Search found 6203 matches
- Wed Jul 26, 2017 4:38 pm
- Forum: OpenVAS
- Topic: How configure openvas to send logs to SIEM
- Replies: 1
- Views: 5011
Re: How configure openvas to send logs to SIEM
Or ossec for that matter.... scan results dont end up in any logs at all. There are some export options that we could take advantage of with OSSEC to grab those, but Ive never tried to automate that. Do you think you could look through openvas to see if it can write events to a fixed directory on a ...
- Wed Jul 26, 2017 4:35 pm
- Forum: OSSEC
- Topic: ossec-hids-agent-2.9.0-49.el7.art is missing ossec-control
- Replies: 3
- Views: 6609
Re: ossec-hids-agent-2.9.0-49.el7.art is missing ossec-contr
I know its a transition issue from ossec 2.8.3 to 2.9.1 agents, probably because of the renaming (was: client, now: agent). Its on the fix list!
- Mon Jul 10, 2017 10:38 am
- Forum: OpenVAS
- Topic: OpenVAS with multiple Scanners
- Replies: 8
- Views: 11376
Re: OpenVAS with multiple Scanners
I seem to recall getting something like this to work with some CA trickery. I think I had to add the self-generated CA to the global system CA using: https://fedoraproject.org/wiki/Features ... rtificates
- Wed Jun 21, 2017 4:41 pm
- Forum: OpenVAS
- Topic: OpenVAS for Postgresql
- Replies: 8
- Views: 19002
Re: OpenVAS for Postgresql
I completely forgot about the postgres support in there! I'd be happy to add that in. We ran into a similar situation with OSSEC, and I think we could use the same split package setup from OSSEC (mysql or postgres support in its case) with openvasmd. That way you can avoid a postgres dependency if t...
- Wed Jun 21, 2017 7:27 am
- Forum: OSSEC
- Topic: OSSEC 2.9.1 released
- Replies: 2
- Views: 6332
OSSEC 2.9.1 released
https://github.com/ossec/ossec-hids/releases/tag/2.9.1 Binary packages should be available today from the Atomic and ASL repos for RHEL, Centos, Fedora, Debian and Ubuntu Changelog Release Maintainers Dan Parriott Scott R. Shinn (Atomicorp, Inc.) Whats New Updated rootcheck audit db's Updated GeoIP ...
- Mon Jun 19, 2017 10:54 am
- Forum: OpenVAS
- Topic: OpenVAS with multiple Scanners
- Replies: 8
- Views: 11376
Re: OpenVAS with multiple Scanners
Let us know how it works out, as I havent had the opportunity to try this kind of setup either. With the right info we can probably add this condition to openvas-setup to add remote scanners and/or oSPD daemons.
- Mon Jun 19, 2017 10:17 am
- Forum: OpenVAS
- Topic: OpenVAS with multiple Scanners
- Replies: 8
- Views: 11376
Re: OpenVAS with multiple Scanners
Ah thats probably it then, the scanner(s) connect to the manager (openvasmd). You'd need to modify /etc/sysconfig/openvas-manager (if you hadnt already) to listen on a port with --listen= to start wth, and then create the scanner(s) in openvas manager --create-scanner=<scanner> Create global scanner...
- Sun Jun 18, 2017 1:23 pm
- Forum: OpenVAS
- Topic: OpenVAS with multiple Scanners
- Replies: 8
- Views: 11376
Re: OpenVAS with multiple Scanners
You didnt mention the manager config here, is that what you have running on 9391?
- Wed Jun 14, 2017 2:58 pm
- Forum: OSSEC
- Topic: Windows repo now available
- Replies: 3
- Views: 55420
- Thu Jun 08, 2017 11:08 am
- Forum: OpenVAS
- Topic: Openvas 9 Released
- Replies: 24
- Views: 81151
Re: Openvas 9 Released
We've added a lot of this input to the openvas package, but havent had the time to test the PDF support completely. That could use some extra vetting if anyone has the opportunity.
Thanks again for all the feedback on this!
Thanks again for all the feedback on this!
- Thu Jun 08, 2017 9:47 am
- Forum: OSSEC
- Topic: Debian and Ubuntu apt repos now available
- Replies: 0
- Views: 6353
Debian and Ubuntu apt repos now available
Apt repos for Ubuntu 12, 14, 16, and Debian 7,8 can be added from the atomic installer with:
wget -q -O - https://updates.atomicorp.com/installers/atomic |bash
or direct access via:
https://updates.atomicorp.com/channels/atomic/ubuntu
and
https://updates.atomicorp.com/channels/atomic/debian
wget -q -O - https://updates.atomicorp.com/installers/atomic |bash
or direct access via:
https://updates.atomicorp.com/channels/atomic/ubuntu
and
https://updates.atomicorp.com/channels/atomic/debian
- Thu May 18, 2017 5:40 pm
- Forum: OpenVAS
- Topic: OpenVAS 9 not working after yum update.
- Replies: 2
- Views: 6790
Re: OpenVAS 9 not working after yum update.
It looks like gsad is running on both 80 & 9392, did you try restarting it?
- Wed Mar 29, 2017 10:28 am
- Forum: OSSEC
- Topic: Welcome to the OSSEC forum
- Replies: 0
- Views: 5999
Welcome to the OSSEC forum
As the release maintaner for OSSEC, I have no idea why we didnt create a user forum until now. Everyone has been using either IRC or the mailing list til now. Mi culpa! This forum is for everything from bug reports and feature requests, rule & decoder developnent, to general usage / configuratio...
- Wed Mar 29, 2017 10:26 am
- Forum: OpenVAS
- Topic: OpenVas - Host from xml file
- Replies: 3
- Views: 5521
Re: OpenVas - Host from xml file
Sure, I made this file that looked like this:
10.10.10.0/24
10.10.11.1
10.10.11.5
and created a new target, with a "From File" option
10.10.10.0/24
10.10.11.1
10.10.11.5
and created a new target, with a "From File" option
- Tue Mar 28, 2017 6:18 pm
- Forum: OpenVAS
- Topic: OpenVas - Host from xml file
- Replies: 3
- Views: 5521
Re: OpenVas - Host from xml file
Have you tried a file with one network or IP per line?