21 March 2024

Nessus Vulnerability Management Lab

by C. Casquatch

We will be using Nessus Essentials to scan local VMs hosted on VMWare Workstation in order run credentialed scans to discover vulnerabilities, remediate some of the vulnerabilities, then perform a rescan to verify remediation.

Languages and Utilities Used

PowerShell
VMware Workstation

Environments Used

Windows 10
Nessus Essentials

Program walk-through:

Turning off the firewall and creating a scan for the host

Enabling Remote Registry

Turning on printer and Netdiscovery

Screenshot of before VM configuration

Screenshot of after VM configuration

Scan after installing older version of firefox onto VM

Firefox Vulnerabilities

Firefox Remediation recommendations from Nessus

Firefox remediation in action: Updating Windows and deleting firefox

Nessus scan after Windows updates and Firefox deletion

Nessus remediation suggestions for last scan, if needed

tags: nessus - SIEM - lab - SOC

Another Security Blog

A place to show my mad skills

Nessus Vulnerability Management Lab

Languages and Utilities Used

Environments Used

Program walk-through:

Turning off the firewall and creating a scan for the host

Enabling Remote Registry

Turning on printer and Netdiscovery

Screenshot of before VM configuration

Screenshot of after VM configuration

Scan after installing older version of firefox onto VM

Firefox Vulnerabilities

Firefox Remediation recommendations from Nessus

Firefox remediation in action: Updating Windows and deleting firefox

Nessus scan after Windows updates and Firefox deletion

Nessus remediation suggestions for last scan, if needed