3.1 Crawling, Scope, and Auditing (Performing the Scan)

00:00

All right. Welcome to the third module, where we're gonna actually gonna scan a live Web site available on the Internet.

00:09

The site is arterial mutual dot com. It is a will is a real site. It's a demo site used by IBM to demonstrate

00:17

Thea capabilities of IBM AB skin. So it's nothing illegal that you're going to be doing. It's It's all fine. People do this all the time. We'll also go over web crawling, scope, scoping, um, aspect of burb, sweet and actual, the different audit policies. And we're also looking

00:36

the different audit libraries.

00:38

So let me minimize this and go ahead and get burps. We going

00:43

okay?

00:45

Them

00:46

Let's crank up the sweet.

00:56

All right? We're not going to update anything. We're gonna go with the temporary project. You'll be able to save everything at the end, and we'll start breath sweet up right now.

01:08

Okay, let's go back to our browser.

01:14

All right?

01:15

And I'll use foxy process

01:17

to turn on my proxy for birth. Sweet justice. Is burke there?

01:22

All right.

01:23

And I'm website to roll mutual. So we're trying to go to the website now you're noticed that nothing is happening down here is keep saying, you know, waiting for Google. Nothing's happening.

01:34

And the reason for that ISS

01:38

birth. We've had something called intercept, and it allows you to look at Pakistan's therefore doing okay too. Before you scan anything or actually do a crawl. You want to turn intercept off? Okay, it's intercepted is off right now. Okay, so now the attorney Recep off.

01:56

I see our site. Arturo Mutual is there. Okay,

02:00

so the other sites you can you can delete these if you like. Uh, nothing's gonna happen

02:07

because we're not gonna scan knows,

02:08

but I will delete him.

02:15

You can see us. He's going to keep going,

02:19

all right? And they use options here.

02:23

Okay?

02:23

Use options. Heat from here is where you would actually putting yours idea and password that you want the actual log and have the scan walk until Web server and actual check it. We're not gonna do any authenticated scans, not just go around. So we're just going to a plane on unauthenticated scan. Okay? I'm a target. All right. Do it. Right. Click.

02:44

And that's at that to the scope. And you notice when things are active, lights up in an actual orange. So this is our scope right here. All right.

02:52

So go back to your options,

02:55

Okay? Socks. Nothing there again. Even when I did that. Still nothing here. Project options.

03:02

All right,

03:05

We're gonna drop all out of scope requests, so we just want to scan our particular site. That's it.

03:09

All right,

03:10

let's go back to target

03:14

site map from here to right. Click

03:17

and we're going to scan. All right,

03:20

Here. Is he crawled in audit. You have just crawled him. Audit selected items. All right, we're gonna do a crawling audit crawling me, and he's gonna actual look at the entire directory and pick up and pick up everything that they can pick up that it should. Actual skin. That's where crawling means and audit mean actual checking for checking for actual vulnerabilities.

03:38

We're not. I said we're not logging or doing anything like that.

03:44

So we're select from the actual library itself. That's already there.

03:49

We'll go with

03:50

never stopped crawling application errors,

03:55

uh, never stopped audit for application areas,

04:00

and

04:02

we're gonna go with the fastest crawl strategy we can since we are in in in the class

04:10

and we'll do

04:11

all the audience checks except, um,

04:14

drop skip analysis. Okay,

04:15

so click. Okay,

04:17

if you notice here, you can see things are starting.

04:20

So if you really go back to the dashboard,

04:25

you can do a pull out, and you can see down wth indicated colleges is going right now,

04:30

okay?

04:34

And it always tries to give you estimated time remaining, but you will see that bounce around a whole lot. Um, it may go from two hours, and they may jump all the way down to 45 minutes, so it would go back and forth a lot, depending on network speed

04:51

activity on a server. You kind of want to do web scans when things are actually inactive. So, you know, that's a lot of web skins

04:59

occur late in the night or in the middle of night, depending

05:03

when it's this is it's at least active. But our crawl is going

05:09

well, Having audit items yet is still crawling.

05:23

So now we're beginning out actual audit phase

05:27

who have already picked up three issues.

05:39

Misu activity.

05:42

Okay.

05:46

All right. Severity.

05:48

Okay.

05:51

All right.

05:54

It's picking up things already, and you can also filter here, just click on. You see, all the highs. It's found Any mediums? None yet. Low, No

06:02

info. Always finds a lot of info

06:05

and burden in purple. Also classifying. Uh, it's certainty of actual issue presents based on certain firm of tenant of certain being Yeah, 100% sure. Is there

06:17

firm? Probably 75. 80% intended. Me maybe. Could be.

06:21

Maybe not. So as you highlight the different, different severity you can see. You see, You just see those, if you like.

06:32

Okay.

06:38

Still estimating time remaining, but it's already found things.

07:13

Eight errors has checked. The heiress. Have you seen in Arizona? In the log.

07:17

I don't see anything.

07:21

There we go. The bugs. Okay.

07:25

Skipping car is gonna check.

07:28

Nothing major.

07:30

Still wrong.

07:32

Okay, We're very confident. I scan is going to complete right now, so I'll go ahead and in this module and I'll see you in the last. Find a module and we'll see what the scan looks like.