Differences between revisions 1 and 2
Revision 1 as of 2017-03-21 19:54:15
Size: 823
Editor: scot
Comment:
Revision 2 as of 2017-03-21 22:53:18
Size: 1390
Editor: scot
Comment:
Deletions are marked like this. Additions are marked like this.
Line 14: Line 14:
 1. Download and install MBSA on your Windows 10 machine. Run this and save the reports.  1. Download and install [[https://www.microsoft.com/en-us/download/details.aspx?id=7558|MBSA (2017)]] on your Windows client machine. Run this and save the reports.
 1. Report all open ports using NMAP.
 1. Download and install [[https://www.kali.org/penetration-testing/openvas-vulnerability-scanning/|OpenVAS (2017)]] on your Kali machine. Why it's not already there? I'm not sure.
    1. I also had problems with this step because updates were not happening correctly.
    1. The fix was simple: http.kali.org always used the archive-7.kali.org mirror, so I changed it to be hard coded in /etc/apt/sources.list to use archive-6.kali.org.
 1.

Lab 09 - Network and Vulnerability Scanning

Introduction

The purpose of this lab is to introduce you to Microsoft Baseline Security Analyzer MBSA from your Windows 10 machine, and NMAP and OpenVAS on kali.

Lab Goals

  1. Scan all of your windows computes with MBSA from your Windows 10 Machine.
  2. Use NMAP to scan each of the computers to determine open ports.
  3. Use OpenVAS to scan all computers on your network - including Windows.

Setup

You need GUI access to your Kali machine, and all your machines must be on.

  1. Download and install MBSA (2017) on your Windows client machine. Run this and save the reports.

  2. Report all open ports using NMAP.
  3. Download and install OpenVAS (2017) on your Kali machine. Why it's not already there? I'm not sure.

    1. I also had problems with this step because updates were not happening correctly.
    2. The fix was simple: http.kali.org always used the archive-7.kali.org mirror, so I changed it to be hard coded in /etc/apt/sources.list to use archive-6.kali.org.

Show Me

  1. List the elements that you must show me for full credit.
  2. If you don't complete the lab in class, then you need to do this section in a video.

NetworkSecurity/Lab/Lab08 (last edited 2021-04-08 19:55:43 by scot)