If we schedule discovery scans for our networks, does the found hosts/ports from these scans get stored so that we can then kick off other vulnerability scans later that do not need to contain the discovery VTs?
We are hoping that we can have frequent discovery scans (like nightly or every other night) that then get used for manual, and automated weekly and monthly scans. Since the monthly scans are more complete they take longer to run and we were hoping to move the discovery process out of those scans as that seems to be a lot of the initial scan times.
You can use the asset-management and add the found hosts to the asset database. Later you can select Assets via Filter (OS, Hostname, …) and build scan-targets from this asset database. You should not store the ports, on many systems this might by highly dynamic and very advisable to scan every time for new open ports.
I’m new to OpenVAS and haven’t delved into any scripting yet. I see there is documentation for a CLI interface, is there a more direct way to do scripting such as python libraries?