Explain how the CVE search listing can be a tool for security practitioners and a tool for hackers.ġ3. If Nessus provides a pointer in the vulnerability assessment scan report to look up CVE-2009-3555 when using the CVE search listing, specify what this CVE is, what the potential exploits are, and assess the severity of the vulnerability.ġ2. When you identify a known software vulnerability, where can you go to assess the risk impact of the software vulnerability?ġ1. Are open ports necessarily a risk? Why or why not?ġ0. While Nessus provides suggestions for remediation steps, what else does Nessus provide that can help you assess the risk impact of the identified software vulnerability?ĩ. How many IP hosts were identified in the Nessus® vulnerability scan? List them.Ĩ.
Difference between zenmap and nessus pdf#
What is the source IP address of the Cisco Security Appliance device (refer to page 6 of the pdf report)?ħ. From the ZenMap GUI pdf report page 6, what ports and services are enabled on the Cisco Security Appliance device?Ħ.
How many total scripts (i.e., test scans) does the Intense Scan using ZenMap GUI perform?ĥ. Which scanning application is better for performing a software vulnerability assessment with suggested remediation steps?Ĥ.
Which scanning application is better for performing a network discovery reconnaissance probing of an IP network infrastructure?ģ. What are the differences between ZeNmap GUI (Nmap) and Nessus?Ģ. Identify Threats and Vulnerabilities in an IT Infrastructureġ.
0 kommentar(er)
