Nessus Vulnerability Management Lab
by C. Casquatch
We will be using Nessus Essentials to scan local VMs hosted on VMWare Workstation in order run credentialed scans to discover vulnerabilities, remediate some of the vulnerabilities, then perform a rescan to verify remediation.
Languages and Utilities Used
- PowerShell
- VMware Workstation
Environments Used
- Windows 10
- Nessus Essentials
Program walk-through:
Turning off the firewall and creating a scan for the host
Enabling Remote Registry
Turning on printer and Netdiscovery
Screenshot of before VM configuration
Screenshot of after VM configuration
Scan after installing older version of firefox onto VM
Firefox Vulnerabilities
Firefox Remediation recommendations from Nessus
Firefox remediation in action: Updating Windows and deleting firefox
Nessus scan after Windows updates and Firefox deletion
Nessus remediation suggestions for last scan, if needed
tags: nessus - SIEM - lab - SOC