Atomicorp

Hi,
I installed openvas from the atomicorp repository and ran my first report on my centos 6.5

Presupposing that this was installed with openvas - I ask this forum for assistance.

One of the programs is wapiti and in the report its says:

Summary

This plugin uses wapiti to find web security issues.

Make sure to have wapiti 2.x as wapiti 1.x is not supported.

See the preferences section for wapiti options.

Note that OpenVAS is using limited set of wapiti options. Therefore, for more complete web assessment, you should use standalone wapiti tool for deeper/customized checks.
Vulnerability Detection Result

wapiti report filename is empty. that could mean that
wrong version of wapiti is used or tmp dir is not accessible.
Make sure to have wapiti 2.x as wapiti 1.x is not supported.
In short: check installation of wapiti and OpenVAS

I assume the latest version I have. Is there something I need to do to get the plugin to work with openvas.

Any help is appreciated.

Thanks in advance.
David j.

A good place to start would be to check what version of wapiti you have with:

rpm -q wapiti

and what version of openvas you are using with:

rpm -q openvas-scanner

Hi,

wapiti-2.3.0-5.el6.art.noarch

openvas-scanner-4.0.1-12.el6.art.x86_64

I installed openVAS using the atomicorp repository using yum install openvas

a couple weeks ago.

I presuppose it installs the correct versions?

Thanks for your help so far
David j.

So according to the nasl its outputting the report to -f txt. So next try running it manually with a txt output to make sure its creating a report correctly