Vulnerability Assessment

IntermediateSecurity
NmapOpenVASNessusnikto

Objective

Hands-on practice with vulnerability assessment techniques.

Tools & Technologies

  • Nmap
  • OpenVAS
  • Nessus
  • nikto

Key Commands

nmap -sV -sC -O target
nikto -h http://target
openvas-start
nmap --script vuln target

Lab Steps

01
Nmap Service Detection

Scan for open ports, services, and OS fingerprinting.

02
NSE Scripts

Run Nmap Scripting Engine vulnerability scripts.

03
Web Scanner

Use nikto to scan web servers for common vulnerabilities.

04
OpenVAS Scan

Configure and run a comprehensive vulnerability scan with OpenVAS.

Challenges Encountered

  • Vulnerability scanners generate false positives — manual verification required
  • Scanning production systems without authorization is illegal

Key Takeaways

  • Always obtain written authorization before scanning
  • CVSS scores guide remediation priority but context matters