Vulnerability assessment is scanning a network for known security weaknesses. Vulnerability scanners are software tools designed to provide an automated method for conducting vulnerability scans across an entire network that may run into hundreds or even thousands of machines. According to EC-Council (2018), vulnerability scanners can help identify the following types of weaknesses:
Additionally, vulnerability scanners can be used to help predict the effectiveness of countermeasures (security controls) and to test the effectiveness of those controls in the production network. Further, vulnerability scanners also have limitations, primarily in that they are only as effective as the supporting databases and/or plug-ins at a point in time. Large, automated vulnerability scanning suites also require maintenance, tuning, and frequent updates to be able to detect new vulnerabilities. Finally, scanning engines are prone to both false positives and negatives. That is where you as the cybersecurity professional will apply your deep knowledge of the environment, network, and applications in use.
Two common vulnerability scanners used in industry are the free Open Source scanner OpenVAS, and the commercial tool, Nessus. In this lab, you will use OpenVAS. Select the following links to learn more about OpenVAS and computer networks:
Your leadership will want to understand the capabilities of the OpenVAS scanner, so you will need to include that information in your Security Assessment Report (SAR).
Use the tool’s built-in checks to complete the lab. For details on accessing the lab, see the “Complete This Lab” box below.
Use OpenVAS to complete the following:
For the Windows OS:
For the Linux OS:
Knowledge acquired from this Workspace exercise will help your company’s client organizations secure the computer networks’ resources and protect corporate data from being stolen.
Validate and record the benefits of using these types of tools. You will include this in the SAR.
References
EC-Council (2018). Certified Ethical Hacker (CEH) Version 10 eBook (Volumes 1 through 4). [VitalSource Bookshelf]. Retrieved from https://bookshelf.vitalsource.com/#/books/9781635671919
Step 2:
By using the OpenVAS security vulnerability assessment tool from the previous step, you now have a better understanding of your system’s security status. Use the results you obtained to create the Security Assessment Report (SAR) as part of your deliverables.
In your report to the leadership, make sure to emphasize the benefits of using the security tool, and provide recommendations based on your findings.
Remember to include analyses and conclusions in the SAR deliverable as follows:
Step 3:
Your upper-level management team is not interested in the technical report you generated from your Workspace exercise. Team members are more interested in the bottom line. You must help these nontechnical leaders understand the very technical vulnerabilities you have discovered. They need to clearly see what actions they must either take or approve. The following are a few questions to consider when creating your nontechnical presentation:
When done, it should look like the attached picture ‘ListofVulnerabilities’.
Delivering a high-quality product at a reasonable price is not enough anymore.
That’s why we have developed 5 beneficial guarantees that will make your experience with our service enjoyable, easy, and safe.
You have to be 100% sure of the quality of your product to give a money-back guarantee. This describes us perfectly. Make sure that this guarantee is totally transparent.
Read moreEach paper is composed from scratch, according to your instructions. It is then checked by our plagiarism-detection software. There is no gap where plagiarism could squeeze in.
Read moreThanks to our free revisions, there is no way for you to be unsatisfied. We will work on your paper until you are completely happy with the result.
Read moreYour email is safe, as we store it according to international data protection rules. Your bank details are secure, as we use only reliable payment systems.
Read moreBy sending us your money, you buy the service we provide. Check out our terms and conditions if you prefer business talks to be laid out in official language.
Read more
The file attached and uploaded to this order, from pages 10-13, is an example of how the assignment should look after running scans on OPENVAS. Thank you!
Connect to NIXATK01. Click Yes on Verify host authenticity screen and log in.
The IP address of the target Windows and Linux VMs are needed to run the scan. The Ping command is one of the fastest ways to determine the IP address.
In terminal windows, type the following commands:
ping NIXTGT01
ping WINTGT01
You might get different IP addresses for both VMs.
Next, you will access the OpenVAS Web interface running on port number 9392 of your Linux VM, NIXATK01.
Type the following URL in the address bar of a web browser within the lab VM: https://127.0.0.1:9392
Note: A shortcut to the OpenVAS interface has also been created and placed in the Lab Resources folder located on the desktop of your Linux VM. You may use this shortcut to automatically launch a browser and access OpenVAS.
If you get an error, ensure that you are using the browser within the lab VM as indicated by the screenshot below.
Source: Linux, UMGC Virtual Labs
You will be prompted with a screen that asks for a security exception. Allow the security exception by clicking the Advanced button.
Confirm the exception by clicking Proceed to 127.0.0.1 (unsafe).
After allowing the security exception, the OpenVAS login interface will appear to allow you to log in.
Log in to OpenVAS using the following credentials:
Once logged in, familiarize yourself with the user interface, starting with the dashboard.
From the Scans menu, click Task to be taken to the task management dashboard.
Observe the three icons in the upper left corner related to creating and managing tasks.
The first icon is the Help icon (question mark). The second is the Wizard icon (wand) and the third is the New Task icon (star).
Click the Help icon to learn about the different aspects of task management available.
The Wizard and New Task icons allow you to create, save, and run tasks.
Click the Wizard icon to initiate the process of a new scan.
When prompted on the task Wizard window, enter the IP address or hostname of the target VM to scan in place of the default loopback IP address, 127.0.0.1.
Notice the status of the scan at the bottom of the page as seen below.
Observe the scan progress. By default, the page refreshes every 30 seconds.
Once the scan is completed, the Status column will display a Done button.
Click the Done button to display the scan results. The detected vulnerabilities will be listed in the Vulnerability column.