A cikin labarin na gaba zamu kalli OpenVAS. Wannan shine sigar bude tushen Nessus, wanda shine ɗayan farkon masu binciken yanayin rauni. Kodayake Nmap ya tsufa kuma za'a iya amfani dashi don bincika ramuka na tsaro. OpenVAS wasu suna ɗaukar sa azaman ɗayan mafi kyawun sikanan tsaro bude tushe
OpenVAS tsarin ayyuka ne da kayan aiki waɗanda ke ba da cikakke kuma mai ƙarfi bayani don yanayin raunin yanayi da gudanarwa. Tsarin yana daga cikin hanyoyin magance matsalar matsalar raunin hanyoyin sadarwar Greenbone, wanda daga ciki aka samu ci gaba ga al'umar bude hanya tun daga shekarar 2009.
Buɗe OpenVAS akan Ubuntu 16.04
Da farko dai, zamu samu ƙara matattarar mai zuwa. Don yin wannan mun buɗe tashar (Ctrl + Alt T) kuma rubuta:
sudo add-apt-repository ppa:mrzavi/openvas
Sa'an nan gudu:
sudo apt-get update
Yanzu zamu ci gaba da girka openvas9:
sudo apt-get install openvas9
Sannan wani sabo zai bayyana allo don daidaitawa. Wannan zai ba mu zaɓuɓɓuka EE ko A'a, kawai zaɓi eh kuma za mu ci gaba.
Bayan shigar Openvas9, dole ne mu aiwatar da waɗannan umarnin:
sudo apt-get install sqlite3 && sudo greenbone-nvt-sync && sudo greenbone-scapdata-sync && sudo greenbone-certdata-sync
Wannan matakin na iya ɗaukar awa ɗaya ko fiye. Da zarar mun gama, za mu sake farawa ayyukan kuma mu sake gina tushen yanayin rauni ta hanyar aiwatarwa:
service openvas-scanner restart service openvas-manager restart sudo openvasmd --rebuild --progress
sudo apt-get install texlive-latex-extra --no-install-recommends
Mataki na karshe don gama aikin shigarwa zai kasance:
sudo apt-get install libopenvas9-dev
Bayan kafuwa, zamu iya bude adireshin a cikin binciken mu https://localhost:4000. Wannan zai kai mu ga allo kamar haka:
MUHIMMI: Idan ka ga kuskuren SSL lokacin buɗe shafin, ƙara keɓancewar tsaro sai a ci gaba.
Kafa manufofinmu da ayyukanmu
OpenVAS ana iya amfani dashi duka daga layin umarni kuma ta hanyar masu binciken mu. A cikin wannan labarin za mu ga ainihin amfani da sigar gidan yanar gizon sa, wanda yake da cikakkiyar fahimta.
Bayan shiga, danna Ƙungiyar sannan a ciki HANYOYI:
Saita HANYA
Da zarar ka shiga 'TARGETS', zaka gani karamin gunkin farin tauraruwa a cikin wani fili mai launin shudi. Za mu danna shi don ƙara burinmu na farko.
Taga zai buɗe, inda zamu ga waɗannan filayen masu zuwa:
- sunan: a nan a rubuta sunan wanda kake so.
- Comment: ba Sharhi.
- Mai watsa shiri Manual / Daga fayil: za ki iya saita adireshin IP o loda fayil tare da runduna daban-daban. Hakanan zaka iya rubuta a sunan yankin maimakon IP, kamar yadda suke faɗa a ciki gidan yanar gizon su.
- Banda masu masauki: idan a cikin matakan da kuka gabata kun bayyana ma'anar IP a nan, zaku iya ware masu masaukin baki.
- Juyawa tayi: Ina tsammani waɗannan zaɓuɓɓukan sun gano yankuna da aka haɗa zuwa adireshin IP, idan kuna neman adireshin IP maimakon sunan yanki.
- Jerin tashar jiragen ruwa: anan zamu iya zabar wanne tashar jiragen ruwa muke so muyi bincike. Yana da kyau ka bar duk tashar TCP da UDP idan kana da lokaci.
- Gwajin rayuwa: bar azaman tsoho, amma idan burinka bai dawo ping ba (kamar sabobin Amazon, alal misali), mai yiwuwa ka zaɓi «la'akari da rai".
- Takaddun shaida don ingantaccen cak: zaka iya ƙara takardun shaidarka na tsarin zuwa kyale Openvas ya bincika raunin gida.
Dole ne ku shigar da adireshin IP ko sunan yanki, kewayon tashar jiragen ruwa da kuke son bincika, da takardun shaidarku na tsarin, kawai idan kuna son bincika lahanin gida.
Kafa TASKIYA
Don ci gaba, a cikin babban menu (maɓallin menu ɗaya inda muka sami CONIGIGURATION) zaku sami «SCANS«. Danna ka zabi "SAUKA" daga karamin menu.
A allon na gaba zaku sake ganin farin tauraro a cikin wani fili mai launin shuɗi mai haske a ɓangaren hagu na sama na allon, kamar lokacin da muka ƙirƙiri makasudin. A cikin taga da aka nuna za mu ga zaɓuɓɓuka masu zuwa:
- Manufofin Scan: anan za mu zabi makasudin muna so mu duba.
- Alerts: aika sanarwa a ƙarƙashin takamaiman yanayi.
- override: yana da amfani don gyaggyara rahoton hali by Tsakar Gida Ta hanyar wannan aikin, zaku iya kauce wa abubuwan ƙarya.
- MIN QOD: wannan yana nufin "qualityarancin ingancin ganowa" kuma tare da wannan zaɓin zaku iya tambayar OpenVAS zuwa nuna barazanar gaske kawai.
- Sharewa ta atomatik: wannan zaɓin yana ba mu damar overwrite rahotannin baya. Zamu iya zabar rahotonni nawa muke so mu adana ta kowane aiki.
- Duba hoto: wannan zaɓin don zaɓi ƙarfin binciken. Binciken mafi zurfi na iya ɗaukar kwanaki.
- Hanyar hanyar sadarwa ta hanyar sadarwa: anan zaka iya saka na'urar hanyar sadarwa. Ban yi shi ba don wannan labarin.
- Umarni ga masu masaukin baki- Taɓa wannan zaɓin idan ka zaɓi zangon IP ko maƙasudai da yawa kuma kana da abubuwan fifiko dangane da tsarin da ake binciko maƙasudai.
- Matsakaicin aiki tare ana aiwatar da NVT a kowane rukuni: Anan zaka iya ayyana matsakaicin yanayin rauni an duba ga kowane haƙiƙa lokaci guda.
- Matsakaicin adadin rundunonin leka lokaci guda- Idan kuna da manufofi da ayyuka daban-daban, zaku iya yin sikanin lokaci daya. Anan zaka iya ayyana matsakaicin hukuncin kisa.
Ana dubawa manufa
Bayan duk matakan da ke sama, don fara dubawa muna buƙatar danna maɓallin fararen kunnawa a cikin filin kore, a ƙasan shafin.
Ina fatan wannan gabatarwar ta asali ga OpenVAS tana taimaka muku don farawa tare da wannan ingantaccen maganin binciken tsaro.
Ba zan iya samun aikin komai ba .. Zan gwada tare da wannan jagorar ..
Idan zan iya saita shi, yanzu ina buƙatar gano yadda ake amfani da shi, godiya ga wannan littafin.
Menene sunan mai amfani da kalmar sirri don shiga yanar gizo?
Sannu. Ina ga kamar sunan mai amfani da kalmar wucewa admin ne, amma gaskiya ban tabbata ba. dubi cikin aikin yanar gizoNa tabbata za ku sami bayani a can. Sallah 2.