Answered step by step
Verified Expert Solution
Link Copied!

Question

1 Approved Answer

In this assignment, you will use OpenVAS to identify vulnerabilities on your Ubuntu and Windows 2 0 1 2 R 2 VMs . Study the

In this assignment, you will use OpenVAS to identify vulnerabilities on your Ubuntu and Windows 2012R2 VMs.
Study the following resources to become familiar with OpenVAS:
OpenVAS: An Open Source Vulnerability Scanning and Management System
Greenbone Vulnerability Scanner: How to Scan Windows Devices for Vulnerabilities
Run nmap banner and version scans for the top 100 ports of your Windows 2012R2 and Ubuntu VMs.
From the nmap results, pick a service for each VM where the banner and version scan detected the same software type and version. You will have two ports: one for your Ubuntu VM and one port for your Windows VM.
Example:
-192.168.1.30(Windows), port 445
-192.168.1.31(Ubuntu), port 22
Start a WireShark capture and create a filter for the IP and ports you obtained at point 3. The filter needs to include the IPs of your Windows and Ubuntu VMs and the port numbers you selected. WireShark should capture only traffic sent to and coming back from the ports you selected at point 3.
Start OpenVAS as root, by running gvm-start.
Create an admin user for OpenVAS called myadmin by running:
sudo runuser -u _gvm -- gvmd --create-user=myadmin --new-password=
Write down the returned password string!
Log into the OpenVAS web interface with the myadmin user you created as step 6.
Update the OpenVAS NVT vulnerability feed by running :
sudo runuser -u _gvm -- greenbone-nvt-sync
Confirm that the NVT vulnerability feed is up to date in OpenVAS, by clicking on Administration -> Feed Status. The status for NVT should say Current.
Use the Scan wizard to run an immediate scan against the Ubuntu and Windows 2012R2 VMs. Wait for the scan to complete.
Stop the WireShark capture.
Review found vulnerabilities in OpenVAS (Scans->Results).
Click on each vulnerability to learn more about it.
Generate an OpenVAS PDF report for the scan you performed at step 9 and save it as -assignment3-openvas.pdf
Save the WireShark packet capture as -assignment3-wireshark.pcap
Submit the files -assignment2-openvas.pdf and -assignment3-wireshark.pcap through MyCourses
PLEASE STEP BY STEP AND ALSO SOME SCREEN SHOTS

Step by Step Solution

There are 3 Steps involved in it

Step: 1

blur-text-image

Get Instant Access to Expert-Tailored Solutions

See step-by-step solutions with expert insights and AI powered tools for academic success

Step: 2

blur-text-image

Step: 3

blur-text-image

Ace Your Homework with AI

Get the answers you need in no time with our AI-driven, step-by-step assistance

Get Started

Recommended Textbook for

SQL Instant Reference

Authors: Gruber, Martin Gruber

2nd Edition

0782125395, 9780782125399

More Books

Students also viewed these Databases questions

Question

1. Whats your opinion, Joel? or Does anyone have another opinion?

Answered: 1 week ago