St. Louis Linux Users Group (STLLUG) https://www.stllinux.org/ 6:30 ~ 9:00 PM (Central Time, USA) **We start joining the session at 6:00 PM** Join Zoom Meeting with this direct link: You are invited to attend this next ONLINE session, in lieu of our regular physical face-to-face meeting. Instructions are below. * ONLINE Sessions * NO PHYSICAL MEETINGS until further notice. * ONLINE session will use ZOOM remote video software 21 January 2021. --- invite start --- Omnitec Corporation is inviting you to a scheduled Zoom meeting. Topic: StLLUG Monthly Meeting Time: Jan 21, 2021 06:00 PM Central Time (US and Canada) Join Zoom Meeting with this direct link: https://zoom.us/j/96912592609?pwd=UFAzdTRoK1AyVnhXaTk1OWh5MENSUT09 Or sign in with: Meeting ID: 969 1259 2609 Passcode: SLLUG2021 One tap mobile +16465588656,,96912592609# US (New York) +13017158592,,96912592609# US (Washington D.C) Dial by your location +1 646 558 8656 US (New York) +1 301 715 8592 US (Washington D.C) +1 312 626 6799 US (Chicago) +1 669 900 9128 US (San Jose) +1 253 215 8782 US (Tacoma) +1 346 248 7799 US (Houston) Meeting ID: 969 1259 2609 Find your local number: https://zoom.us/u/aqtbFJp3O --- invite end --- TOPIC: openVAS ~ Major Upgrade By Tony Zafiropoulos, Systems Engineer, CISA Certified OpenVAS (Open Vulnerability Assessment Scanner) is a full-featured vulnerability scanner. Its capabilities include unauthenticated testing, authenticated testing, various high level and low level Internet and industrial protocols, performance tuning for large-scale scans and a powerful internal programming language to implement any type of vulnerability test. OpenVAS is a GUI (and command line) scan vulnerability system. Tony gave a talk about openVAS a few years ago when we were meeting at UMSL's incubator. Now, he wants to tell us how its latest release is a "fork-lift upgrade" which has some major changes. that you need to prepare for. OpenVAS dates back to 2009 and the project is maintained by a commercial/open-source company. With its focus on the enterprise market and its long history, any risks of enterprises adopting a technology that might become abandoned are greatly reduced. - Can perform various types of authenticated/unauthenticated tests - Supports a variety of high- and low-level Internet and industrial protocols - Has an internal programming language that can be used for implementing custom vulnerability tests - In the last quarter: 149253 CVE profiles in scan engine, 63580 vulnerability tests available for the scan system to test the environment. Tony will discuss the install process, and configuration. He will show his test environment. Discussion of latest release OpenVAS install and operation, here are some details: The Greenbone Community Edition version11(formerly OpenVAS) on Kali Linux 2020.2. production The Greenbone Community Edition version11 (formerly OpenVAS) on Kali Linux 2020.3. test BIO: Tony Zafiropoulos, CISA is a Certified Information Systems Auditor® and a frequent & long-time contributor to SLUUG. When not speaking to us, he runs the consulting company FixVirus. His most recent talk to our group was on the Kali Linux distro which is customized for security investigation.