Vulnerability Scanning of a Linux Target

CompTIA Security+ (SY701) Domains:
Domain 1.0: Threats, Attacks, and Vulnerabilities

CompTIA Security+ (SY701) Objectives:
Objective 1.7: Summarize the techniques used in security assessments

Overview

In this lab, you will be conducting vulnerability scans using various network scanning tools such as nmap/zenmap and OpenVAS. You will perform the first two steps in a pen testing process in this lab.

OUTCOMES

In this lab, you will learn to:

Scan the network using OpenVAS.

Courses

Linux Based Security+ - Skill Labs

Key terms and descriptions

nmap/zenmap

Nmap is an open source network vulnerability scanner used to discover hosts and open ports / services. Zenmap is the GUI interface to nmap.

Kali Linux/Metasploit

Kali Linux is a Linux distribution created for digital forensics and penetration testing. Metasploit is a penetration testing framework used with Kali Linux.

OpenVAS

OpenVAS is an open vulnerability scanner that uses a Greenbone Community Feed for its scanner that includes 50,000 vulnerabilities.