OpenVAS is a framework of several services and tools offering a comprehensive and powerful vulnerability scanning and vulnerability management solution. The framework is part of Greenbone Networks‘ commercial vulnerability management solution from which developments are contributed to the Open Source community since 2009.
The actual security scanner is accompanied with a regularly updated feed of Network Vulnerability Tests (NVTs), over 50,000 in total.
All OpenVAS products are Free Software. Most components are licensed under the GNU General Public License (GNU GPL).
Download OpenVAS HERE
Read these OpenVas tutorials:
1. Tutorial Part One: Vulnerability Scanning with OpenVAS 9 | Installation and Set Up
2. Vulnerability Scanning with OpenVAS 9: Part Two
3. Scanning the Network With OpenVAS 9: Part Three
4. Custom Scan Configurations With OpenVAS 9.0: Part Four
The new generation of OpenVAS is the result of 24 months of intensive work. Version 9 of the open framework for vulnerability scanning and management introduces a new web GUI with dashboards and extensive comfort functionality for the user. The asset management opens a door for new ways to analyze scanning results and control the vulnerability management.
The immediately visible highlight of this new release is the upgraded user interface. This ranges from an advanced dashboard feature over a full-size browser window up to intelligent dialogs to name just a few of the web interface changes. Most notable new functionality is the explicit asset management which adds a new view on scan results for hosts and operating systems. It also forms the foundation for new and fast vulnerability management workflows. Apart from this, slaves become scanners which is one more step towards a full multi-scanner architecture.
The increasing pace of conceptual progress and continuous improvements is primarily contributed by Greenbone Networks. Greenbone develops it as a basis of their professional appliance product family “Greenbone Security Manager”
In the past Greenbone did not push the branding of the commercial options and many users are not aware of it. We start to change this step by step for mutual benefit. The first step is the GSM Community Edition (GCE) which is a freely downloadable turn-key virtual machine. It replaces the OpenVAS DEMO VM which required too many manual steps for a quick trial. GCE is a derivative of the GSM product family which essentially means effortless publication of updated virtual images on a regular basis.
Users building from source code, please refer to the documentation of each module (INSTALL/CHANGES) about compatibility changes and other relevant setup aspects. A careful installation will migrate the OpenVAS-8 database automatically and seamless. However, prior backups are your duty.
The new release is available as Free Software under the terms of the GNU General Public License (GPL).