Hello I want your opinion on how to structure plugins properly. What I am doing right now is making the following NVTs: -product detection NVT, where I detect the model of the product and the firmware version, via http or snmp.
-second NVT which is focused on a known vulnerability, this means searching in the kb if there is a vulnerable model (previously known thanks to the first NVT), and checking if the firmware version is less or equal to anotherone in order to be able to say that this product is vulnerable. What do you think about this squeme? Could it be better if I divide the first NVT into various NVTs? One to detect the information via http, anotherone to detect it via snmp, and os on? Thanks!
_______________________________________________ Openvas-plugins mailing list [email protected] https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-plugins
