The Nessus Vulnerability Management project is designed to help identify and remediate security vulnerabilities in software and systems. This project uses the Nessus vulnerability scanner to scan for vulnerabilities, and provides tools and workflows for prioritizing and remediating those vulnerabilities.
Vulnerability management is a continuous, proactive, and often automated process that keeps your computer systems, networks, and enterprise applications safe from cyberattacks and data breaches.
Nessus is a powerful vulnerability scanner that can identify security vulnerabilities in a variety of systems and software. Some of the key features of Nessus include:
- High-speed asset discovery
- Configuration auditing
- Target profiling
- Malware detection
- Sensitive data discovery and more
The project workflow for Nessus Vulnerability Management is as follows:
- Run Nessus scans to identify vulnerabilities in the target systems.
- Prioritize vulnerabilities based on severity and potential impact.
- Develop a remediation plan to address the most critical vulnerabilities first.
- Remediate vulnerabilities using appropriate tools and workflows.
- Re-scan to ensure that vulnerabilities have been remediated.
To use the Nessus Vulnerability Management project, follow these steps:
- Download and set up the Nessus tool.
- Configure the tool to scan the target systems.
- Run scans and review the results.
- Prioritize and remediate vulnerabilities using the tools and workflows provided in this project.
- Download and Install VMWare Player as a target system with Windows 10.
- Download and Install Nessus Essentials
- Ensure connectivity with VM. You can do that by pingcommand from your main machine. To find the VM's IP address, just use ipconfig command on the VM.
- Create a new scan in Nessus using VM's IP address.
- Inspect the first scan, w/o credentials
- Configure VM for Credentialed scans, by providing Nessus with our credentials.
- Inspect the second scan, with credentials. Now we can see, that scan with credentials can provide more information regarding the system's vulnerability.
- Install a deprecated Firefox on our VM. Every time software gets updated, hackers reverse engineer the patches and find what vulnerabilities have been eliminated with newer patches so that they can target computers with older software.
- Inspect scan results after installing deprecated Firefox.
- Remediate some vulnerabilities. Delete or update Firefox, and check for Windows updates.
- Once it's done, scan again and compare the results.
The Nessus Vulnerability Management project is an important tool for identifying and remediating security vulnerabilities in software and systems. By using this project, you can improve the security of your own systems and ensure that your organization is protected against potential security threats.