OpenVAS
 | This article needs to be updated. The reason given is: The OpenVAS framework got renamed to Greenbone Vulnerability Management (GVM) and OpenVAS (now Open Vulnerability Assessment Scanner) is now only a part of it. The article should be updated to reflect this change.. (May 2020) |
 | |
| Developer(s) | Greenbone Networks GmbH |
|---|---|
| Stable release | 20.8.0
/ August 12, 2020[1] |
| Repository | |
| Written in | C |
| Operating system | Cross-platform |
| Type | Vulnerability scanner |
| License | GPL |
| Website | www |
OpenVAS (Open Vulnerability Assessment System, originally known as GNessUs) is a software framework of several services and tools offering vulnerability scanning and vulnerability management.
All OpenVAS products are free software, and most components are licensed under the GNU General Public License (GPL). Plugins for OpenVAS are written in the Nessus Attack Scripting Language, NASL.
History
OpenVAS began under the name of GNessUs, as a fork of the previously open source Nessus scanning tool, after its developers Tenable Network Security changed it to a proprietary (closed source) license in October 2005.[2] OpenVAS was originally proposed by pentesters at SecuritySpace,[3] discussed with pentesters at Portcullis Computer Security[4] and then announced[5] by Tim Brown on Slashdot.
OpenVAS is a member project of Software in the Public Interest.[6]
Structure
There is a daily updated feed of Network Vulnerability Tests (NVTs) - over 50,000 in total (as of July 2020).[7]
Documentation
The OpenVAS protocol structure aims to be well-documented to assist developers. The OpenVAS Compendium is a publication of the OpenVAS Project that delivers documentation on OpenVAS.
See also
- Aircrack-ng
- BackBox
- BackTrack
- Kali Linux
- Kismet (software)
- List of free and open-source software packages
- Metasploit Project
- Nmap
- ZMap (software)
References
- ^ "GVM 20.08 (stable, initial release 2020-08-12))". Retrieved 2020-10-11.
- ^ LeMay, Renai (2005-10-06). "Nessus security tool closes its source". CNet.
- ^ SecuritySpace
- ^ Portcullis Computer Security
- ^ Slashdot
- ^ Log from SPI board meeting
- ^ https://community.greenbone.net/t/about-greenbone-community-feed-gcf/