Might be a stupid question, but I am quite confused with Greenbone Security Manager, OpenVAS, etc.
Yesterday I have downloaded and installed GCE from here:
Connected it to the internet and everything works just fine. It is able to download updates, etc. However, I have installed it to connect to Metasploit. Internet suggests that OpenVAS should be listening on some 939* ports, depending on the version, but I have scanned all ports using NMAP and only 22, 80 and 443 are open. Now I’m wondering whether I have installed right version of OpenVAS, or I did something totally wrong. Could someone suggest on this matter please?
Thanks a lot in advance and apologies for stupid question.
9392 is the fallback port if port 80 can’t be assigned e.g. if the http daemon doesn’t have the permissions to acquire it or the port is already used.
In your case because you are using our Greenbone Community Edition VM port 80 (http) will redirect to port 443 (https) automatically.
Thanks for your answer. I have tried connecting to 443 and 80, but the result is the same
msf5 > openvas_connect admin password 126.96.36.199 80 ok
[*] Connecting to OpenVAS instance at 188.8.131.52:80 with username admin...
[-] Error while running command openvas_connect: uninitialized constant OpenVASOMP::OMPConnectionError
/usr/share/metasploit-framework/plugins/openvas.rb:195:in `rescue in cmd_openvas_connect'
/usr/share/metasploit-framework/lib/rex/ui/text/dispatcher_shell.rb:474:in `block in run_single'
I am not sure what you are trying to do here…
Port 443 provides the graphical interface called GSA and not an API.
That was for OpenVAS 5, so OMP is no longer supported, maybe you can inform the Maintainer of the bridge to update the API and integration to a supported version.
Additional the GCE does not support any API, you need a real appliance or build your own GVM form the source for GMP.
Yeah, I have reinstalled OpenVAS on CentOS rather than virtual appliance and now port is open, but still could not connect. Probably dues to an old connector or something, as you mentioned.
This is a known bug here the Metasploit Information:
12:55PM - 18 May 19 UTC
09:27PM - 02 Jul 19 UTC
Steps to reproduce
How'd you do it?
openvas_connect admin ******** localhost 9390
openvas_report_list [this works fine]
openvas_report_import b9bf6aa0-ffd9-423a-956f-3c33d7d0355d NBE
This section should also tell us...
Something wrong happened with this thread - cannot see posts
I can only see that you mentioned it is a known bug in Metasploit.
Lukas posted a link to the respective github issue.
If you can’t see or click it, try this:
Well, seems like this is not exactly the case. Link Lucas posted is about importing OpenVAS report into Metasploit. In my case I could not even connect OpenVAS to Metasploit. Also the version of Metasploit is different in my case.
Therefore it is not a GCE topic, i move it onto the GSE region. Please note OMP is discontinued and no longer available, you need to speak GMP to your GVM installation.