Skip to main content

A vulnerability scanner for creating results from local security checks (LSCs)

Project description

Greenbone Logo

Notus Scanner

Build and test

Notus Scanner detects vulnerable products in a system environment. The scanning method is to evaluate internal system information. It does this very fast and even detects currently inactive products because it does not need to interact with each of the products.

To report about vulnerabilities, Notus Scanner receives collected system information on the one hand and accesses the vulnerability information from the feed service on the other. Both input elements are in table form: the system information is specific to each environment and the vulnerability information is specific to each system type.

Notus Scanner integrates into the Greenbone Vulnerability Management framework which allows to let it scan entire networks within a single task. Any vulnerability test in the format of .notus files inside the Greenbone Feed will be considered and automatically matched with the scanned environments.

A system environment can be the operating system of a host. But it could also be containers like Docker or virtual machines. Neither of these need to be actively running for scanning.

The Notus Scanner is implemented in Python and published under an Open Source license. Greenbone Networks maintains and extends it since it is embedded in the Greenbone Professional Edition as well as in the Greenbone Cloud Services.

Greenbone also keeps the vulnerability information up-to-date via the feed on a daily basis. The .notus format specification is open and part of the documentation.

Table of Contents

Installation

Python 3.9 and later is supported.

For further information about installation and configuration read install description.

Development

notus-scanner uses poetry for its own dependency management and build process.

First install poetry via pip

python3 -m pip install --user poetry

Afterwards run

poetry install

in the checkout directory of notus-scanner (the directory containing the pyproject.toml file) to install all dependencies including the packages only required for development.

For development activate the git hooks for auto-formatting and linting via autohooks.

poetry run autohooks activate

Validate the activated git hooks by running

poetry run autohooks check

Support

For any question on the usage of Notus Scanner please use the Greenbone Community Forum. If you found a problem with the software, please create an issue on GitHub. If you are a Greenbone customer you may alternatively or additionally forward your issue to the Greenbone Support Portal.

Maintainer

This project is maintained by Greenbone AG

Contributing

Your contributions are highly appreciated. Please create a pull request on GitHub. Bigger changes need to be discussed with the development team via the issues section at GitHub first.

License

Copyright (C) 2021-2024 Greenbone AG

Licensed under the GNU Affero General Public License v3.0 or later.

Project details


Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

notus_scanner-22.6.4.tar.gz (283.8 kB view details)

Uploaded Source

Built Distribution

notus_scanner-22.6.4-py3-none-any.whl (46.7 kB view details)

Uploaded Python 3

File details

Details for the file notus_scanner-22.6.4.tar.gz.

File metadata

  • Download URL: notus_scanner-22.6.4.tar.gz
  • Upload date:
  • Size: 283.8 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: twine/5.1.0 CPython/3.12.5

File hashes

Hashes for notus_scanner-22.6.4.tar.gz
Algorithm Hash digest
SHA256 8e7c7728cec06f1978256dfe613c08ee5d282fcb503b27c650e602e38f8760e2
MD5 8077f6911ba3cb9c5df6f267d1e84a9e
BLAKE2b-256 63ad3f599d22afa5f4282a83970cd9b2d302e09727a96a252fdde2c389832663

See more details on using hashes here.

File details

Details for the file notus_scanner-22.6.4-py3-none-any.whl.

File metadata

File hashes

Hashes for notus_scanner-22.6.4-py3-none-any.whl
Algorithm Hash digest
SHA256 ece08197729be998832a521bf79c82929b8efcbca02ab6a4e5cbc85bc3bf3593
MD5 7b4df54f63d790ce2b42487175d1625f
BLAKE2b-256 2b0296909f2dd459ec7d6f9ca59d44c8929e3814e1bafa30148d540b14cba8c2

See more details on using hashes here.

Supported by

AWS AWS Cloud computing and Security Sponsor Datadog Datadog Monitoring Fastly Fastly CDN Google Google Download Analytics Microsoft Microsoft PSF Sponsor Pingdom Pingdom Monitoring Sentry Sentry Error logging StatusPage StatusPage Status page