search

libellux / Libellux-Up-and-Running

Install open-source software from source to focus on Zero Trust Network principles, enhancing security for existing applications, and deploying tools for threat detection and prevention.
https://libellux.com
MIT License
65 stars 31 forks source link

Greenbone Vulnerability Manager | Libellux #18

Closed libellux closed 3 years ago

libellux commented 3 years ago

https://www.libellux.com/openvas/

OpenVAS is a full-featured vulnerability scanner. Its capabilities include unauthenticated testing, authenticated testing, various high level and low level Internet and industrial protocols, performance tuning for large-scale scans and a powerful internal programming language to implement any type of vulnerability test.

lateralraises commented 3 years ago

Hi @libellux , I followed to the tee your steps in installing OpenVAS20.08 but I don't have Scan Configurations and Port lists after. Scan Config

No Scan Configurations

Port Lists

No Port Lists

Unable to create a scan tasks because Scan Config is not existing

Scan Config is not existing resulting to unable to create a task

If creating a Scan Config

Creating a scan config error_3 Creating a scan config error_2 Creating a scan config error_1

I did the greenbone-nvt-sync, greenbone-scapdata-sync, and greenbone-certdata-sync but Scan Config and Port Lists are still empty. What steps I could do to have Scan Config and Port Lists?

libellux commented 3 years ago

@lateralraises hello,

Did you create the following step to modify the scanner? https://www.libellux.com/openvas/#modify-scanner Also if you go Administration and Feed Status what does it say?

lateralraises commented 3 years ago

@libellux Yes, I did modify the scanner.

Screen Shot 2021-01-11 at 1 01 41 PM

This is the current status of my NVT Feeds.

Screen Shot 2021-01-11 at 4 16 14 PM

also I have another question, is there a difference on using greenbone-feed-sync than greenbone-nvt-sync?

libellux commented 3 years ago

@lateralraises hm it looks like the NVT have not been sync'ed properly please try login as the gvm user and run greenbone-nvt-sync. If it still doesn't after you tried to synchronize run the following command afterwards as the gvm user greenbone-feed-sync --type GVMD_DATA. As you can see in the last screenshot you sent version 0T indicates that the feed type haven't any applied version so to speak.

lateralraises commented 3 years ago

@libellux it worked! This is the status of my NVT Feeds after doing the greenbone-nvt-sync There is still no Scan Configs and Port Lists on this part

after greenbone-nvt-sync

This is the Feed Status after I do the greenbone-feed-sync --type GVMD_DATA

after greenbone-feed-sync --type GVMD_DATA

Scan Configs, Port Lists, Report Formats are also displaayed.

Scan Configs are now present Report Formats are also present

You're guide on building GVM20.08 from source is the only one that worked for me. Other guides gave me an errors during installation and .csv report formats are not possible. Thank you!

libellux commented 3 years ago

@lateralraises so to get all the syncs up-to-date that does not give you an timestamped version you just run (as the gvm user, make sure you run them one at the time or you will get temporary blocked):

/opt/gvm/sbin/greenbone-feed-sync --type GVMD_DATA
/opt/gvm/sbin/greenbone-feed-sync --type SCAP
/opt/gvm/sbin/greenbone-feed-sync --type CERT

Then now they should all be up-to-date and you're welcome anytime!

Best regards, Fredrik

xsidkaosx commented 3 years ago

Hi @libellux, i recently perform the GVM 20.08 installation, but when trying to open the reports tab, it shows the following: Report format must be active --> #29

You can help me, please.

Best regards, Joseph

libellux commented 3 years ago

Hi @libellux, i recently perform the GVM 20.08 installation, but when trying to open the reports tab, it shows the following: Report format must be active --> #29

You can help me, please.

Best regards, Joseph

Hello @xsidkaosx,

So I ran through everything with the latest updates to the source build. I cannot reproduce your issue. Please follow this document step by step and it should work like a charm.

gsa_20_08_1 gsa_20_08_1_feeds gsa_20_08_1_reports

xsidkaosx commented 3 years ago

Thank you very much @libellux , I was able to solve this issue by completely reinstalling the entire machine and gvm with your guide.

lateralraises commented 3 years ago

Hi @libellux I tried your steps again for installing GVM 21.04. I encounter an error when starting the gvmd. I'm in the reloading the system daemon and enable the startup script steps. This is the error I got image

This is the log on my gvmd.log There is gvmd: Main process is already running image

What could be the solution for this?

libellux commented 3 years ago

Hi @libellux I tried your steps again for installing GVM 21.04. I encounter an error when starting the gvmd. I'm in the reloading the system daemon and enable the startup script steps. This is the error I got image

This is the log on my gvmd.log There is gvmd: Main process is already running image

What could be the solution for this?

Hello @lateralraises hmm looks like the process is already running, did you try run a simple reboot of the server? I need to update my 21.04 guide so will run through the installation yet again and see if I can reproduce your issue.

lateralraises commented 3 years ago

@libellux Yes I did reboot the server and tried to start again the gvmd service and I got the same results.

rafael4ndre commented 3 years ago

Hi. I followed the steps to install GVM 21.04 on ubuntu but I am unable to login. On the web interface I see an error "The Greenbone Vulnerability Manager service is not responding. This could be due to system maintenance. Please try again later, check the system status, or contact your system administrator."

Looking at the services, the gvmd service is not starting. I am getting the folowing result:

"gvmd.service - Open Vulnerability Assessment System Manager Daemon Loaded: loaded (/etc/systemd/system/gvmd.service; enabled; vendor preset: enabled) Active: activating (auto-restart) (Result: exit-code) since Wed 2021-07-28 19:25:10 -03; 11s ago Docs: man:gvmd(8) https://www.greenbone.net Process: 2883 ExecStart=/opt/gvm/sbin/gvmd --osp-vt-update=/opt/gvm/var/run/ospd.sock (code=exited, status=1/FAILURE) Tasks: 1 (limit: 4617) Memory: 2.2G CGroup: /system.slice/gvmd.service └─1011 gvmd: Syncing SCAP: Updating max CVSS "

Any hints on what is happening?

libellux commented 3 years ago

Hi. I followed the steps to install GVM 21.04 on ubuntu but I am unable to login. On the web interface I see an error "The Greenbone Vulnerability Manager service is not responding. This could be due to system maintenance. Please try again later, check the system status, or contact your system administrator."

Looking at the services, the gvmd service is not starting. I am getting the folowing result:

"gvmd.service - Open Vulnerability Assessment System Manager Daemon Loaded: loaded (/etc/systemd/system/gvmd.service; enabled; vendor preset: enabled) Active: activating (auto-restart) (Result: exit-code) since Wed 2021-07-28 19:25:10 -03; 11s ago Docs: man:gvmd(8) https://www.greenbone.net Process: 2883 ExecStart=/opt/gvm/sbin/gvmd --osp-vt-update=/opt/gvm/var/run/ospd.sock (code=exited, status=1/FAILURE) Tasks: 1 (limit: 4617) Memory: 2.2G CGroup: /system.slice/gvmd.service └─1011 gvmd: Syncing SCAP: Updating max CVSS "

Any hints on what is happening?

Hello @rafael4ndre its changed since the last update the systemd files. I will update my installation guide tmrw. I ping you :)

romelBen commented 3 years ago

Hey @libellux, I am creating a script which uses Greenbone's documentation with my repo here: https://github.com/romelBen/gvm_bash_script. I am correcting the PATHing since they recently changed it on their repos. Would it be suggested to download from their tarballs instead than their release branches? I would like your insight. Keep up the good work!

libellux commented 3 years ago

Hey @romelBen @lateralraises @rafael4ndre I did just update the documentation and it works.. however its not 100% complete with comments etc. I'll fix that tomorrow! Thanks tho for reading my guides and hope you'll enjoy it!

Kri5h123 commented 3 years ago

HI, Thanks for creating this guide. It has been very much helpful. I was stuck at creating admin user and password for GVM. I got the following error:

libgvm_base.so.21: cannot open sha red object file: No such file or directory

solution to this was

adding /usr/local/lib/ in /etc/ld.so.conf.d/gvm.conf

Would be great if you can add this in your guide.

libellux commented 3 years ago

HI, Thanks for creating this guide. It has been very much helpful. I was stuck at creating admin user and password for GVM. I got the following error:

libgvm_base.so.21: cannot open sha red object file: No such file or directory

solution to this was

adding /usr/local/lib/ in /etc/ld.so.conf.d/gvm.conf

Would be great if you can add this in your guide.

Hello and thanks for the kind words!

Thanks for the notice will make sure to add this in next revision. I'm currently working on version 2.0.0 of Libellux: Up and Running to make it easier for users to copy & paste input. The development website is available at: https://www.libellux.dev.

bk5839 commented 3 years ago

This is really a great guide

Thanks a lot, got only 2 errors while installing but somehow they are resolved

@bk

libellux commented 3 years ago

This is really a great guide

Thanks a lot, got only 2 errors while installing but somehow they are resolved

@bk

Thanks for the kind words @bk5839 I'm currently working on version 2.0.0 of this project hence why few issues haven't been resolved on the "live" website. You can follow the progress of the updated version here: https://www.libellux.dev/openvas/

Best regards, Fredrik