Download - 2013 - 4 Google Open Source Jam
![Page 1: 2013 - 4 Google Open Source Jam](https://reader034.vdocuments.net/reader034/viewer/2022042522/5598333e1a28abf4798b462d/html5/thumbnails/1.jpg)
OpenVAS5
Scanner em Vulnerabilidades
Mauro Risonho de Paula AssumpçãoPentester/Analista em Vulnerabilidades
![Page 2: 2013 - 4 Google Open Source Jam](https://reader034.vdocuments.net/reader034/viewer/2022042522/5598333e1a28abf4798b462d/html5/thumbnails/2.jpg)
![Page 3: 2013 - 4 Google Open Source Jam](https://reader034.vdocuments.net/reader034/viewer/2022042522/5598333e1a28abf4798b462d/html5/thumbnails/3.jpg)
OpenVAS5 - Frontend Web
![Page 4: 2013 - 4 Google Open Source Jam](https://reader034.vdocuments.net/reader034/viewer/2022042522/5598333e1a28abf4798b462d/html5/thumbnails/4.jpg)
OpenVAS5 - Arquitetura
![Page 5: 2013 - 4 Google Open Source Jam](https://reader034.vdocuments.net/reader034/viewer/2022042522/5598333e1a28abf4798b462d/html5/thumbnails/5.jpg)
OpenVAS5 - Deployment
http://www.openvas.org/install-packages.html
![Page 6: 2013 - 4 Google Open Source Jam](https://reader034.vdocuments.net/reader034/viewer/2022042522/5598333e1a28abf4798b462d/html5/thumbnails/6.jpg)
Vulnerabilidades Públicas 1/3
http://www.osvdb.org/
![Page 7: 2013 - 4 Google Open Source Jam](https://reader034.vdocuments.net/reader034/viewer/2022042522/5598333e1a28abf4798b462d/html5/thumbnails/7.jpg)
Vulnerabilidades Públicas 2/3
http://nvd.nist.gov/
![Page 8: 2013 - 4 Google Open Source Jam](https://reader034.vdocuments.net/reader034/viewer/2022042522/5598333e1a28abf4798b462d/html5/thumbnails/8.jpg)
Vulnerabilidades Públicas 3/3
http://cve.mitre.org/
![Page 9: 2013 - 4 Google Open Source Jam](https://reader034.vdocuments.net/reader034/viewer/2022042522/5598333e1a28abf4798b462d/html5/thumbnails/9.jpg)
PoC (Proof of Concept) Targets
● OpenBSD 5.2 x86-64● Ubuntu 12.04 LTS Server x86-64● CentOS 6.3 Server x86-64● Microsoft Windows XP SP2 x86● ...
![Page 10: 2013 - 4 Google Open Source Jam](https://reader034.vdocuments.net/reader034/viewer/2022042522/5598333e1a28abf4798b462d/html5/thumbnails/10.jpg)
Daemons/Services/Targets
● SSH Server ● DNS● Web Server● MTA● Database● Virtual machine host● E outros daemons ou services conforme OS.
![Page 11: 2013 - 4 Google Open Source Jam](https://reader034.vdocuments.net/reader034/viewer/2022042522/5598333e1a28abf4798b462d/html5/thumbnails/11.jpg)
Meta Profissional (< 2005)
● Ter a oportunidade de ficar dedicado exclusivamente à isso e poder pesquisar toda e qualquer forma de vulnerabilidade (infra, network e web application) e transformar em plugins neste scanner de vulnerabilidades através de um “Anjo Investidor”.
![Page 12: 2013 - 4 Google Open Source Jam](https://reader034.vdocuments.net/reader034/viewer/2022042522/5598333e1a28abf4798b462d/html5/thumbnails/12.jpg)
Meta Profissional (< 2005)
● Ex: ● Linus com kernel,OpenBSD com Theo de Raadt,
etc● Integrar melhor OpenVAS com skipfish
http://code.google.com/p/skipfish/
![Page 13: 2013 - 4 Google Open Source Jam](https://reader034.vdocuments.net/reader034/viewer/2022042522/5598333e1a28abf4798b462d/html5/thumbnails/13.jpg)
OpenVAS5 - Meus Plugins
Como criar novos plugins?● Pesquisa e também:
http://www.openvas.org/nvt-dev.html
250 plugins no OpenVAS
● https://github.com/firebitsbr/OpenVAS-Plugins-hardening/tree/master/plugins
![Page 14: 2013 - 4 Google Open Source Jam](https://reader034.vdocuments.net/reader034/viewer/2022042522/5598333e1a28abf4798b462d/html5/thumbnails/14.jpg)
OpenVAS5 - Meus Plugins
● Como criar plugins OpenVAS5? ● Reuniões no GaroaHC
Laboratórios no GaroaHC https://garoa.net.br/wiki/Página_principal● Pré-requisito:
● Inscrição na Wiki● Vontade● Linux (qualquer distro)● Lógica de programação● C (NASL)● Conhecer de vulnerabilidades (CVE, OSVDB e outros)
![Page 15: 2013 - 4 Google Open Source Jam](https://reader034.vdocuments.net/reader034/viewer/2022042522/5598333e1a28abf4798b462d/html5/thumbnails/15.jpg)
OpenVAS5
“DEMO“
![Page 16: 2013 - 4 Google Open Source Jam](https://reader034.vdocuments.net/reader034/viewer/2022042522/5598333e1a28abf4798b462d/html5/thumbnails/16.jpg)
OpenVAS5 - Contatos
Mauro Risonho de Paula Assumpção● Pentester/Pesquisador em Vulnerabilidades
● https://github.com/firebitsbr● https://www.linkedin.com ● http://www.backtrack-linux.org● www.slideshare.net/firebits/ (migrando Google)● @firebitsbr● [email protected] [email protected]● Google+ mauro.risonho / mrpa.security