欢迎您访问程序员文章站本站旨在为大家提供分享程序员计算机编程知识!
您现在的位置是: 首页  >  网络运营

Linux下实现漏洞扫描

程序员文章站 2022-09-19 17:55:05
Rapid7 是全球领先的安全风险信息解决方案提供商,Rapid7 用来漏洞管理,漏洞扫描,漏洞评估和渗透测试。Rapid7 的安装风险智能解决方案包括集成的风险管理和渗透测试产品 Nexpo...
Rapid7 是全球领先的安全风险信息解决方案提供商,Rapid7 用来漏洞管理,漏洞扫描,漏洞评估和渗透测试。Rapid7 的安装风险智能解决方案包括集成的风险管理和渗透测试产品 Nexpose 和 Metasploit, 它们使您的机构能对安全威胁和风险形势,主动获得准确的情报以及可操作的情境信息。Rapid7 独一无二地定位于提供安全风险情报的闭环解决方案,通过组合Nexpose的漏洞管理功能和Metasploit的渗透测试与风险验证功能,从而动态确定风险的存在和可能性。通过将数据与漏洞、滥用、恶意软件、错误配置和渗透测试信息相关联, Rapid7 将您电脑环境中的真实风险(Real Risk™)数量化。准确掌握了这些情境信息,我们可以提供清晰简洁的缓解建议和补救策略,并随时检测和跟踪风险趋势。

漏洞管理

Rapid7 Nexpose 识别和管理“可被利用的”漏洞。

基于准确的风险信息,制定更明智的安全决策。

Rapid7 Nexpose 启用了全景式的漏洞管理,使得网络安全团队能够更快制定更佳的决策。Nexpose 确保您可以:

扫描您的 100% 基础设施:扫描数据库,网络应用程序和所有的网络设备,确保您掌握所有漏洞的方方面面。

准确理解您的真实风险形势:持续发现物理的和虚拟的资产,并集成恶意软件和滥用风险的信息,Nexpose助您精确洞察最重大的风险。

迅速准确地区分风险的优先顺序:通过扫描发现成千上万的漏洞;使用 Real Risk,Nexpose 有效地将您的补救措施按优先顺序排列,避免浪费您的时间。

校验漏洞是否已被补救:使用Metasploit集成的数据,您的安全团队可以校验补救措施是否成功,减少重复劳动,更有效地降低风险。

基于全部物理资产和虚拟资产的详细风险报告,Nexpose 提供了情境化的,详细的,依序排列的补救路线图,并带有每个任务的时间预期,从而更有效更高效地降低风险。

渗透测试

Metasploit 帮助验证漏洞和补救方案,并管理风险评估。

通过开源社区和Rapid7之间的合作, Metasploit® 软件帮助安全专家和IT专业人士识别安全风险,校验漏洞补救措施,并管理专家参与的安全评估。它提供了真正的安全风险信息,有助预防数据泄露。

功能包括智能利用,密码审计,网络应用程序扫描,以及社会化编程。各种团队可以在Metasploit 协同工作并在合并的报表中提供他们的结果。

Metasploit 版本覆盖免费版到专业企业版,都基于Metasploit Framework,它是一个开源软件开发包,带有世界最大的保证质量的公开漏洞库。

Metasploit Pro实用性

Metasploit Pro通过高效运行大范围的渗透测试,优先化漏洞排序,并验证控制和补救措施,从而帮助安全团队和企业中的IT专业人士防止数据泄露。

下载地址:http://www.rapid7.com/vulnerability-scanner.jsp

注意:在安装期间需要一个企业的邮箱,来注册验证码。这个邮箱不能是免费的GMAIL,126之类的,必须是企业账户,139.com是可以的

安装条件:

2 GHz处理器

4 GB(32位),8 GB RAM(64位)推荐

80 GB的可用磁盘空间

10 GB的可用磁盘空间扫描引擎

实验环境 centos-5.5

实验软件 NeXposeSetup-Linux32.bin

安装软件

-rw-r--r-- 1 root root 306463060 Jun  1  2013 NeXposeSetup-Linux32.bin

chmod  +x NeXposeSetup-Linux32.bin

-rwxr-xr-x 1 root root 306463060 Jun  1  2013 NeXposeSetup-Linux32.bin

./NeXposeSetup-Linux32.bin

Do you want to continue?

Yes [y, Enter], No [n]    选择y

Visit https://localhost:3780 to view more detailed progress updates during startup.

如果。出现这个提示,证明安装完成

cd /opt/rapid7/nexpose/nsc

./nsc.sh

Checking for available jvms

Validating jre in directory  _jvm1.7.0_03

Please use CMSClassUnloadingEnabled in place of CMSPermGenSweepingEnabled in the future

2013-05-28T01:19:51 [INFO]

2013-05-28T01:19:51 [INFO] OS Information

2013-05-28T01:19:51 [INFO] ------------------------------------------------------------

2013-05-28T01:19:51 [INFO] Current directory: /opt/rapid7/nexpose/nsc

2013-05-28T01:19:51 [INFO] User name:         root

2013-05-28T01:19:51 [INFO] Computer name:     localhost.localdomain

2013-05-28T01:19:51 [INFO] Operating system:  CentOS Linux 5.5

2013-05-28T01:19:51 [INFO] Total memory:      3107636 KBytes

2013-05-28T01:19:51 [INFO] Available memory:  1707436 KBytes

2013-05-28T01:19:51 [INFO] CPU speed:         2200MHz

2013-05-28T01:19:51 [INFO] Number of CPUs:    1

2013-05-28T01:19:51 [INFO] Super user:        true

2013-05-28T01:19:51 [INFO] JVM started:       Tue May 28 01:19:37 EDT 2013

2013-05-28T01:19:51 [INFO] JVM uptime:        6 seconds

Checking graphics environment...

OK

PATH: /usr/kerberos/sbin:/usr/kerberos/bin:/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin:/root/bin

The Java virtual machine is exiting with code 0

Using jre at  _jvm1.7.0_03

PATH: /usr/kerberos/sbin:/usr/kerberos/bin:/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin:/root/bin

Please use CMSClassUnloadingEnabled in place of CMSPermGenSweepingEnabled in the future

Logging to file /opt/rapid7/nexpose/update.log

Checking for available jvms

Validating jre in directory  _jvm1.7.0_03

Please use CMSClassUnloadingEnabled in place of CMSPermGenSweepingEnabled in the future

2013-05-28T01:20:05 [INFO]

2013-05-28T01:20:05 [INFO] OS Information

2013-05-28T01:20:05 [INFO] ------------------------------------------------------------

2013-05-28T01:20:05 [INFO] Current directory: /opt/rapid7/nexpose/nsc

2013-05-28T01:20:05 [INFO] User name:         root

2013-05-28T01:20:05 [INFO] Computer name:     localhost.localdomain

2013-05-28T01:20:05 [INFO] Operating system:  CentOS Linux 5.5

2013-05-28T01:20:05 [INFO] Total memory:      3107636 KBytes

2013-05-28T01:20:05 [INFO] Available memory:  1705080 KBytes

2013-05-28T01:20:05 [INFO] CPU speed:         2200MHz

2013-05-28T01:20:05 [INFO] Number of CPUs:    1

2013-05-28T01:20:05 [INFO] Super user:        true

2013-05-28T01:20:05 [INFO] JVM started:       Tue May 28 01:19:56 EDT 2013

2013-05-28T01:20:05 [INFO] JVM uptime:        1 second

Checking graphics environment...

OK

PATH: /usr/kerberos/sbin:/usr/kerberos/bin:/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin:/root/bin

The Java virtual machine is exiting with code 0

Using jre at  _jvm1.7.0_03

PATH: /usr/kerberos/sbin:/usr/kerberos/bin:/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin:/root/bin

Please use CMSClassUnloadingEnabled in place of CMSPermGenSweepingEnabled in the future

2013-05-28T01:20:09 [INFO] Logging initialized. [Name = default] [Level = INFO] [Timezone = America/New_York (Eastern Standard Time, GMT-4:00)]

2013-05-28T01:20:19 [INFO] Product Version:                 5.6.6

2013-05-28T01:20:19 [INFO] Current directory:               /opt/rapid7/nexpose/nsc

2013-05-28T01:20:19 [INFO] User name:                       root

2013-05-28T01:20:19 [INFO] Super user:                      Yes

2013-05-28T01:20:19 [INFO] Computer name:                   localhost.localdomain

2013-05-28T01:20:19 [INFO] Host Address:                    127.0.0.1

2013-05-28T01:20:19 [INFO] Host FQDN:                       localhost.localdomain

2013-05-28T01:20:19 [INFO] Operating system:                CentOS Linux 5.5

2013-05-28T01:20:19 [INFO] CPU speed:                       2200MHz

2013-05-28T01:20:19 [INFO] Number of CPUs:                  1

2013-05-28T01:20:19 [INFO] Total memory:                    3 GB

2013-05-28T01:20:19 [INFO] Available memory:                1.6 GB

2013-05-28T01:20:19 [INFO] Total disk space:                35.9 GB

2013-05-28T01:20:19 [INFO] Available disk space:            29.8 GB

2013-05-28T01:20:19 [INFO] Disk space used by installation: 1.2 GB

2013-05-28T01:20:19 [INFO] Disk space used by scans:        0 bytes

2013-05-28T01:20:19 [INFO] Disk space used by database:     703.8 MB

2013-05-28T01:20:19 [INFO] Disk space used by reports:      5.1 MB

2013-05-28T01:20:19 [INFO] Disk space used by backups:      0 bytes

2013-05-28T01:20:19 [INFO] JVM name:                        Java HotSpot(TM) Server VM

2013-05-28T01:20:19 [INFO] JVM vendor:                      Oracle Corporation

2013-05-28T01:20:19 [INFO] JVM version:                     22.1-b02

2013-05-28T01:20:19 [INFO] JVM started:                     2013-05-28 05:20 GMT

2013-05-28T01:20:19 [INFO] Running interactively under super-user: root.

2013-05-28T01:20:19 [INFO] Initializing JDBC drivers.

2013-05-28T01:20:20 [WARN] No valid licenses were found. This will prevent site modification and the running of scans.

2013-05-28T01:20:23 [INFO] Configuring web server.

2013-05-28T01:20:29 [INFO] Generating skin: /opt/rapid7/nexpose/nsc/htroot/scripts/nexpose-skin.js

2013-05-28T01:20:29 [INFO] Generating feature set: /opt/rapid7/nexpose/nsc/htroot/scripts/nexpose-features.js

2013-05-28T01:23:53 [INFO] Web server subsystem initialized.

2013-05-28T01:23:53 [INFO] Initializing scheduler...

2013-05-28T01:23:53 [INFO] Starting Scheduler

2013-05-28T01:23:53 [INFO] Scheduler subsystem initialized.

2013-05-28T01:23:53 [INFO] Initializing administrative alerters.

2013-05-28T01:23:53 [INFO] Initializing postgresql database manager for //127.0.0.1:5432/nexpose.

2013-05-28T01:23:55 [INFO] Starting up postgresql DB system

2013-05-28T01:23:57 [INFO] PostgreSQL service status: 1.

2013-05-28T01:23:57 [INFO] Determining whether database nexpose exists

2013-05-28T01:23:58 [INFO] PostgreSQL 9.0.13 on i686-pc-linux-gnu, compiled by GCC gcc (GCC) 4.1.2 20080704 (Red Hat 4.1.2-52), 32-bit

2013-05-28T01:23:58 [INFO] Database schema version: 103

2013-05-28T01:23:58 [INFO] Initializing update processor.

2013-05-28T01:23:59 [INFO] Checking for the existence of an update table in staging directory /opt/rapid7/nexpose/updates/pending/updates/updates.

2013-05-28T01:23:59 [INFO] Checking for approved updates.

2013-05-28T01:23:59 [INFO] Processing content update stream.

2013-05-28T01:23:59 [INFO] Processing product update stream.

2013-05-28T01:23:59 [INFO] No approved updates found for processing.

2013-05-28T01:23:59 [INFO] Starting auto-update.

2013-05-28T01:23:59 [INFO] Checking for new updates.

2013-05-28T01:23:59 [INFO] Establishing HTTP connection with updates.rapid7.com via proxy updates.rapid7.com:80.

2013-05-28T01:24:04 [INFO] Checking for new updates for product ID 281474976711146.

2013-05-28T01:24:06 [INFO] Found 0 updates for product ID 281474976711146.

2013-05-28T01:24:06 [INFO] Checking for new updates for product ID 300.

2013-05-28T01:24:08 [INFO] Found 0 updates for product ID 300.

2013-05-28T01:24:08 [INFO] Checking for new updates for product ID 281474976710757.

2013-05-28T01:24:10 [INFO] Found 0 updates for product ID 281474976710757.

2013-05-28T01:24:10 [INFO] No new updates to download.

2013-05-28T01:24:10 [INFO] Checking for updates pending approval.

2013-05-28T01:24:10 [INFO] Approved 0 out of 0 pending updates.

2013-05-28T01:24:10 [INFO] Checking for the existence of an update table in staging directory /opt/rapid7/nexpose/updates/pending/updates/updates.

2013-05-28T01:24:11 [INFO] Checking for approved updates.

2013-05-28T01:24:11 [INFO] Processing content update stream.

2013-05-28T01:24:11 [INFO] Processing product update stream.

2013-05-28T01:24:11 [INFO] No approved updates found for processing.

2013-05-28T01:24:11 [INFO] Auto-update completed successfully.

2013-05-28T01:24:12 [INFO] Checking for the existence of an update table in staging directory /opt/rapid7/nexpose/updates/pending/updates/updates.

2013-05-28T01:24:12 [INFO] Staged 0 updates.

2013-05-28T01:24:12 [INFO] Current DB_VERSION = 103, current DB_REINDEX = 35

2013-05-28T01:24:12 [INFO] Verifying database version...

2013-05-28T01:24:12 [INFO] Installed DB VERSION = 103

2013-05-28T01:24:12 [INFO] Database version 103 is up to date

2013-05-28T01:24:12 [INFO] Database does not require upgrading

2013-05-28T01:24:12 [INFO] Initializing datastore login module.

2013-05-28T01:24:12 [INFO] Synchronizing authentication sources.

2013-05-28T01:24:12 [INFO] Synchronizing XML users with datastore...

2013-05-28T01:24:19 [INFO] Starting up postgresql DB system

2013-05-28T01:24:19 [INFO] PostgreSQL service status: 1.

2013-05-28T01:24:36 [INFO] Initializing extension manager...

2013-05-28T01:24:36 [INFO] Completed initializing the extension manager.

输入https://服务器ip:3780

Linux下实现漏洞扫描

输入用户名 密码,用户名 密码为自行设置

Linux下实现漏洞扫描

看到这个截图证明漏洞扫描可以正常工作了。

 

软件使用

https://ip:3780 首先要登录成功,安装期间已经建立过用户了,输入用户名和密码。

HOME->new static stie =>

General ,name :10.20.10.128

Assets:included assets:10.20.10.128

Scan setup:Full audit

==>Save

回到HOME,site listing =>Scan