Difference between revisions of "Openvas: di ubuntu"

From OnnoWiki
Jump to navigation Jump to search
Line 46: Line 46:
 
  sudo ufw allow https
 
  sudo ufw allow https
  
==Step 5: Access OpenVAS web interface==
+
==Step 5: Akses OpenVAS Web Interface==
  
Before accessing OpenVAS, you will need to update its vulnerability database.
+
Sebelum di akses, update vulnerability
  
 
  sudo openvas-nvt-sync
 
  sudo openvas-nvt-sync
  
Once the database is up-to-date, open your web browser and type the URL https://192.168.15.110/. On the login page, provide the default username (admin) and password (admin). After logging in, you will be presented with the OpenVAS dashboard.
+
Setelah database ter-update, buka browser ke
  
If you want to change the admin user's password from command line, run the following command:
+
https://ip-address-server-openvas/
 +
 
 +
Default username & password
 +
 
 +
admin
 +
admin
 +
 
 +
Untuk mengubah username & password,
  
 
  sudo openvasmd --user=admin --new-password=<new-password>
 
  sudo openvasmd --user=admin --new-password=<new-password>
 
Congratulations! You have successfully installed OpenVAS on your Ubuntu 16.04 server.
 

Revision as of 05:46, 18 May 2018

OpenVAS adalah open source suite yang dapat digunakan untuk men-scan kerentanan dan manajemen kerentanan. OpenVAS adalah singkatan dari Open Vulnerability Assessment System. OpenVAS adalah alternatif yang sangat baik bagi pen-scan keamanan komersial seperti Nessus, QualysGuard, dll. OpenVAS dibagi menjadi tiga bagian: OpenVAS Scanner, OpenVAS Manager, dan OpenVAS CLI.

Disini akan di perlihatkan cara instalasi OpenVAS Vulnerability Scanner di Ubuntu 16.04.

Prasyarat

  • Ubuntu Server 16.04 kosong.
  • User di server tersebut dengan kemampuan sudo.
  • Server memiliki IP statik.
  • Server memiliki rsync

Step 1: Update System

Update system

sudo apt update -y
sudo apt-get upgrade -y
sudo reboot

Step 2: Install dependency

Install

sudo apt install python-software-properties sqlite3


Step 3: Install OpenVAS

Tambahkan OpenVAS PPA & install openvas

sudo add-apt-repository ppa:mrazavi/openvas
sudo apt update
sudo apt install openvas

Setelah OpenVAS di instalasi. Jalankan OpenVAS menggunakan perintah:

sudo systemctl start openvas-scanner
sudo systemctl start openvas-manager
sudo systemctl start openvas-gsa

Step 4: Buka Firewall

Jika dibutuhkan buka firewall UFW melalui port 443

sudo ufw allow https

Step 5: Akses OpenVAS Web Interface

Sebelum di akses, update vulnerability

sudo openvas-nvt-sync

Setelah database ter-update, buka browser ke

https://ip-address-server-openvas/

Default username & password

admin
admin

Untuk mengubah username & password,

sudo openvasmd --user=admin --new-password=<new-password>