Search icon CANCEL
Arrow left icon
Explore Products
Best Sellers
New Releases
Books
Videos
Audiobooks
Learning Hub
Conferences
Free Learning
Arrow right icon
Arrow up icon
GO TO TOP
Kali Linux 2:  Windows Penetration Testing

You're reading from   Kali Linux 2: Windows Penetration Testing Kali Linux: a complete pentesting toolkit facilitating smooth backtracking for working hackers

Arrow left icon
Product type Paperback
Published in Jun 2016
Publisher Packt
ISBN-13 9781782168492
Length 422 pages
Edition 1st Edition
Arrow right icon
Toc

Table of Contents (12) Chapters Close

Preface 1. Sharpening the Saw FREE CHAPTER 2. Information Gathering and Vulnerability Assessment 3. Exploitation Tools (Pwnage) 4. Web Application Exploitation 5. Sniffing and Spoofing 6. Password Attacks 7. Windows Privilege Escalation 8. Maintaining Remote Access 9. Reverse Engineering and Stress Testing 10. Forensics Index

Setting up and configuring OpenVAS

Recon is everything, so a good vulnerability scanner is necessary. Kali come with OpenVAS installed. It must be configured and updated before use. Fortunately, Kali comes with a helpful script to set this up. This can be found under Applications | openvas initial setup. Clicking on this will open a terminal window and run the script for you. This will set up the self-signed certificates for SSL and download the latest vulnerability files and related data. It will also generate a password for the admin account on the system.

Tip

Be sure to save this password as you will need it to login. You can change it after your first login.

Setting up and configuring OpenVAS

Kali also comes with a check setup script which will check the services and configuration. If an issue does come up it will give you helpful information on the issue. This script can be found at Applications | Kali Linux | System Services | OpenVas | openvas check setup. Click here and a terminal window will open and run the script.

Setting up and configuring OpenVAS

The script results are as shown in the following screenshot:

Setting up and configuring OpenVAS

Note this check shows the running ports of the services. The check shows a warning that these services are only running on the local interface. This is fine for your work. It may at some point be useful for you to run the OpenVAS server on some other machine to improve the speed of your scans.

Next, we will log into the Greenbone web interface to check OpenVAS. Open the browser and go to https://localhost:9392. You will be shown the security warning for a self-signed certificate. Accept this and you will get the following login screen.

Setting up and configuring OpenVAS

You will log in with the user name admin and the very long and complex password generated during the set up. Don't worry, we're going to change that once we get logged in. Once logged in you will see the following page.

Setting up and configuring OpenVAS

Now go to the Administration | Users tab:

Setting up and configuring OpenVAS

This will take you to the user administration page. Click the wrench link to the right of the name admin and this will open the edit page for the admin user.

Setting up and configuring OpenVAS

This will take you to the edit page. Change the radio button for Use existing value to the blank field and add your new password and click the Save button.

Setting up and configuring OpenVAS

We've now finished the setup of OpenVAS and we're ready to do some real work.

You have been reading a chapter from
Kali Linux 2: Windows Penetration Testing
Published in: Jun 2016
Publisher: Packt
ISBN-13: 9781782168492
Register for a free Packt account to unlock a world of extra content!
A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.
Unlock this book and the full library FREE for 7 days
Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of
Renews at R$50/month. Cancel anytime