@irj said in Network Vulnerability Scan with REporting:

@obsolesce said in Network Vulnerability Scan with REporting:

What does everything OpenVAS does, and giving you the same info such as fixes/resolutions, but is faster for larger environments?

Yeah, but OpenVas is a resource pig, and the reporting isnt very good when you are reporting against thousands of systems, and you need to break them up into smaller groups. Also it isnt ideal for enterprise as permissions are a nightmare when you only want certain people to see certain assets.

It is actually much more expensive for a large company to try to use OpenVas

I'm not using it for thousands of systems at once, and permissions are not an issue. At most a scan is against a hundred or two devices at once. Maybe that's why I haven't noticed any slow or clunkyness.

But for in the future, I am curious of what to use that compares to OpenVAS, but is better with speed and permissions?

We decided to stick with Wazuh. It runs on CentOS 7 and has a shiny OVA we used to deploy it. So for the purposes of this thread, we have our distro selected. Thanks everyone for the help.

I have it installed. Just dropped the forwarder on the firewall so far. So it alerts me whenever something gets by the first box.... no alerts so far (I'd knock on wood if I could.)