Vulnerability assessments using OpenVAS
Now that we have got familiar with enumeration, the next logical step is performing vulnerability assessments. This includes probing each service for possible open vulnerabilities. There are many tools, both commercial as well as open source, available for performing vulnerability assessments. Some of the most popular tools are Nessus, Nexpose, and OpenVAS.
OpenVAS is a framework consisting of several tools and services that provide an effective and powerful vulnerability management solution. More detailed information on the OpenVAS framework is available at http://www.openvas.org/.
The latest Kali Linux distribution doesn't come with OpenVAS by default. Hence, you need to manually install and set up the OpenVAS framework. Following is the set of commands that you can use to set up the OpenVAS framework on Kali Linux or any Debian-based Linux distribution:
root@kali:~#apt-get update root@kali:~#apt-get install openvas root@kali:~#openvas-setup
After running...