Solution Logo

OpenVAS

OpenVAS

Updated August 20, 2025

Updated August 20, 2025

OpenVAS is a tool for identifying security vulnerabilities in networked systems. It includes a regularly updated feed of Network Vulnerability Tests (NVTs) to detect potential security issues.

OpenVAS is a tool for identifying security vulnerabilities in networked systems. It includes a regularly updated feed of Network Vulnerability Tests (NVTs) to detect potential security issues.

Attack Surface Management

Cost considerations

Cost considerations

Functionality

Functionality

Compatibility

Compatibility

User experience

User experience

Customer support

Customer support

Why these ratings?

Cyberse perspective

Cyberse perspective

Solution details

Target industry

Technology

Public sector

Industrials

Healthcare

Retail

Manufacturing

Financial services

Services support

In-house services

Managed services

Scanning coverage

Network scanning

Host scanning

Product features

Risk scoring

Vulnerability scoring

Pricing

Free trial available

Market segment

Small business

Enterprise

Midmarket

Key features

Open-source or third-party tools

Integrations

Network security

Deployment

On-premises

Cloud ecosystem partners

NULL

Ratings

Cost considerations

OpenVAS is open-source, so there are no license fees and users can run unlimited scans, paying only for an optional commercial feed or support. Competing vulnerability scanners usually bill per asset or per scan, so overall spend rises faster as environments grow. The low entry cost and predictable optional fees give most security teams a favorable cost-to-value balance.

Cost considerations

OpenVAS is open-source, so there are no license fees and users can run unlimited scans, paying only for an optional commercial feed or support. Competing vulnerability scanners usually bill per asset or per scan, so overall spend rises faster as environments grow. The low entry cost and predictable optional fees give most security teams a favorable cost-to-value balance.

Functionality

OpenVAS performs scheduled credentialed scans and scores findings with CVSS, giving a clear snapshot of on-premise vulnerabilities. Native coverage for cloud or container assets is limited and there is no built-in ticketing or risk-based prioritization, so remediation tracking relies on external tools.

Functionality

OpenVAS performs scheduled credentialed scans and scores findings with CVSS, giving a clear snapshot of on-premise vulnerabilities. Native coverage for cloud or container assets is limited and there is no built-in ticketing or risk-based prioritization, so remediation tracking relies on external tools.

Compatibility

OpenVAS is a network-centric scanner with no agents and no out-of-the-box hooks for AWS, Azure, or common SIEMs. Teams usually rely on CSV/XML exports or custom API scripts to push findings into CMDB or ticketing tools. This extra work puts its integration reach below that of full-feature commercial suites.

Compatibility

OpenVAS is a network-centric scanner with no agents and no out-of-the-box hooks for AWS, Azure, or common SIEMs. Teams usually rely on CSV/XML exports or custom API scripts to push findings into CMDB or ticketing tools. This extra work puts its integration reach below that of full-feature commercial suites.

User experience

The web console is serviceable but dated, so new users need some orientation to locate key risk views. Generating clear reports often requires exporting and tweaking data outside the console. Navigation is slower than in most commercial scanners, yet routine tasks become manageable after modest training.

User experience

The web console is serviceable but dated, so new users need some orientation to locate key risk views. Generating clear reports often requires exporting and tweaking data outside the console. Navigation is slower than in most commercial scanners, yet routine tasks become manageable after modest training.

Customer support

OpenVAS mainly offers community forums and volunteer help with no guaranteed response times, and formal assistance is only available through a separate Greenbone subscription, so business users get limited official guidance even though the free vulnerability feed is updated daily.

Customer support

OpenVAS mainly offers community forums and volunteer help with no guaranteed response times, and formal assistance is only available through a separate Greenbone subscription, so business users get limited official guidance even though the free vulnerability feed is updated daily.

Cyberse provides free tools for cybersecurity buyers to assess needs, research solutions, and compare products.

Cyberse provides free tools for cybersecurity buyers to assess needs, research solutions, and compare products.

Subscribe