• Stars
    star
    161
  • Rank 233,470 (Top 5 %)
  • Language
    Python
  • License
    GNU General Publi...
  • Created about 7 years ago
  • Updated 3 months ago

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

Remote control your Greenbone Community Edition or Greenbone Enterprise Appliance

Greenbone Logo

Greenbone Vulnerability Management Tools

GitHub releases PyPI release code test coverage Build and test

The Greenbone Vulnerability Management Tools gvm-tools are a collection of tools that help with remote controlling a Greenbone Enterprise Appliance and Greenbone Community Edition installations. The tools aid in accessing the communication protocols GMP (Greenbone Management Protocol) and OSP (Open Scanner Protocol).

This module is comprised of interactive and non-interactive clients. The programming language Python is supported directly for interactive scripting. But it is also possible to issue remote GMP/OSP commands without programming in Python.

Table of Contents

Documentation

The documentation for gvm-tools can be found at https://greenbone.github.io/gvm-tools/. Please refer to the documentation for more details as this README just gives a short overview.

Installation

See the documentation for all supported installation options.

Version

Please consider to always use the newest version of gvm-tools and python-gvm. We frequently update this projects to add features and keep them free from bugs. This is why installing gvm-tools using pip is recommended.

To use gvm-tools with an old GMP version (7, 8, 9) you must use a release version that is <21.06, combined with an python-gvm version <21.05. In the 21.06 release the support of these older versions has been dropped.

Requirements

Python 3.7 and later is supported.

Install using pip

You can install the latest stable release of gvm-tools from the Python Package Index using pip:

python3 -m pip install --user gvm-tools

Usage

There are several clients to communicate via GMP/OSP.

All clients have the ability to build a connection in various ways:

  • Unix Socket
  • TLS Connection
  • SSH Connection

gvm-cli

This tool sends plain GMP/OSP commands and prints the result to the standard output.

Examples

Return the current protocol version used by the server:

gvm-cli socket --xml "<get_version/>"

Return all tasks visible to the GMP user with the provided credentials:

gvm-cli --gmp-username foo --gmp-password bar socket --xml "<get_tasks/>"

Read a file with GMP commands and return the result:

gvm-cli --gmp-username foo --gmp-password bar socket myfile.xml

Note that gvm-cli will by default print an error message and exit with a non-zero exit code when a command is rejected by the server. If this kind of error handling is not desired, the unparsed XML response can be requested using the --raw parameter:

gvm-cli socket --raw --xml "<authenticate/>"

gvm-script

This tool has a lot more features than the simple gvm-cli client. You have the possibility to create your own custom gmp or osp scripts with commands from the python-gvm library and from Python 3 itself.

Example script

# Retrieve current GMP version
version = gmp.get_version()

# Prints the XML in beautiful form
from gvmtools.helper import pretty_print
pretty_print(version)

# Retrieve all tasks
tasks = gmp.get_tasks()

# Get names of tasks
task_names = tasks.xpath('task/name/text()')
pretty_print(task_names)

More example scripts

There is a growing collection of gmp-scripts in the "scripts/" folder. Some of them might be exactly what you need and all of them help writing your own gmp scripts.

gvm-pyshell

This tool is for running gmp or osp scripts interactively. It provides the same API as gvm-script using the python-gvm library.

Example program use

Connect with given credentials via a unix domain socket and open an interactive shell:

gvm-pyshell --gmp-username user --gmp-password pass socket

Connect through SSH connection and open the interactive shell:

gvm-pyshell --hostname 127.0.0.1 ssh

Support

For any question on the usage of gvm-tools or gmp scripts please use the Greenbone Community Portal. If you found a problem with the software, please create an issue on GitHub.

Maintainer

This project is maintained by Greenbone AG.

Contributing

Your contributions are highly appreciated. Please create a pull request on GitHub. For bigger changes, please discuss it first in the issues.

For development you should use poetry to keep you python packages separated in different environments. First install poetry via pip

python3 -m pip install --user poetry

Afterwards run

poetry install

in the checkout directory of gvm-tools (the directory containing the pyproject.toml file) to install all dependencies including the packages only required for development.

Afterwards active the git hooks for auto-formatting and linting via autohooks.

poetry run autohooks activate --force

License

Copyright (C) 2017-2022 Greenbone AG

Licensed under the GNU General Public License v3.0 or later.

More Repositories

1

openvas-scanner

This repository contains the scanner component for Greenbone Community Edition.
Rust
3,228
star
2

gvmd

Greenbone Vulnerability Manager - The database backend for the Greenbone Community Edition
C
280
star
3

gsa

Greenbone Security Assistant - The web frontend for the Greenbone Community Edition
JavaScript
212
star
4

autohooks

Library for managing git hooks
Python
187
star
5

python-gvm

Greenbone Vulnerability Management Python Library
Python
106
star
6

gvm-libs

Greenbone Vulnerability Management Libraries
C
83
star
7

ospd-openvas

ospd-openvas is an OSP server implementation to allow GVM to remotely control an OpenVAS Scanner
Python
66
star
8

openvas-smb

SMB module for OpenVAS Scanner
C
47
star
9

notus-scanner

Notus is a vulnerability scanner for creating results from local security checks
Python
40
star
10

ospd

OSPd is a framework for vulnerability scanners which share the same communication protocol: OSP (Open Scanner Protocol)
Python
30
star
11

docs

Documentation for the Greenbone Community Edition
Shell
22
star
12

gsad

Greenbone Security Assistant HTTP Server - The server talking to the Greenbone Vulnerability Management daemon (gvmd).
C
10
star
13

pheme

pheme is a service to create scan reports
Python
9
star
14

pontos

Common utilities and tools maintained by Greenbone Networks
Python
9
star
15

greenbone-feed-sync

New script for downloading the Greenbone Community Feed
Python
8
star
16

pg-gvm

Greenbone Library for helper functions in PostgreSQL
CMake
7
star
17

actions

GitHub Actions for Greenbone projects
Python
7
star
18

greenbone-container-images

Additional Container Images from Greenbone
Dockerfile
6
star
19

troubadix

A linting tool for NASL files
Python
6
star
20

hyperion

Abandoned. This repository is not used anymore.
Python
6
star
21

.github

Default GitHub files for Greenbone Projects
5
star
22

autohooks-plugin-black

An autohooks plugin for python code formatting via black
Python
5
star
23

ospd-debsecan

OSP server implementation to allow GVM to remotely control a debsecan scanner
Python
5
star
24

ospd-example-scanner

Example ospd based scanner
Python
4
star
25

boreas

Boreas a command line tool to scan for alive hosts
CMake
4
star
26

ospd-ikescan

ospd-ikescan is a OSP server implementation to allow GVM to remotely control a ike-scan scanner
Python
4
star
27

ospd-nmap-nse

ospd-nmap-nse is an OSP server implementation to allow GVM to remotely control the nmap port scanner
Python
4
star
28

ospd-ikeprobe

ospd-ikeprobe is a OSP server implementation to allow GVM to remotely control a ikeprobe scanner
Python
3
star
29

autohooks-plugin-pylint

Autohooks plugin for code linting via pylint
Python
3
star
30

ospd-netstat

ospd-netstat is a OSP server implementation to allow GVM to remotely control the netstat tool
Python
3
star
31

ui-components

React Components
TypeScript
3
star
32

go-project-template

Go Project Template
Go
3
star
33

templates

Greenbone Templates for repositories on GitHub
3
star
34

ospd-nmap

ospd-nmap is a OSP server implementation to allow GVM to remotely control the nmap port scanner
Python
3
star
35

keycloak-client-golang

Reusable keycloak client for golang
Go
3
star
36

autohooks-plugin-isort

An autohooks plugin for Python include sorting with isort
Python
3
star
37

vt-test-environments

Environments for VT testing
Dockerfile
3
star
38

scanner-api

API for the scanner
HTML
3
star
39

ospd-ssh-keyscan

ospd-ssh-keyscan is a OSP server implementation to allow GVM to remotely control the ssh-keyscan tool of OpenSSH
Python
2
star
40

autohooks-plugin-flake8

Autohooks plugin for flake8
Python
2
star
41

autohooks-plugin-pytest

Python
2
star
42

python-project-template

Python Project Template
Python
2
star
43

greenbone.github.io

Pages
HTML
1
star
44

opensight-golang-libraries

A collection of reusable Golang code to provide functionality to OpenSight backend services
Go
1
star
45

exercise-admin-notification

An example REST service as end point for an application execise
Go
1
star