Professional Documents
Culture Documents
Vsam - Quick Start Guide
Vsam - Quick Start Guide
Version 1.10
Contents
-2 -
Vsam (Vulnerability, Scanning And Management) is a VMware virtual appliance that provides
comprehensive management capabilities to Nessus Scans. This guide is intended to be only a
starting point and assists a Security or IT professional to install and configure Vsam in several
easy to follow steps.
Vsam requires a VMware environment. The appliance is a VMware 6.5-7 compatible image
and should run in the following environments.
Download the archive and store in a temporary directory. To extract, install 7-zip (www.7-
zip.org) and store these files into a temporary directory. Note that this archive is also
supported by other archiving software such as Winzip.
If you are using VMware workstation or VMplayer, start up the appliance by opening the
VMware application, click File->Open and browse to the directory where the archive was
decompressed select the configuration file. The virtual appliance should begin to boot up and
be available within 1-2 minutes.
For individuals using VMware Server or ESX, please consult your VMware administrator to
install and setup the image.
-3 -
3.0 Accessing Vsam
3.3 SSH
Before Vsam can be used, the Appliance must be configured. It is important that a little
planning is completed prior to these steps. Vsam requires access to the Internet in order to
both license Nessus and update the Appliance as new vulnerabilities are discovered.
Please ensure that the IP Address assigned to the Appliance in the following steps, has direct
access to:
downloads.nessus.org
Once this has been confirmed, please complete the steps below.
-4 -
1. Login into the Appliance via VMware’s Guest Console.
2. Type ./setup and hit enter. Please note the period backslash are part of the command.
3. The script will ask for various pieces of information that must be provided in order to
ensure the appliance is setup for operation. The required information is described
below.
4. Once all information has been entered, the appliance will make the necessary
configuration changes, confirm the changes and reboot.
-5 -
5. The appliance is now ready to use. It can be accessed via a HTTPS web session at the IP
address specified in the script above.
While not required, it is highly recommended that Vsam be configured as described below to
ensure the correct information has been entered about your environment. This will allow Vsam
to better process scan data.
5.1 Sites
At a minimum, Vsam requires some information about the environment it will
be tracking. As a Nessus user, this may seem unnecessary, however, because
Vsam is managing scan data from Nessus, it requires some additional knowledge
about your environment.
In order to run scans, at least one site must be configured. Defining a Site allows
subnets to also be defined and assigned to a specific site. This provides some
structure when scan data is processed.
5.2 Subnets
-6 -
a. Select the Infrastructure menu, then Sites
b. Click on the number in the ‘Auto Notify Column or click on the edit icon
(pencil) and then the SUBNETS link.
c. Click ‘Add New Subnet’
d. Enter the subnet to be scanned as a CIDR. For example, 192.168.1.0/24 or
172.16.1.0/24. If partial subnets are required, adjust the subnet mask. The
range fields (Start IP and End IP) fields may also be used instead of entering
a CIDR.
e. Select ‘Assigned’ for the Status field
f. Enter an email address in the POC field. If no email address is required, use
‘root@localhost.com’
g. Check the ‘Allowed to Scan’ box.
h. Click the Save Button
Repeat this process for any additional subnets that you would like to assign to this site.
Vsam comes pre-configured with some of the required information to run Nessus. This
includes a pre-configured local Nessus server, pre-configured Nessus profiles, and pre-loaded
plugins. This allows for quick setup of scans. To scan a host simply do the following.
-7 -
7. Once all information has been entered, click on the submit button. The scan will be
queue for processing.
Once the scan has completed, results will be available in the Reports->Nessus Scan Results
menu
-8 -