Vulnerability scanners test vulnerabilities to see if they exist but also to see if they have been properly closed after a patch or control has been put in place. There are two widely used vulnerability scanners, Nmap and Nessus, which produce scan reports. By using these reports, you can identify operating systems, services, hosts, open ports, and applications that are vulnerable in an organization.

• In Part 1 of this lab, you will have an opportunity to review and analyze Nessus and Nmap reports to determine the vulnerabilities that exist in a system. You will then use the mitre.org website to search for common vulnerabilities and exposures (CVE) listings that you identify in the vulnerability scan reports that you analyze. You can use the assessment worksheet included with the lab as a study guide, but you will not submit it with your lab report.
• In Part 2 of this lab, you will download the Nmap software and use a test site provided by Nmap to run a number of scans.

Part 1: Lab 5

Complete Lab 5 in the lab manual. Note: The Lab 5 Nmap Scan Report and the Lab 5 Nessus Vulnerability Scan Report listed in the Lab 5 hands-on instructions are linked in the Resources for this assignment. 10. Review the CVE List Main Page. 11. In your Lab Report file, define CVE. 12. On the right, under Items of Interest, click the Terminology link. 13. Review the definitions for vulnerability and exposure. 14. In your Lab Report file, define the terms vulnerability and exposure. 15. At the top right of the Web site, click the Search link. In the Search box, type the words Microsoft® XP 2003 Service Pack 1 and click the Search button. 17. In your Lab Report file, describe some of the results you discover. 18. After viewing the results, conduct another search and this time, type the words Cisco ASA 5505 Security + and click the Search button. 19. In your Lab Report file, describe some of the search results.

Part 2: Nmap Test Network Scan

Go to this Downloading Nmap site and download the latest stable release of Nmap for the operating system that you use. You will want to download the self-installer. For example, if you are using a Windows operating system you will look for a link that looks similar to this: Latest stable release self-installer: nmap-7.70-setup.exe. Note: The version number may have changed, but the description of the download will be similar.

To do this test:

1. Click the setup.exe file that downloads and follow the instructions on the screen, leaving all default settings selected. Note: Once Nmap is installed, you should see an icon on your desktop that you can use to run Nmap.
2. Open Nmap.
3. Type scanme.nmap.org in the Target field.
4. Select Quick scan from the Profile drop down list.
5. Click Scan. A list appears of the ports, the state of each port, and the service.
6. Take a screenshot of the scan results and copy it at the bottom of the Word document used for Part 1.
7. Run a Regular scan and one other scan of your choice, taking screenshots of each and adding to the Word document.

Underneath your screenshots write a brief summary of your experience using Nmap and discuss briefly what the scan results showed you.

You can learn more about the Nmap interface and interpreting scans at Interpreting Scan Results.

Instructions

1. Complete Lab 5 in the lab manual as directed in the Part 1 instruction
2. –Lab 5 Nessus Vulnerability Scan Report, answer the following questions: • How many hosts were scanned? • What were the start and end times for each of the scans? • How many total vulnerabilities were discovered for each host? • How many of the vulnerabilities were critical, major, and minor software vulnerabilities?
3. Write your lab report as directed in the lab.
4. Complete the Nmap test network scan for Part 2.
5. Add the screenshots from Part 2 to your lab report.
6. Upload the lab report with the test network scan screenshot to the assignment for this unit.

Reference:

https://nmap.org/book/zenmap-results.html https://nmap.org/download.html