OpenVAS: Windows Local Security Checks

Basis of the procedure

OpenVAS uses the SMB protocol for local security checks on Windows operating systems.

For this reason, smbclient must be installed on the OpenVAS server.


apt-get install smbclient

The smbclient file, which must be located in the system path, is used.

Smbclient must be executable with the rights of the OpenVAS scanner.

A user with administrative rights is required to access Windows systems.
This user and his password are stored in the graphical interface of OpenVAS as SMB credentials. A domain user can also be used within a domain.


The credentials must be used in a target.



There are various NVTs that can help identify problems:


For example, a missing smbclient:


Wrong log in credentials:


Successful log in:


Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s