Scanning and Remediating Vulnerabilities with OpenVAS

Introduction

Welcome to the ** Scanning and Remediating Vulnerabilities with OpenVAS** Practice Lab. In this module you will be provided with the instructions and devices needed to develop your hands-on skills.

Learning Outcomes

In this module, you will complete the following exercises:

• OpenVAS Scanning
• Security Active Directory Access LDAP
• Validating Security Changes with OpenVAS

After completing this lab, you will be able to:

• Connect to Win10 and Kali
• Start OpenVAS
• Use OpenVAS
• Perform OpenVAS Scanning
• Edit Security Advanced Security Settings for Pre-Windows
• Edit Network Access
• Reconfigure Regedit Values
• Configure Network Configuration for NetBIOS
• Perform Advanced Firewall Configurations
• Rescan with OpenVAS

Exam Objectives

The following exam objectives are covered in this lab:

• CAS-003 2.1 Analyze a scenario and integrate network and security components, concepts and architectures to meet security requirement.
• CAS-003 2.2 Analyze a scenario to integrate security controls for host devices to meet security requirements.
• CAS-003 4.3 Given a scenario, integrate and troubleshoot advanced authentication and authorization technologies to support enterprise security objectives

Lab Duration

It will take approximately 1 hour to complete this lab.

Exercise 1 - OpenVAS Scanning

OpenVAS stands for Open Vulnerability Assessment System and is a fork from an older version of Nessus, formally known as GNessUs. It’s a free tool to use and can be quite comprehensive in its scanning techniques as well assisting in finding vulnerabilities. It can be used in conjunction with other Kali tools to help pen test environments more efficiently.

Learning Outcomes

After completing this exercise, you will be able to:

• Connect to Win10 and Kali
• Start OpenVAS
• Use OpenVAS
• Perform OpenVAS Scanning

Exercise 2 - Securing Active Directory Access LDAP

Active Directory holds a great of critical information about a business or organization regarding how it's structured, who the participating members are, the groups and positions of those members, how the domain is defined, and which computer groups are assigned. It has overall control across the network and is very powerful at enforcing policy rights. Throughout the years as Windows and devices have changed, it has grown very large and complicated, it provides backward compatibility for older services as well, however back in the days of Windows 2000 security wasn’t well understood, and mainly holes in the older system were exploitable.

Learning Outcomes

After completing this exercise, you will be able to:

• Edit Security Advanced Security Settings for Pre-Windows
• Edit Network Access
• Reconfigure Regedit Values
• Configure Network Configuration for NetBIOS
• Perform Advanced Firewall Configurations

Exercise 3 - Validating Security Changes with OpenVAS

Once changes have been made to any system, it is vital that a recheck of the system is made in order to confirm that updates, patches, and security configuration have taken place and are functioning correctly, as expected.

Learning Outcomes

After completing this exercise, you will be able to:

• Rescan with OpenVAS