Vulnerability Scanner Set-Up and Configuration Part 3 Lab
Video Activity
Join over 3 million cybersecurity professionals advancing their career
Sign up with
Required fields are marked with an *
or
Already have an account? Sign In »
Video Transcription
00:00
>> Hey everyone, welcome back to the course.
00:00
In the last couple of videos,
00:00
we went through our first lab.
00:00
Again, we just launched
00:00
core impacts scanner and we went
00:00
ahead and ran a couple of scans with that,
00:00
a very simple fast scan as well as
00:00
>> a more detailed scan.
00:00
>> In this video, we're going to use
00:00
another vulnerability scanner called OpenVAS,
00:00
and I do recommend you actually download and
00:00
play with this one on your own as well.
00:00
But in this particular lab,
00:00
we're just going to run a very basic scan with OpenVAS.
00:00
We'll be doing some work in
00:00
the Kali Linux terminal window.
00:00
No worries at all if you have no experience in Linux,
00:00
or specifically with Kali Linux,
00:00
you're going to get step-by-step in this particular lab.
00:00
I just want to mention also
00:00
as usual in the resource section of the course,
00:00
you can find the downloadable step-by-step guides
00:00
as you see pictured here on the screen.
00:00
The other thing I want to mention with
00:00
all the labs that we're using in
00:00
this course is on the right side of the labs,
00:00
you'll notice instructions and we mentioned
00:00
this in the previous videos as well.
00:00
But basically make sure that as
00:00
you're going through the instructions,
00:00
whether you follow along in the step-by-step,
00:00
you just listen to me or you
00:00
actually use the instructions on the right side here.
00:00
No matter what to get full credit for the lab,
00:00
you'll want to make sure you look at
00:00
these instructions and check
00:00
these boxes to the left side of them.
00:00
That way, once you go to end the lab,
00:00
it will track your progress and see that you've
00:00
actually completed all of the steps for the lab.
00:00
Very important, make sure you do
00:00
that if you want to get credit.
00:00
First things first, we're just
00:00
going to go ahead and login.
00:00
In this particular instance,
00:00
we're using of Kali.
00:00
The username and password is a little
00:00
different than the default ones.
00:00
You'll see here that student and students,
00:00
so we're going to go ahead and type that in.
00:00
It's just the word student, all lowercase,
00:00
and then we'll also type
00:00
in that for our password as well.
00:00
Once you've typed in student just select next,
00:00
or you can just hit "Enter" on your keyboard,
00:00
and again, same thing here.
00:00
We're just going to type in student all lowercase,
00:00
and we'll go ahead and sign in.
00:00
Probably this will take a few seconds or so to
00:00
actually pull up the Kali Linux desktop.
00:00
The first thing we're going to do once it pulls
00:00
up is we're going to actually launch a terminal window.
00:00
If you don't know what that is, don't worry about that.
00:00
Just think of it as a magical place you can type
00:00
things and cool stuff
00:00
happens. Just think of it like that.
00:00
You notice here it's pulling up
00:00
the desktop should just take
00:00
a few more seconds here and then
00:00
we'll go ahead and launch our terminal window.
00:00
The way we're going to launch
00:00
the terminal is on the left side here,
00:00
there's this little black box.
00:00
Kali Linux makes it very easy to
00:00
launch the different applications inside of it.
00:00
It's very simple to do.
00:00
All we're going to do is this
00:00
little black box to the left side,
00:00
just go ahead and select that,
00:00
and click on that,
00:00
it's going to launch a terminal for us.
00:00
It might take a few seconds or
00:00
so to actually launch the terminal window.
00:00
Once your terminal window launches again,
00:00
it might take a few seconds or so.
00:00
It's sometimes the labs,
00:00
because it's a virtual machine,
00:00
might run just a little bit slow,
00:00
but just be patient with it,
00:00
should take just a few seconds
00:00
to launch the terminal window.
00:00
Once we've done so, we're going to enter in a command,
00:00
basically create a file, and in
00:00
that file we're going to put some IP addresses.
00:00
We're going to use a command called nano,
00:00
so all lowercase N-A-N-O,
00:00
we'll put a space and then we're going to name our file,
00:00
in this lab we're going to call it scanning
00:00
target list with some underscores.
00:00
We're going to do Scanning_ Target_ List,
00:00
and then just press "Enter" on your keyboard.
00:00
That's going to take us into the file itself,
00:00
and again download the step-by-step guide or
00:00
follow along on the right side
00:00
here with the IP addresses you need.
00:00
But we're going to go ahead and enter those in.
00:00
First one I'm going to enter in is 192.168.0.10,
00:00
and you'll notice we're going to
00:00
go somewhat sequential order,
00:00
the next one down is going to be 192.168.0.20,
00:00
and then 30, 40, etc.
00:00
You can feel free to pause
00:00
the video as you type those in and come back.
00:00
After you've finished typing them,
00:00
I'm going to go ahead and just continue typing
00:00
them real quick on the screen here.
00:00
If I typed that one correctly,
00:00
that'll work a lot better.
00:00
Trust me. Then finally our last one here, 192.168.0.50.
00:00
Once we've typed those in,
00:00
we're going to do control X.
00:00
Hold down the Control button on
00:00
your keyboard and press "X",
00:00
and that'll take you out of that.
00:00
You'll notice a little prompt at
00:00
the bottom there that's going to say,
00:00
do you want to save the changes or not?
00:00
We're going to press "Y" because we do,
00:00
and then will press "Enter" here.
00:00
That's taking us back to the terminal windows.
00:00
Basically, we've created that file
00:00
with those IP addresses in it.
00:00
The next thing we want to do is we're going to
00:00
go ahead and launch our OpenVAS.
00:00
Again, that's a vulnerability scanner
00:00
we're going to be using in this lab.
00:00
Let's go ahead and just type that in.
00:00
We're going to use a command called sudo,
00:00
which basically gives us administrator type access.
00:00
We get access to a lot of
00:00
different things and that allows us
00:00
to launch certain applications.
00:00
We're going to type sudo, all lowercase S-U-D-O,
00:00
we'll put a space and then we're
00:00
going to put OpenVAS-start
00:00
so O-P-E-N-V-A-S. Again,
00:00
start means we want to launch it.
00:00
Let's go ahead and do that. It's going to ask us for
00:00
a password to verify it's really us doing it.
00:00
We're going to type in our password we used to log in.
00:00
If you don't remember that, it's
00:00
the word student, all lowercase.
00:00
You're not going to see anything typing on the screen,
00:00
but it's actually typing it for you.
00:00
Just press "Enter" there and
00:00
then you see it's going to go
00:00
ahead and start launching OpenVAS.
00:00
Now, it might take about 3-5 minutes,
00:00
and once it's done it's going to
00:00
launch a webpage for us, for Greenbone.
00:00
I'm going to pause the video until it launches out,
00:00
but just know it probably takes about 3-5 minutes
00:00
to launch it on your side.
00:00
You'll see here that it did launch screen mode site
00:00
successfully for me if for some reason it doesn't
00:00
just open Firefox and type in the URL HTTPS,
00:00
and then your local host,
00:00
127.0.0.1:9392\ login\login.html.
00:00
Basically this URL you're seeing at the top there.
00:00
The next step we're going to do is actually login.
00:00
This login is going to be admin, lowercase,
00:00
so a-d-m-i-n, all lowercase,
00:00
and then our fancy password again.
00:00
The P@ssw0rd. By the way,
00:00
that is a absolutely
00:00
terrible password to use in real life.
00:00
Don't do that, if you're looking for new password.
00:00
We're just going to select login there.
00:00
I'm just going to X out of that. I don't
00:00
want it to remember my password.
00:00
Doesn't matter too much since
00:00
we're in a virtual lab environment,
00:00
but I just like to keep
00:00
my habits the same across the board.
00:00
Now, we've successfully logged in
00:00
to the Greenbone application.
00:00
Before we go further in this lab,
00:00
I'm going to pause this video.
00:00
We'll pick things back up in the next video.
00:00
Again, in this video, we just went through
00:00
basically a text file using
00:00
the nano command inside of Kali Linux,
00:00
and again, that command actually
00:00
works in any version of Linux.
00:00
But we created that then we launched our OpenVAS,
00:00
and it took us to the Greenbone as security site,
00:00
and we're going to do some configurations now,
00:00
but we're going to do that in the next video.
Up Next
Instructed By
Similar Content
