It’s been now 3 days that im searching for the SQL documentation more likely how to configure a sql scan with greenbone but Im not able to find anything revelant.
I used lastest version of greenbone. so Can someone please tell me where is the doc
As target our psql for GSAD ? You can connect to psql and can do you scan. But you can´t be sure that this sql schema will be president for the next version.
Looks like there is currently a big misunderstanding here.
If i’m understanding @Maselia correctly the question is how to use GVM to scan e.g. a web application for SQL injections, not how to use SQL queries on the gvmd database to run a specific scan.
If this is correctly please have a look at:
Also please note that GVM is no full web application scanner (WAS) so you might need to use a separate, dedicated WAS software to find SQL injections in your application.
Set the “Enable generic web application scanning” option from step 2. to “yes”
Save the scan config
Create a new task using this new scan config.
But again please note that this is really only checking for basic SQL injections, you won’t get a throughout coverage of unknown SQL injections by GVM and this needs a dedicated WAS.