OpenVAS (Open Vulnerability Assessment System) is a network security scanner with additional tools like a graphical user front-end and other security tools such as nmap and nikto integrated. The core component is a server with a set of network vulnerability tests (NVTs) to detect security problems in remote systems and applications. OpenVAS products are Free Software under GNU GPL.
Since March 2009 LSS is actively contributing to OpenVAS project. LSS experts are participating in development of new security tests and many other activities within OpenVAS community. Besides that, LSS security team is actively using OpenVAS products in conduction of all security tests.
LSS security experts participated in second OpenVAS Developer Conference DevCon2 that was held in Osnabrück (Germany) from July 9th-12 th 2009. The conference gathered 16 developers, members of OpenVAS community, and covered various topics such as plans for third big release of OpenVAS (3.0), activities in product promotion and further development of OpenVAS security tests.
Furthermore, LSS made a comparison of OpenVAS with other popular network security scanner – Nessus. This comparison is particularly interesting because OpenVAS began its life as fork of, once popular open-source, but today proprietary tool Nessus. Comparison is based on test conducted on LSS production network infrastructure and servers. It showed that OpenVAS is reliable tool that can be equally compared to its expensive proprietary competition.