Nessus vulnerability, Computer Network Security

Assignment Help:

You see two IP addresses. The IP address 192.168.58.130 is the one of Bt4. The IP address 192.168.58.133 has ports 135 and 445 open; which indicates that it is a Windows machine. So the Nmap scan shows that the WinXP system has IP address 192.168.58.133.

Next, I used the Nessus vulnerability scanner to scan WinXP for vulnerabilities. First, I started the Nessus server; by left clicking on its icon and then on the Start Nessus Server box. The Nessus server opened port 8834 and wait for a connection; sometimes it may take the server a couple of minutes to open this port. Then, I started my browser, connected to https://localhost:8834, and provided my username and password. The first time, my system did not recognize the certificate of Nessus and generated a warning message. I ignored it and accepted the certificate. If you use Bt5, check steps 6,7,8,9,10 of Nessus-Bt5 URL; of the Project URL. At the top of the Nessus window there are three tabs: Reports, Scans, Policies. I left-clicked on Policies, and then on +Add. The Add Policy window opened that enables defining a scanning policy. That is, which hosts and ports should be scanned as well as what vulnerabilities checks should be conducted. Nessus provides a lot of flexibility in specifying what Nessus must do. I used the default Nessus policy which is also very effective. So in the Name box, I simply typed Karvelas and in the Description box I typed "WinXP-SP2 Vulnerability Analysis". Then, I clicked on Next at the bottom right corner of the Nessus window. The next screenshot shows the Nessus settings. Note that if you use the Nessus of BT5, then in order to see (and click) Next, you must first expand the VMware Player to occupy all the screen of your host operating system. You can do this by left-clicking on the box at the right corner of the top bar of the VMware player which is located above the date and time.


Related Discussions:- Nessus vulnerability

Security policies, implementing password policy in organisation

implementing password policy in organisation

Distinguish between authorization and authentication, Question : (a) D...

Question : (a) Distinguish between authorization and authentication. (b) SSO (Single Sign On) implies a user logs in once and can access resources for a defined period of

Risk assessment, RISK ASSESSMENT Risk assessment is a step in a risk man...

RISK ASSESSMENT Risk assessment is a step in a risk management technique. Risk assessment is the determination of quantitative or qualitative value of risk related to a concrete

Wireless local area network, a) Wireless local area network (WLAN) technol...

a) Wireless local area network (WLAN) technologies constitute a fast-growing market introducing the flexibility of wireless access into office, home, or production environments. G

Military and space technology, crack the secret message and explain how the...

crack the secret message and explain how the code works. The clue is that it has something to do with the computer keyboard. J-Q-H-6 Q-E-F-Q-H-D-3-W 8-H 5-Y-3 7-W-3 9-R--D-9-J

Lan topologies, Network can be distinguished by shape. According to which t...

Network can be distinguished by shape. According to which there are three most popular methodologies, which are shown as follows; Star Ring Bus

Using Technology as Experience Framework, Write a two to three (2-3) page p...

Write a two to three (2-3) page paper in which you: Explain how the Web user interfaces help donors to make decisions. Relate the emotional thread demonstrated in the case study to

Public key infrastructure (pki)-cryptography, Public Key Infrastructure (PK...

Public Key Infrastructure (PKI) It is integrated system of software, encryption methodologies, protocols, legal agreements, and 3rd-party services enabling users to communicate

Explain the security service - confidentiality, Question: (a) Explain t...

Question: (a) Explain the following security services: Confidentiality, Availability. (b) Which attack will be used to bypass even the best physical and logical security m

Spambot detection - spam mail, Spambot Detection: The  previous studie...

Spambot Detection: The  previous studies in this field  have focused on content and meta-content based features.  The main assumption in this area of spam detection of late is

Write Your Message!

Captcha
Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd