Exercise 1
For this exercise I had to get the Kali VM running with OpenVAS.
This was pretty easy, I just had to add the machine to my LAN port group, refresh DHCP on the machine, and start the OpenVAS service.
DHCP going with the correct address
OpenVAS started successfully (note I accidentally did the command twice haha)
Exercise 2
This exercise was basically just setting up all the OpenVAS stuff. Here's some screenshots of the successful additions of various things in OpenVASAdding Credentials
Adding Target
Looking at Scan Configs
Setting a schedule
Looking at schedule (Note the scan is Requested which means I told it to start)
Exercise 3
This exercise looked at using Microsoft Baseline Security Analyser 2.
As you can see below, I got the scans to run, though not without a little misspelling in the commands
Here we can see the results for WIN2016-MS
And the DC.
Exercise 4
This exercise just covered looking at the scan results for the scan I started earlier in OpenVAS
Conclusions
This lab showed me some cool tools for monitoring a network for vulnerabilities. I especially like the simple and powerful interface of OpenVAS and I will keep it in mind for future networking projects.
Again, this lab didn't present any major issues to me and ran nice and smoothly. Some common small issues to watch out for seem to be things like misspelling commands, or not configuring things properly. Diligently looking out for errors and making sure everything is set up exactly as required makes life much easier.
No comments:
Post a Comment