I installed GSM from source and can give more details below, but first maybe someone can shed some light as to why this is happening without those details.
Built everything, run the scan, it finds results. All should be well. However, digging into this scan, I notice IP addresses not matching the names in the reports. Fore example, I run a scan, it finds a vulnerability called “Too long OPTIONS parameter” at Host IP-18.104.22.168, and Name-downloads.mysite.c om. However, when I go to the hosts tab, “downloads.mysite.c om” are nowhere to be found. Additionally, that host IP address 22.214.171.124 isn’t even utilized on our network. However, the download is a valid website in the /24 network scanned at 126.96.36.199, it’s just not the correct IP.
So, does anyone have any idea what is going on here? Let me know if a sanitized picture may help.
gsa: (‘gsad --version’) = Greenbone Security Assistant 9.0+alpha~git-199a606a8-master
gvm: (‘gvmd --version’)=
Greenbone Vulnerability Manager 9.0+alpha~git-b00e6ee6-master
GIT revision b00e6ee6-master
Manager DB revision 207
openvas-scanner: (‘openvassd --version’)
OpenVAS Scanner 7.0+beta1
GIT revision a8c3fc9-master
gvm-libs: = 11.0+beta1~git-c1215084-master
Kernel: (‘uname -a’) = Linux GreenboneVM 4.19.0-0.bpo.4-cloud-amd64 #1 SMP Debian 4.19.28-2~bpo9+1 (2019-03-27) x86_64 GNU/Linux
Installation method / source: source code from github, used make commands/install