Hello. I have a scenario where the remote registry service on Windows targets is disabled and, due to baseline policies, it cannot be changed. Is there any option in OpenVAS that allows me to perform an authenticated scan even without the possibility of starting this service?
The documentation clearly says that:
The remote registry service must be started in order to access the registry.
I guess you could write your own VTs that use WMI’s StdRegProv class .
If the remote computer does not have the remote registry service running (but does have WMI enabled), you can use WMI’s
StdRegProvclass to work with the registry as well.
I managed to start the remote registry, OpenVAS was able to access the registry and authenticate successfully (according to the second occurrence “LSC…”), but the scan does not seem to apply the NVTs. What could it be? The targets are within an AD, could it be some GPO?