Need to prepare a Lab Report by satisfying all the points mentioned in the below:
Provided below the Introduction to this Lab report and also the step by step procedure (Hands-On steps) the individual should follow in preparing the Lab report. This Hands On steps should be clearly mentioned in the Lab Report which you are preparing.
Imagine a System Administrator learns of a server’s vulnerability, and a service patch is available to solve it. Unfortunately, simply applying a patch to a server is not assurance enough that a risk has been mitigated. The system admin has the option of opening the application and verifying that the patch has raised the version number as expected. Still, the admin has no guarantee the vulnerability is closed, at least not until the vulnerability is directly tested. That’s what vulnerability scanners are for.
Two vulnerability scanners available to the system administrator are Nmap and Nessus, which produce scan reports. These reports can identify the hosts, operating systems, services, applications, and open ports that are at risk in an organization.
In this lab, you will look at an Nmap report and a Nessus report. You will visit the http://cve.mitre.org web site, you will define vulnerability and exposure according to the site, and you will learn how to conduct searches of the Common Vulnerabilities and Exposures (CVE) listing.
1) On you local computer create a new word document which is your lab report.
2) Review the Nmap Scan Report that accompanies this lab. (Please find the attachements)
3) In your Lab Report file, using the Lab 5 Nmap Scan Report, answer the following
a) What are the date and timestamp of the Nmap host scan ?
b) What is the total number of loaded scripts for scanning?
c) A synchronize packet (SYN) stealth scan discovers all open ports on the targeted host for the SYN stealth scan at 13:36?
d) Identify hosts, operating systems, services, application, and open ports on devices from the Zenmap GUI (Nmap) scan report.
4) Review the Nessus vulnerability Scan report that accompanies this lab. (check the Attachments)
5) In you Lab Report file, using the Nessus Vulnerability Scan Report, answer the following question:
a) How many hosts were scanned?
b) What were the start and end times for each of the scans?
c) How many total vulnerabilities were discovered for each host?
d) How many of the vulnerabilities were critical, major, and minor software vulnerabilities?
6) In the browser, navigate to http://cve.mitre.org.
7) On the website, toward the top left of the screen, click the CVE list link.
8) Review the CVE List Main page.
9) In your Lab Report file, define CVE.
10) On the CVE page, click the Search link.
11) In the Search box, type Microsoft XP 2003 Service Pack 1 and click the Search button.
12) In you Lab Report file, describe some of the results you discover.
13) After viewing the results, conduct another search and this time, type Cisco ASA 5505 Security + and click the Search button.
14) In your Lab Report file, describe some of the search results.