Custom plugins for almalinux

not_your_business · May 24, 2025, 10:20am

Hi!

Is it possible to make custom plugins for notus scanner(json) or openvas scanner(nasl) plugins for detecting Vulnerabilities on Almalinux systems ?

Eero · May 24, 2025, 4:12pm

@not_your_business well. yes and no. you need someone to do it. not hard, but ..

Eero

not_your_business · May 24, 2025, 5:41pm

THX.

I just want to clarify, is it enogh to add custom plugins or I need to modify some code for my purposes and then create custom plugins?

Eero · May 24, 2025, 5:57pm

@not_your_business

The plugins are written in the NASL scripting language. Typically, a generator is created that reads information from the vendor’s vulnerability advisories and, based on that, continuously produces .nasl scripts for each vulnerability. I used to make these years ago; it’s not very difficult—though it depends on your level of expertise.

Eero

not_your_business · May 24, 2025, 7:14pm

So it is enogh to create custom plugins.

Why didn’t you create custom VTs for notus scanner? VTs for notus are just json files that is simplier to create.

Eero · May 24, 2025, 7:22pm

That particular product didn’t even exist back then.

Eero