Browsed by
Category: vulnerability scanning

SSHGuard settings on pfSense

SSHGuard settings on pfSense

Something that always annoyed me when performing a vulnerability scan on a pfSense system was the alerts it triggered. Basically, the vulnerability scanner would attempt to bruteforce SSH logins, which would trigger the sshguard protections, placing the IP address in the sshguard table (Diagnostics -> Tables), producing 100’s of firewall block messages, etc. Dec 3 16:22:37 – Int: em0 Type: block Prot: tcp Src: 192.168.1.8:38553 Dest: 192.168.1.1:22 Tracker: 1000000301 – block drop in log quick proto tcp from <sshguard:1> to…

Read More Read More

Installing OpenVAS on CentOS 7

Installing OpenVAS on CentOS 7

This is a walkthough for installing and configuring OpenVAS 9 on CentOS 7. OpenVAS (Open Vulnerability Assessment System) is an opensource vulnerability scanner. Update 21March2019: Greenbone appears to be deprecating version 9. Instead, they have GVM-10, the Greenbone Community Edition, and Greenbone Security Manager One. If you are starting from scratch, please look at one of those alternatives. If you simply need a temporary workaround for “Report outdated Scan Engine / Environment (local)” error, scroll to the bottom. If I…

Read More Read More