I am working on a Vulnerability Analysis project that is based on CEH v13 – Module 05. This project is about showing the lifecycle of vulnerability assessment using Nessus Essentials in a controlled lab environment.
The project is focused on getting the scanner ready setting up assessments running scans looking at the findings and making security recommendations for the lab systems that I am allowed to work on.
-
I want to understand the Vulnerability Analysis process.
-
I want to learn the workflow of vulnerability assessment.
-
I will. Run vulnerability scans using Nessus Essentials.
-
I will look at the vulnerabilities that are found.
-
I will decide which security risks are the important.
-
I will write down my findings and suggestions for fixing the problems in a way.
- I am using Kali Linux.
-
I am using Metasploitable 2.
-
I am using Windows 7.
- I am using Nessus Essentials.
vulnerability-analysis-project/
── README.md
│── notes.md
│── screenshots/
└── LICENSE
-
I will learn the basics of Vulnerability Analysis.
-
I will learn the workflow of vulnerability assessment.
-
I will make sure Nessus is installed correctly.
-
I will check the Nessus service.
-
I will use the Nessus web interface.
-
I will do a network scan.
-
I will set up the target configuration.
-
I will use scan templates.
-
I will use profiles.
-
I will start the vulnerability assessments.
-
I will see the progress.
-
I will run the plugins.
-
I will finish the scan.
-
I will look at the severity levels.
-
I will see the details of the vulnerabilities.
-
I will learn about the CVE information.
-
I will see the plugin details.
-
I will make remediation recommendations.
-
I will export the reports.
-
I will review the findings.
-
I will decide which risks are the important.
-
I will write down the assessment documentation.
-
I am doing Vulnerability Assessment.
-
I am using Nessus Essentials.
-
I am doing Risk Assessment.
-
I am doing Vulnerability Analysis.
-
I am interpreting CVE information.
-
I am doing Security Reporting.
-
I am planning Remediation.
After finishing this project I got hands-on experience in:
-
getting Nessus ready for vulnerability assessments.
-
configuring vulnerability scans.
-
assessing Windows and Linux lab systems.
-
understanding vulnerability severity.
-
reviewing remediation recommendations.
-
writing professional vulnerability assessment reports.
This project shows skills that are useful for:
-
SOC Analyst (L1)
-
Vulnerability Assessment Analyst
-
Cybersecurity Analyst
-
Junior Security Consultant
I did all the demonstrations in a lab environment using Kali Linux, Metasploitable 2 Windows 7 and Nessus Essentials.
This repository is for learning about cybersecurity in an ethical way.
The next project will continue with:
CEH v13 – Module 06: System Hacking
where I will use the findings from the vulnerability assessment to learn about exploitation techniques in a lab environment.
Kranthi Kumar
I am an aspiring SOC Analyst and a CEH student. I am very interested, in cybersecurity.
GitHub: https://github.com/kranthi778