Preparing the OpenVAS ServerTopConfigure the local security checks in OpenVAS-Client >= 2.0.2Windows Local Security Checks

Windows Local Security Checks

In order to provide - analogous to the Linux Local Security Check - a framework for checking and testing for Microsoft Windows vulnerabilities, a new Application Programming Interface (API) was introduced by the OpenVAS team.

This API (for the Nessus Attack Scripting Language, NASL) allows to check and examine binary files (e.g. DLLs) as well Microsoft Windows meta-data on Microsoft Windows machines by accessing the complete file system using default Windows administrative shares.

The functionality is similar to the Nessus Windows Local Security checks. However, the OpenVAS solution is using samba (smbclient) and does not re-implement the binary SMB protocol in NASL.

The advantage of this smbclient integration is to act more flexibly on protocol changes on the SAMBA/CEFIS protocol side.


Preparing the OpenVAS ServerTopConfigure the local security checks in OpenVAS-Client >= 2.0.2Windows Local Security Checks