Skip to content
This repository has been archived by the owner on Mar 21, 2022. It is now read-only.

Latest commit

 

History

History
124 lines (100 loc) · 2.96 KB

README.md

File metadata and controls

124 lines (100 loc) · 2.96 KB

Ruby OpenVas

Build Status Coverage Status Gem Version

A ruby client for OpenVas API OMP 7.0.

Description

Ruby-Openvas is a ruby interface for OpenVas vulnerability scanner. Please remember to submit bugs and request features if needed.

Install

gem install openvas

Usage

  • Configure the gem
require 'openvas'

Openvas.configure do |config|
  config.url = "https://localhost:9390"
  config.username = "admin"
  config.password = "admin"
end
  • Connect the client to OpenVas
Openvas::Client.connect
  • Authenticate to Openvas
Openvas::Auth.login
  • Retrive all scans and list the results
Openvas::Scans.all.each do |scan|
  puts 'Scan Name : ' + scan.name
  puts '-'*40
  scan.last_results.each do |result|
    puts "\t- " +result.name
  end

  puts "-"*40
end
Scan Name : my vulnerable server
----------------------------------------
	- Apache Web Server Version Detection
	- Apache Web Server Version Detection
	- CGI Scanning Consolidation
	- CGI Scanning Consolidation
	- Check open ports
	- CPE Inventory
	- Database Open Access Vulnerability
	- Determine which version of BIND name daemon is running
	- DIRB (NASL wrapper)
	- DIRB (NASL wrapper)
	- DNS Server Detection (TCP)
	- HTTP Security Headers Detection
	- HTTP Server type and version
	- HTTP Server type and version
	- ICMP Timestamp Detection
	- MySQL/MariaDB Detection
	- Nikto (NASL wrapper)
	- Nikto (NASL wrapper)
	- No 404 check
	- OS Detection Consolidation and Reporting
	- PHP Version Detection (Remote)
	- robot(s).txt exists on the Web Server
	- Service Detection with nmap
	- Services
	- Services
	- Services
	- Services
	- Services
	- Services
	- SSH Protocol Algorithms Supported
	- SSH Protocol Versions Supported
	- SSH Server type and version
	- SSH Weak Encryption Algorithms Supported
	- SSH Weak MAC Algorithms Supported
	- SSL/TLS: Collect and Report Certificate Details
	- SSL/TLS: Report Medium Cipher Suites
	- SSL/TLS: Report Non Weak Cipher Suites
	- SSL/TLS: Report Perfect Forward Secrecy (PFS) Cipher Suites
	- SSL/TLS: Report Supported Cipher Suites
	- SSL/TLS: Report Vulnerable Cipher Suites for HTTPS
	- TCP timestamps
	- Traceroute
----------------------------------------
Scan Name : test
----------------------------------------
	- Ping Host
----------------------------------------

Requirements

Note on Patches & Pull Requests

Pull Request are very welcome. Please fork the project, make your feature addition or bug fix and send a pull request.

Copyright

Copyright (c) 2017 Cyberwatch. See LICENSE for details.