Files

Charles N Wyble 1c82448205 merge: plan.knownelement.com (7 pages)

git-subtree-dir: content/plan.knownelement.com
git-subtree-mainline: e6384cc4e1
git-subtree-split: 5418b03a87

2026-03-02 16:49:04 -05:00

Vulnerability management

identify total asset base (use nmap and see if it matches librenms and resolve any discrepancies)
perform scans of total asset base (using openvas/lynis/ossim)
manage vulnerability ratings/scope
notify/escalate to appropriate contacts
address the vulns
report metrics (i think the apps provide built in dashboards, may need some light modification)

i think ossim can do all the above ,also lynis/openvas (the three combined should provide complete coverage) (network scan/agent based combination)

librenms is our CMDB currently (for identifying assets/contacts). phpipam is our inventory.