Hi,
i am new to greenbone community but i wan’t to achive a scan where i found missing patches on my homelab environment based on windows and linux machines.
Currently I use Tenable Nessus, but i hope there is a way to get the same with greenbone?
I already got a credential scan running, but it only shows vulnarbilitys but no missing patches for windows updates or 3rd party applications.
Is this feature only included in the enterprise path?
Greenbone can detect missing patches when they are associated with a CVE. However, AFAIK there is no VT that generally interpret package manager metadata.
You did not mention your target OS, but obviously command line tools like apt list --upgradable, dnf check-update or wmic qfe list (for Windows, but does not include third-party packages) can be run locally to determine missing package update (or OS patch in the case of Windows).
That being said, it would be a far cry to expect a Windows patch cycle to go by without a CVE - let alone without a critical CVSS one. So you are always going to be notified about missing Windows updates.