Prämisse
In this video walkthrough, I demonstrated the use of Openvas to scan for web application vulnerabilities. I explained the target, port, and credentials configurations in addition to breaking down the structure of the report.
Holen Sie sich Hinweise zum OSCP-Zertifikat
Beschreibung
OpenVAS, an application used to scan endpoints and web applications to identify and detect vulnerabilities. It is commonly used by corporations as part of their mitigation solutions to quickly identify any gaps in their production or even development servers or applications. This is not an end all be all solution but can help to get rid of any common vulnerabilities that may have slipped through the cracks.
From the OpenVAS GitHub repository “This is the Open Vulnerability Assessment Scanner (OpenVAS) of the Greenbone Vulnerability Management (GVM) Solution. It is used for the Greenbone Security Manager appliances and is a full-featured scan engine that executes a continuously updated and extended feed of Network Vulnerability Tests (NVTs).”
Herausforderungsfragen
- Wann begann der Scan im Fall 001?
- Wann endete der Scan im Fall 001?
- Wie viele Ports sind im Fall 001 geöffnet?
- Wie viele Schwachstellen wurden insgesamt im Fall 001 gefunden?
- Welche gefundene Sicherheitslücke weist den höchsten Schweregrad auf? (MSxx-xxx)
- What is the first affected OS to this vulnerability?
- Welche Methode zur Schwachstellenerkennung wird empfohlen?
Walkthrough
