Posts

How I Used OpenVAS to Uplift Essential Eight Maturity For Free!

-
When it comes to the ASD Essential Eight (E8) , one of the hardest parts isn’t implementing the controls, it’s proving you’re actually maturing. Auditors want evidence, not promises. The good news is that you don’t always need expensive vulnerability management platforms to get there. I’ve previously used OpenVAS (Open Vulnerability Assessment System) , a completely free, open‑source scanner, to help an organisation uplift its E8 maturity. It wasn’t perfect, and I learned a few lessons the hard way, but it worked. Here’s how. The Problem We Needed to Solve We were aiming to uplift maturity for: Patch Applications Patch Operating Systems But we had a few constraints: No budget for commercial vulnerability management tools A requirement for audit‑ready evidence A need to map everything directly to the Essential Eight maturity model OpenVAS ended up being the perfect fit. Why OpenVAS Worked OpenVAS gave us exactly what we needed without the licensing...
Post a Comment
Read more

Launching My Cyber Blog: A New Chapter for 2026

-
This project originally started on GitHub, built on top of the Jekyll Chirpy theme. I loved the customisation, the clean structure, and the power of Markdown, it felt like a proper developer’s home for writing. But as much as I enjoyed that level of control, I realised something important: I needed a space where I could publish quickly. A place where posting regularly felt effortless, not like a mini‑deployment. So I’ve moved the blog to Blogger and connected my own domains. It gives me the speed and simplicity I need to write more often, while still letting me shape the space into something that feels like mine. This marks a fresh start for the blog, though I’ll be weaving in ideas and lessons from my earlier posts throughout the year. I’ve always admired the writers at Ars Technica, the way they blend technical depth with clarity, personality, and genuine curiosity. Their work has inspired me to start publishing my own cyber‑security‑focused content, written from the perspective of s...
Post a Comment
Location: Australia
Read more