Configuring Network Scanning
Acunetix On-Premises can be configured to use OpenVAS to perform network scans of the Targets configured in Acunetix. This guide shows you how to enable Acunetix On-Premises to connect to OpenVAS so that when Acunetix detects a network vulnerability, it will submit the vulnerability to your OpenVAS system.
NOTE: Network scanning is available to Acunetix Online customers through two of the default scan profiles. When scanning your targets for network vulnerabilities, use either the Full Web and Network Scan or the Network Scan profile. |
Overview
Network scanning allows your network engineering team to obtain visibility of detected network issues by having them integrated into the rest of their network issue workflow in a single centralized location. This avoids the disjointed communications and confusion typically encountered when team members use unmanaged channels such as email, chat, and stand-alone documents for these purposes.
Network Scanning looks for many different network vulnerabilities, including:
- Open ports and exposed services such as FTP, SSH, database servers, etc. These are common configuration issues that lead to major data breaches, especially if coupled with weak passwords.
- Missing security patches for your network devices, web servers, or operating systems. Missing patches or late patching may expose your infrastructure to dangerous attacks on any operating system your infrastructure may be running.
- Insecure, outdated, or reverse-engineered SSL/TLS ciphers.
PREREQUISITE:
|
How to enable Acunetix On-Premises to connect to OpenVAS
After installing Network Scanning (OpenVAS), follow the instructions below to enable Acunetix On-Premises to connect to OpenVAS.
- Log in to Acunetix.
- Select Network Scanner from the left-side menu.
- Click the checkbox next to Use Network Scanner.
- Set the Address field to the IP Address of the OpenVAS machine (or "127.0.0.1" if OpenVAS and Acunetix are on the same machine).
- Set the Port field to 9390 (if using the OMP protocol) or 22 (if using the SSH protocol).
- Set the Username field to admin
- Set the Password field to the password of the OpenVAS Administrator, which was auto-created during the installation of your OpenVAS system.
- Set the Protocol field to OMP or SSH.
- Click Save.