Vulnerability Scan
==================

ntopng implements vulnerability scans using nmap. 

Manual Installation
-------------------
The ntopng package installs both nmap and the depenencies. If you want to do a manual installation first of all you need to install the nmap package and then do:

* Linux
  * ``cd /usr/share/nmap/scripts/``
* macOS with HomeBrew
  * ``cd /opt/homebrew/opt/nmap/share/nmap/scripts/``

Then do:
* ``git clone https://github.com/scipag/vulscan.git``
* ``cd vulscan``
* ``chmod +x ./utilities/updater/updateFiles.sh``
* ``./utilities/updater/updateFiles.sh``

Whenever you want to update the vulnerability scan files, just run ``updateFiles.sh`` in order to download the latest scan definitions.

Finally do
``sudo setcap cap_net_raw,cap_net_admin,cap_net_bind_service+eip /usr/bin/nmap``

that will enable nmap to perform UDP-scans that require privileges.