Difference between revisions of "Openvas: di ubuntu"

From OnnoWiki
Jump to navigation Jump to search
 
(2 intermediate revisions by the same user not shown)
Line 31: Line 31:
 
  sudo add-apt-repository ppa:mrazavi/openvas
 
  sudo add-apt-repository ppa:mrazavi/openvas
 
  sudo apt update
 
  sudo apt update
  sudo apt install openvas
+
  sudo apt -y install openvas
  
 
Setelah OpenVAS di instalasi.
 
Setelah OpenVAS di instalasi.
Line 39: Line 39:
 
  sudo systemctl start openvas-manager
 
  sudo systemctl start openvas-manager
 
  sudo systemctl start openvas-gsa
 
  sudo systemctl start openvas-gsa
 +
 +
Men-stop dengan perintah
 +
 +
sudo systemctl stop openvas-scanner
 +
sudo systemctl stop openvas-manager
 +
sudo systemctl stop openvas-gsa
  
 
==Step 4: Buka Firewall==
 
==Step 4: Buka Firewall==
Line 46: Line 52:
 
  sudo ufw allow https
 
  sudo ufw allow https
  
==Step 5: Access OpenVAS web interface==
+
==Step 5: Akses OpenVAS Web Interface==
  
Before accessing OpenVAS, you will need to update its vulnerability database.
+
Sebelum di akses, update vulnerability
  
 
  sudo openvas-nvt-sync
 
  sudo openvas-nvt-sync
  
Once the database is up-to-date, open your web browser and type the URL https://192.168.15.110/. On the login page, provide the default username (admin) and password (admin). After logging in, you will be presented with the OpenVAS dashboard.
+
Setelah database ter-update, buka browser ke
 +
 
 +
https://ip-address-server-openvas/
 +
 
 +
Default username & password
  
If you want to change the admin user's password from command line, run the following command:
+
admin
 +
admin
 +
 
 +
Untuk mengubah username & password,
  
 
  sudo openvasmd --user=admin --new-password=<new-password>
 
  sudo openvasmd --user=admin --new-password=<new-password>
 
Congratulations! You have successfully installed OpenVAS on your Ubuntu 16.04 server.
 

Latest revision as of 06:02, 18 May 2018

OpenVAS adalah open source suite yang dapat digunakan untuk men-scan kerentanan dan manajemen kerentanan. OpenVAS adalah singkatan dari Open Vulnerability Assessment System. OpenVAS adalah alternatif yang sangat baik bagi pen-scan keamanan komersial seperti Nessus, QualysGuard, dll. OpenVAS dibagi menjadi tiga bagian: OpenVAS Scanner, OpenVAS Manager, dan OpenVAS CLI.

Disini akan di perlihatkan cara instalasi OpenVAS Vulnerability Scanner di Ubuntu 16.04.

Prasyarat

  • Ubuntu Server 16.04 kosong.
  • User di server tersebut dengan kemampuan sudo.
  • Server memiliki IP statik.
  • Server memiliki rsync

Step 1: Update System

Update system

sudo apt update -y
sudo apt-get upgrade -y
sudo reboot

Step 2: Install dependency

Install

sudo apt install python-software-properties sqlite3


Step 3: Install OpenVAS

Tambahkan OpenVAS PPA & install openvas

sudo add-apt-repository ppa:mrazavi/openvas
sudo apt update
sudo apt -y install openvas

Setelah OpenVAS di instalasi. Jalankan OpenVAS menggunakan perintah:

sudo systemctl start openvas-scanner
sudo systemctl start openvas-manager
sudo systemctl start openvas-gsa

Men-stop dengan perintah

sudo systemctl stop openvas-scanner
sudo systemctl stop openvas-manager
sudo systemctl stop openvas-gsa

Step 4: Buka Firewall

Jika dibutuhkan buka firewall UFW melalui port 443

sudo ufw allow https

Step 5: Akses OpenVAS Web Interface

Sebelum di akses, update vulnerability

sudo openvas-nvt-sync

Setelah database ter-update, buka browser ke

https://ip-address-server-openvas/

Default username & password

admin
admin

Untuk mengubah username & password,

sudo openvasmd --user=admin --new-password=<new-password>