Determine if Windows administrative vulnerabilities are present. 

Lab Report

Step 1:

Vulnerability assessment is scanning a network for known security weaknesses. Vulnerability scanners are software tools designed to provide an automated method for conducting vulnerability scans across an entire network that may run into hundreds or even thousands of machines. According to EC-Council (2018), vulnerability scanners can help identify the following types of weaknesses:

  • the OS version running on computers or devices
  • IP and Transmission Control Protocol/User Datagram Protocol (TCP/UDP) ports that are listening
  • applications installed on computers
  • accounts with weak passwords
  • files and folders with weak permissions
  • default services and applications that might have to be uninstalled
  • mistakes in the security configuration of common applications
  • computers exposed to known or publicly reported vulnerabilities

Additionally, vulnerability scanners can be used to help predict the effectiveness of countermeasures (security controls) and to test the effectiveness of those controls in the production network. Further, vulnerability scanners also have limitations, primarily in that they are only as effective as the supporting databases and/or plug-ins at a point in time. Large, automated vulnerability scanning suites also require maintenance, tuning, and frequent updates to be able to detect new vulnerabilities. Finally, scanning engines are prone to both false positives and negatives. That is where you as the cybersecurity professional will apply your deep knowledge of the environment, network, and applications in use.

Two common vulnerability scanners used in industry are the free Open Source scanner OpenVAS, and the commercial tool, Nessus. In this lab, you will use OpenVAS. Select the following links to learn more about OpenVAS and computer networks:

  • OpenVAS
  • Computer Networks

Your leadership will want to understand the capabilities of the OpenVAS scanner, so you will need to include that information in your Security Assessment Report (SAR).

Use the tool’s built-in checks to complete the lab. For details on accessing the lab, see the “Complete This Lab” box below.

Use OpenVAS to complete the following:

For the Windows OS:

  1. Determine if Windows administrative vulnerabilities are present.
  2. Determine if weak passwords are being used on Windows accounts.
  3. Report which security updates are required on each individual system.
  4. The tool provides a dynamic assessment of missing security updates. Scan one or more computers by domain, IP address range, or other groupings.
  5. Once complete, provide a detailed report and recommendations on how to make your system a more secure working environment. In this case, the OpenVAS tool will create and store individual XML security reports for each computer scanned and will display the reports in the graphical user interface in HTML.

For the Linux OS:

  1. Determine if Linux vulnerabilities are present.
  2. Determine if weak passwords are being used on Linux systems.
  3. Determine which security updates are required for the Linux systems.
  4. The tool provides a dynamic assessment of missing security updates. Scan one or more computers by domain, IP address range, or other groupings.
  5. Once complete, provide a detailed report and recommendations on how to make your system a more secure working environment.

Knowledge acquired from this Workspace exercise will help your company’s client organizations secure the computer networks’ resources and protect corporate data from being stolen.

Validate and record the benefits of using these types of tools. You will include this in the SAR.

References

EC-Council (2018). Certified Ethical Hacker (CEH) Version 10 eBook (Volumes 1 through 4). [VitalSource Bookshelf]. Retrieved from https://bookshelf.vitalsource.com/#/books/9781635671919

Step 2:

By using the OpenVAS security vulnerability assessment tool from the previous step, you now have a better understanding of your system’s security status. Use the results you obtained to create the Security Assessment Report (SAR) as part of your deliverables.

In your report to the leadership, make sure to emphasize the benefits of using the security tool, and provide recommendations based on your findings.

Remember to include analyses and conclusions in the SAR deliverable as follows:

  1. After you provide a description of the methodology you used to make your security assessment, provide the actual data from the tools, the status of security and patch updates, security recommendations, and specific remediation guidance for your senior leadership.
  2. Include any risk assessments associated with the security recommendations, and propose ways to address the risk either by accepting it, transferring it, mitigating it, or eliminating it.

Step 3:

Your upper-level management team is not interested in the technical report you generated from your Workspace exercise. Team members are more interested in the bottom line. You must help these non­technical leaders understand the very technical vulnerabilities you have discovered. They need to clearly see what actions they must either take or approve. The following are a few questions to consider when creating your non­technical presentation:

  • How do you present your technical findings succinctly to a non­technical audience? Your Workspace exercise report will span many pages, but you will probably not have more than 30 minutes for your presentation and follow-up discussion.
  • How do you describe the most serious risks factually but without sounding too dramatic? No one likes to hear that the entire network has been hacked, data has been stolen, and the attackers have won. You will need to describe the seriousness of your findings while also assuring upper-level management that these are not uncommon occurrences today.
  • How do your Workspace exercise results affect business operations? Make sure you are presenting these very technical results in business terms that upper-level management will understand.
  • Be clear about what action you are recommending. Upper-level managers will want to understand not only what you discovered, but also what you propose as a solution. They will want to know what decisions they need to make based on your findings.
FOR STEPS 1 AND 2, PLEASE PROVIDE SCREENSHOTS TO BACK UP WORK!!!

The file attached and uploaded to this order, from pages 10-13, is an example of how the assignment should look after running scans on OPENVAS. Thank you!

Connect to NIXATK01. Click Yes on Verify host authenticity screen and log in.

The IP address of the target Windows and Linux VMs are needed to run the scan. The Ping command is one of the fastest ways to determine the IP address.

In terminal windows, type the following commands:

ping NIXTGT01

ping WINTGT01

You might get different IP addresses for both VMs.

Next, you will access the OpenVAS Web interface running on port number 9392 of your Linux VM, NIXATK01.

Type the following URL in the address bar of a web browser within the lab VM: https://127.0.0.1:9392

Note: A shortcut to the OpenVAS interface has also been created and placed in the Lab Resources folder located on the desktop of your Linux VM. You may use this shortcut to automatically launch a browser and access OpenVAS.

If you get an error, ensure that you are using the browser within the lab VM as indicated by the screenshot below.

Applications folder in the Linux VM within UMGC Virtual Labs. The OpenVAS icon is listed along with other applications.” src=”https://leocontent.umgc.edu/content/dam/course-content/tgs/cst/cst-610/image/vulnerability-assessment-tools-for-operating-systems-and-applications-(openvas)/ApplicationsinLinuxVM.png” style=”box-sizing: content-box; border: 0px; border-top-left-radius: 4px; border-top-right-radius: 4px; border-bottom-right-radius: 4px; border-bottom-left-radius: 4px; max-width: 100%; height: auto;”>

Source: Linux, UMGC Virtual Labs

You will be prompted with a screen that asks for a security exception. Allow the security exception by clicking the Advanced button.

Confirm the exception by clicking Proceed to 127.0.0.1 (unsafe).

After allowing the security exception, the OpenVAS login interface will appear to allow you to log in.

Log in to OpenVAS using the following credentials:

  • Username: admin
  • Password: password

Once logged in, familiarize yourself with the user interface, starting with the dashboard.

From the Scans menu, click Task to be taken to the task management dashboard.

Observe the three icons in the upper left corner related to creating and managing tasks.

The first icon is the Help icon (question mark). The second is the Wizard icon (wand) and the third is the New Task icon (star).

Click the Help icon to learn about the different aspects of task management available.

The Wizard and New Task icons allow you to create, save, and run tasks.

Click the Wizard icon to initiate the process of a new scan.

When prompted on the task Wizard window, enter the IP address or hostname of the target VM to scan in place of the default loopback IP address, 127.0.0.1.

In the following example, you will enter the IP address of the NIXTGT01 VM that you had noted by running the Ping command earlier, 192.168.10.2, and start scanning that VM.

Notice the status of the scan at the bottom of the page as seen below.

Observe the scan progress. By default, the page refreshes every 30 seconds.

Once the scan is completed, the Status column will display a Done button.

Click the Done button to display the scan results. The detected vulnerabilities will be listed in the Vulnerability column.

When done, it should look like the attached picture ‘ListofVulnerabilities’.

Place your order
(550 words)

Approximate price: $22

Calculate the price of your order

550 words
We'll send you the first draft for approval by September 11, 2018 at 10:52 AM
Total price:
$26
The price is based on these factors:
Academic level
Number of pages
Urgency
Basic features
  • Free title page and bibliography
  • Unlimited revisions
  • Plagiarism-free guarantee
  • Money-back guarantee
  • 24/7 support
On-demand options
  • Writer’s samples
  • Part-by-part delivery
  • Overnight delivery
  • Copies of used sources
  • Expert Proofreading
Paper format
  • 275 words per page
  • 12 pt Arial/Times New Roman
  • Double line spacing
  • Any citation style (APA, MLA, Chicago/Turabian, Harvard)

Our guarantees

Delivering a high-quality product at a reasonable price is not enough anymore.
That’s why we have developed 5 beneficial guarantees that will make your experience with our service enjoyable, easy, and safe.

Money-back guarantee

You have to be 100% sure of the quality of your product to give a money-back guarantee. This describes us perfectly. Make sure that this guarantee is totally transparent.

Read more

Zero-plagiarism guarantee

Each paper is composed from scratch, according to your instructions. It is then checked by our plagiarism-detection software. There is no gap where plagiarism could squeeze in.

Read more

Free-revision policy

Thanks to our free revisions, there is no way for you to be unsatisfied. We will work on your paper until you are completely happy with the result.

Read more

Privacy policy

Your email is safe, as we store it according to international data protection rules. Your bank details are secure, as we use only reliable payment systems.

Read more

Fair-cooperation guarantee

By sending us your money, you buy the service we provide. Check out our terms and conditions if you prefer business talks to be laid out in official language.

Read more