Greenbone Vulnerability Management

Greenbone is an enterprise vulnerability management platform built on the open-source OpenVAS framework, providing automated network security scanning, vulnerability detection, and compliance reporting. Founded in 2008 by Timo Pollmeier in Osnabruck, Germany, Greenbone Networks GmbH develops both the open-source Community Edition and commercial Enterprise product used by over 20,000 organizations including government agencies and financial institutions. Key features: Greenbone Security Manager appliance with pre-configured scan profiles for authenticated and unauthenticated scanning across network assets, web applications, and databases. High-performance scan engine using NASL (Network Attack Scripting Language) with over 100,000 vulnerability tests (NVTs) updated daily by the Greenbone research team. Full SCAP protocol support including CVE referencing, CPE inventory, OVAL definitions, CVSS scoring, and compliance reporting against DISA STIG, BSI IT-Grundschutz, and PCI-DSS baselines. Report formats include PDF, HTML, XML, CSV, and ARF with vulnerability details, remediation suggestions, and compliance status per asset. Recurring scan schedules with automatic credential management, target groups, and alert notifications via email, SNMP, or HTTP. Authenticated scanning via SSH, SMB, VMware ESXi, SNMP, and database credentials for deeper vulnerability detection. Greenbone Enterprise TRIAGE provides cloud-based vulnerability analysis with threat intelligence feeds for prioritizing remediation. Network asset discovery, inventory tracking, and asset grouping for targeted scanning. REST API for SIEM and ticketing integration. Certified by BSI (German Federal Office for Information Security) for government use.