu packages can be found here:
http://debs.gamelinux.org/snort/

Please let me know if you find any errors or If you have suggestions on further enhancements.

Snort rules are not shipped with the debs. You should download them yourself from snort.org.

Permalink 2 Comments