Overview
Learning Outcomes
In this module, you will complete the following exercises:
- Exercise 1 – Security Concerns and Vulnerabilities
- Exercise 2 – Third-Party Risks
- Exercise 3 – Improper or Weak Patch Management
- Exercise 4 – Impacts
After completing this module, you should be able to:
- Open ports and services.
- Analyze hosts on a network using Microsoft Baseline Security Analyzer.
After completing this module, you should have further knowledge of:
- Cloud-based versus on-premises vulnerabilities
- Zero-day
- Weak configurations
- Legacy platforms
- Vendor management
- Supply chain
- Outsourced code development
- Data storage
- Firmware
- Operating system (OS)
- Applications
- Data loss
- Data breaches
- Data exfiltration
- Identity theft
- Financial
- Reputation
- Availability loss
Exam Objectives
The following exam objective is covered in this lab:
1.6 Explain the security concerns associated with various types of vulnerabilities.
- Cloud-based versus on-premises vulnerabilities
- Zero-day
- Weak configurations
- Third-party risks
- Improper or weak patch management
- Legacy platforms
- Impacts
Note: Our main focus is to cover the practical, hands-on aspects of the exam objectives. We recommend referring to course material or a search engine to research theoretical topics in more detail.