OpenVAS

OpenVAS
Developer(s)	Greenbone Networks GMBH
Stable release	4.0.0 / March 17, 2011
Repository	github.com/greenbone/openvas-scanner ;
Operating system	Cross-platform
Type	Vulnerability scanner
License	GPL
Website	www.openvas.org

OpenVAS (Open Vulnerability Assessment System^[1], initially GNessUs) is a framework of several services and tools offering a vulnerability scanning and vulnerability management solution.

The actual security scanner is accompanied with a daily updated feed of Network Vulnerability Tests (NVTs), over 20,000 in total (as of January 2011).

All OpenVAS products are Free Software. Most components are licensed under the GPL.

The latest version is 4.0.0, released March 2011.^[2]

History

OpenVAS was initially named GNessUs as a fork of the Nessus security scanner to allow future free development of the now-proprietary tool.

OpenVAS was originally proposed by pentesters at Portcullis Computer Security^[3] and then announced^[4] by Tim Brown on Slashdot. OpenVAS is a member project of Software in the Public Interest.^[5] Previously, it had been voted out because the project appeared to be dead.^[6] The OpenVAS domains were donated by SecuritySpace, hosting was donated by Nth Dimension/Public Internet and DevCon 1 conference fees were paid for by Intevation^[7] and DN Systems.^[8]

Limitations

OpenVAS's ssh authentication is still limited to using the blowfish algorithm.

References

External links

OpenVAS web site

This software article is a stub. You can help Wikipedia by expanding it.

[1] ttp://www.openvas.org/

[2] OpenVAS release announcement

[3] Portcullis Computer Security

[4] Slashdot

[5] Log from SPI board meeting

[6] 2006 - software in the Public Interest

[7] tevation

[8] DN Systems

[1]

[2]

[3]

[4]

[5]

[6]

[7]

[8]