0% found this document useful (0 votes)

16 views

day2va-121130175145-phpapp01

Vulnerability Presentation

Uploaded by

Aman Singh

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

16 views

day2va-121130175145-phpapp01

Vulnerability Presentation

Uploaded by

Aman Singh

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PDF, TXT or read online on Scribd

You are on page 1/ 24



Vulnerability Assesment
Network Security Workshop

Dedi Dwianto, C|EH, OSCP

Daftar ISI
2

Contents

 Technical Vulnerability Management

 Vulnerability analysis tools

Technical Vulnerability Management

 vulnerability analysis and assessment is an

important element of each required activity in the
NIST Risk Management Framework (RMF).

 This RMF comprises six steps, into each of which

vulnerability analysis and assessment is to be
integrated:
4

Technical Vulnerability Management

 Step 1: Categorize Information Systems.

 Step 2: Select Security Controls

 Step 3: Implement Security Controls.

 Step 4: Assess Security Controls.

 Step 5: Authorize Information Systems.

 Step 6: Monitor Security Controls.

Technical Vulnerability Management

 To reduce risks resulting from exploitation of

published technical vulnerabilities.

 Technical vulnerability management should be

implemented in an effective, systematic, and
repeatable way with measurements taken to
confirm its effectiveness.

 These considerations should include operating

systems, and any other applications in use.
6

Technical Vulnerability Management

 A current and complete inventory of assets is a

prerequisite for effective technical vulnerability
management.

 Specific information needed to support technical

vulnerability management includes the software
vendor, version numbers, current state of
deployment (e.g. what software is installed on what
systems), and the person(s) within the organization
responsible for the software.
7

Technical Vulnerability Management

 The following guidance should be followed to

establish an effective management process for
technical vulnerabilities
 the organization should define and establish the
roles and responsibilities associated with technical
vulnerability management, including vulnerability
monitoring, vulnerability risk
assessment, patching, asset tracking, and any
coordination responsibilities required;
8

Technical Vulnerability Management

 information resources that will be used to identify

relevant technical vulnerabilities and to maintain
awareness about them should be identified for software
and other technology
 a timeline should be defined to react to notifications of
potentially relevant technical vulnerabilities;
 once a potential technical vulnerability has been
identified, the organization should identify the
associated risks and the actions to be taken; such action
could involve patching of vulnerable systems and/or
applying other controls;
9

Technical Vulnerability Management

 depending on how urgently a technical vulnerability

needs to be addressed, the action taken should be
carried out according to the controls related to change
management

 a timeline should be defined to react to notifications of

potentially relevant technical vulnerabilities;

 an audit log should be kept for all procedures

undertaken

 systems at high risk should be addressed first.

The Patch and Vulnerability Group

 The PVG should be a formal group that incorporates

representatives from information security and
operations.

 These representatives should include individuals

with knowledge of vulnerability and patch
management, as well as system
administration, intrusion detection, and firewall
management.
11

The duties of the PVG

 Create a System Inventory.

 Monitor for Vulnerabilities, Remediations, and Threats.

 Prioritize Vulnerability Remediation.

 Create an Organization-Specific Remediation Database

 Conduct Generic Testing of Remediations.

 Deploy Vulnerability Remediations.

 Distribute Vulnerability and Remediation Information to Local

Administrators.

 Perform Automated Deployment of Patches.

The duties of the PVG

 Configure Automatic Update of Applications Whenever Possible and

Appropriate.

 Verify Vulnerability Remediation Through Network and Host

Vulnerability Scanning.

 Vulnerability Remediation Training.

Report Organization

Section1 Introduction to purpose, organization, scope, and assumptions for this

Report.
Section 2 Overview of automated vulnerability assessment tools—including
descriptions of the various types of automated vulnerability assessment
tools currently available
Section 3 Catalogue of descriptions of current vulnerability assessment tools,
categorized by type.
Section 4 Representative listing of vulnerability assessment tools
Section 5 List of resources to additional detailed information about IT and network
vulnerability assessment and assessment tools.
14

Vulnerability Analysis tools

 Vulnerability assessment tools generally work by

attempting to automate the steps often employed to
exploit vulnerabilities: they begin by performing a
“footprint” analysis to determine what network services
and/or software programs (including versions and patch
levels) run on the target.
 Vulnerability assessment tools help in that
integration, by automating the
detection, identification, measurement, and
understanding of vulnerabilities found in ICT
components at various levels of a target ICT system or
infrastructure.
15

Vulnerability Analysis tools

 Most vulnerability assessment tools are capable of

scanning a number of network nodes, including
networking and networked devices
(switches, routers, firewalls, printers, etc.), as well as
server, desktop, and portable computers.

 The type and level of detail of a vulnerability assessment

tool’s findings varies from tool to tool.
16

Tool type

 Network Scanners

 Host Scanners

 Database Scanners

 Web Application Scanners

 Multilevel Scanners

 Automated Penetration Test Tools

 Vulnerability Scan Consolidators

Network Scanners

 Assuria Auditor and Auditor RA

 Infiltration Systems Infiltrator for Home Users

 Microsoft® Attack Surface Analyzer

 NileSOFT Secuguard SSE

 Numara® Vulnerability Manager

 SoftRun Inciter Vulnerability Manager

 ThreatGuard® Secutor
18

Host Scanners

 Beyond Security® Automated Vulnerability Detection System Host

Scanners

 Black Falcon/Net Security Suite Falcon Vulnerability Analysis

 DragonSoft Vulnerability Management

 eEye® Retina® Network

 Fortinet® FortiScan 4.1.0

 FuJian RongJi RJ-iTOP

 GFI LANguard®
19

Database Scanners

 Application Security AppDetectivePro

 DBAPPSecurity MatriXay 3.6

 Fortinet FortiDB

 Imperva® Scuba

 McAfee Repscan and McAfee Vulnerability Manager for

Databases

 NGSSecure NGS SQuirreL

 Safety-Lab Shadow Database Scanner

Web Application Scanners

 Acunetix® Web Vulnerability Scanner

 Casaba Watcher 1.5.1

 Cenzic® Hailstorm® Enterprise Application Risk Controller

 eEye Retina Web

 Grabber

 Mavutina Netsparker®

 HP WebInspect®
21

Multilevel Scanners

 Integrigy AppSentry

 Open Vulnerability Assessment System 4

 SAINT® Professional and SAINT® Enterprise

 Symantec® Control Compliance Suite: Vulnerability Manager

 Tenable® Nessus®

 Venusense Vulnerability Scanning and Management System

AUTOMATED PENETRATION TEST

TOOLS
 Arachni

 CORE IMPACT® Pro

 CORE INSIGHT Enterprise

 Google® Skipfish

 Immunity® CANVAS® Professional

 Rapid7® Metasploit®

 Rapid7 NeXpose
23

Monitoring Vulnerabilities

 Vendor Web sites and mailing lists

 Third-party Web sites

 Third-party mailing lists and newsgroups

 Vulnerability scanners

 Vulnerability databases

 Enterprise patch management tools

 Other notification tools.

Monitoring Vulnerabilities

 http://web.nvd.nist.gov/

 http://secunia.com

 http://www.exploit-db.com/

Vulnerability Assessment Guide
100% (2)
Vulnerability Assessment Guide
23 pages
ISACA WP Vulnerability Assessment 1117
100% (2)
ISACA WP Vulnerability Assessment 1117
17 pages
Rapid7 Vulnerability Assessment Buyers Guide
No ratings yet
Rapid7 Vulnerability Assessment Buyers Guide
17 pages
The Certified Ethical Hacker Exam - version 8 (The concise study guide)
From Everand
The Certified Ethical Hacker Exam - version 8 (The concise study guide)
alasdair gilchrist
3/5 (9)
Mse (Vapt)
No ratings yet
Mse (Vapt)
15 pages
An Approach To Vulnerability Management: by Umesh Chavan, CISSP
No ratings yet
An Approach To Vulnerability Management: by Umesh Chavan, CISSP
3 pages
Web Application Security - Unit 4 Notes
No ratings yet
Web Application Security - Unit 4 Notes
143 pages
Eccouncil Ecihv2 1 2 1 What Is Vulnerability Management
No ratings yet
Eccouncil Ecihv2 1 2 1 What Is Vulnerability Management
4 pages
Penetration Testing Fundamentals-2: Penetration Testing Study Guide To Breaking Into Systems
From Everand
Penetration Testing Fundamentals-2: Penetration Testing Study Guide To Breaking Into Systems
Devi Prasad
No ratings yet
VAPT basic_1
No ratings yet
VAPT basic_1
7 pages
CSD4001-Study Material-Midterm
No ratings yet
CSD4001-Study Material-Midterm
63 pages
Module 30 Network Vulnerability Assessment
No ratings yet
Module 30 Network Vulnerability Assessment
27 pages
Vulnerability Testing and Server Client Side Attack
No ratings yet
Vulnerability Testing and Server Client Side Attack
34 pages
What Are The Basic Steps of Vulnerability Analysis
No ratings yet
What Are The Basic Steps of Vulnerability Analysis
3 pages
Vulnerability Management - Cyber Security
No ratings yet
Vulnerability Management - Cyber Security
42 pages
Chapter 5 Vulnerability Analysis
No ratings yet
Chapter 5 Vulnerability Analysis
25 pages
Lec 4 - Vuln Assessment
No ratings yet
Lec 4 - Vuln Assessment
17 pages
Chapter 4 - Designing A Vulnerability Management Program
No ratings yet
Chapter 4 - Designing A Vulnerability Management Program
38 pages
Vulnerability Assessment
No ratings yet
Vulnerability Assessment
4 pages
Unit 2 Question Answer
No ratings yet
Unit 2 Question Answer
8 pages
Vulnerability Management
No ratings yet
Vulnerability Management
5 pages
Ab
No ratings yet
Ab
8 pages
Vulnerability Analysis
No ratings yet
Vulnerability Analysis
4 pages
Was Unit Iv
No ratings yet
Was Unit Iv
43 pages
chapter 5 cyber solutions part 2
No ratings yet
chapter 5 cyber solutions part 2
10 pages
Vulnerability Assessment and Penetration Testing
No ratings yet
Vulnerability Assessment and Penetration Testing
25 pages
NETWORK SCANNING REPORT
No ratings yet
NETWORK SCANNING REPORT
13 pages
Week 4 Chapter 10 Assignment
No ratings yet
Week 4 Chapter 10 Assignment
3 pages
Vulnerability Assessment Best Practices
No ratings yet
Vulnerability Assessment Best Practices
25 pages
vulnerabilityassessment-151201220203-lva1-app6891
No ratings yet
vulnerabilityassessment-151201220203-lva1-app6891
14 pages
PTC_Interview-Questions-on-Vulnerability-Assessment-1
No ratings yet
PTC_Interview-Questions-on-Vulnerability-Assessment-1
20 pages
CEH Module 5
No ratings yet
CEH Module 5
39 pages
Qualys Foundation
No ratings yet
Qualys Foundation
28 pages
Unit 4 - Vulnerability Assessment and Penetration Testing
No ratings yet
Unit 4 - Vulnerability Assessment and Penetration Testing
19 pages
Vulnerability Assessment Best Practices
100% (1)
Vulnerability Assessment Best Practices
25 pages
Cie-1 (Vapt)
No ratings yet
Cie-1 (Vapt)
5 pages
processunityseptember2024vspptfinal11722957560412
No ratings yet
processunityseptember2024vspptfinal11722957560412
42 pages
Module 2 Assignment 2 Network Vulnerability B
No ratings yet
Module 2 Assignment 2 Network Vulnerability B
9 pages
VAPT Methodology Report
No ratings yet
VAPT Methodology Report
3 pages
Unit 4
No ratings yet
Unit 4
65 pages
How To Perform A Vulnerability Assessment
No ratings yet
How To Perform A Vulnerability Assessment
14 pages
AshisDasVulnerabilityManagementPatchPresentationV2PDF
No ratings yet
AshisDasVulnerabilityManagementPatchPresentationV2PDF
69 pages
Ese (Vapt)
No ratings yet
Ese (Vapt)
22 pages
Create a Simple Vulnerability Scanning Tool That Scans a Network or Website for Common Security Vuln
No ratings yet
Create a Simple Vulnerability Scanning Tool That Scans a Network or Website for Common Security Vuln
14 pages
CSE DAY 4 Module 5
No ratings yet
CSE DAY 4 Module 5
7 pages
CHAPTER 10
No ratings yet
CHAPTER 10
19 pages
Unit III
No ratings yet
Unit III
35 pages
Chapter 10
No ratings yet
Chapter 10
54 pages
Day 3
No ratings yet
Day 3
33 pages
6th unit
No ratings yet
6th unit
36 pages
Vaptqans
No ratings yet
Vaptqans
15 pages
CEHv10 Module 05 Vulnerability Analysis PDF
No ratings yet
CEHv10 Module 05 Vulnerability Analysis PDF
55 pages
Brian - Ashworth: Assessment Event 1 - Assess Network Security Threats and Vulnerabilities To Identify Risk (VM)
No ratings yet
Brian - Ashworth: Assessment Event 1 - Assess Network Security Threats and Vulnerabilities To Identify Risk (VM)
6 pages
Security+ Week 3
No ratings yet
Security+ Week 3
40 pages
Vulnerability Management 2
No ratings yet
Vulnerability Management 2
16 pages
Threat and Vulnerability Management - Ryan Elmer - Frsecure
No ratings yet
Threat and Vulnerability Management - Ryan Elmer - Frsecure
34 pages
Prof - Senthil Kumar.K: Under The Guidance of
No ratings yet
Prof - Senthil Kumar.K: Under The Guidance of
15 pages
Activity Overview
No ratings yet
Activity Overview
6 pages
Lec 3
No ratings yet
Lec 3
51 pages
Pentest+ Exam Pass: (PT0-002): Penetration Testing And Vulnerability Management For Cybersecurity Professionals
From Everand
Pentest+ Exam Pass: (PT0-002): Penetration Testing And Vulnerability Management For Cybersecurity Professionals
Rob Botwright
No ratings yet
PRIVILEGE ESCALATION TOOL EXECUTION DETECTION
No ratings yet
PRIVILEGE ESCALATION TOOL EXECUTION DETECTION
10 pages
disaster-recovery-plan template
No ratings yet
disaster-recovery-plan template
9 pages
Literature Review Template
No ratings yet
Literature Review Template
10 pages
Task Automation
No ratings yet
Task Automation
16 pages
Your Favorite Coffee Shop Is Not Just Serving Espressos WWHF 2024 Talk
No ratings yet
Your Favorite Coffee Shop Is Not Just Serving Espressos WWHF 2024 Talk
16 pages
User_Manual.7dc5c6cd1adfb51963e8
No ratings yet
User_Manual.7dc5c6cd1adfb51963e8
2 pages
1 Multi-Lingual Option Visible: Test Case # Component Sub Component Functional Req
No ratings yet
1 Multi-Lingual Option Visible: Test Case # Component Sub Component Functional Req
148 pages
Supernetting and CIDR
No ratings yet
Supernetting and CIDR
20 pages
S.no Path: 1 Catalogue - Solar Panel - PDP
No ratings yet
S.no Path: 1 Catalogue - Solar Panel - PDP
3 pages
Appreciation Letter Format
No ratings yet
Appreciation Letter Format
2 pages
Synopsis On Virtual Keyboard
No ratings yet
Synopsis On Virtual Keyboard
5 pages
The Case For Managing Mro Inventory
100% (1)
The Case For Managing Mro Inventory
7 pages
Online Shopping Website
No ratings yet
Online Shopping Website
34 pages
Hardware/Software Co-Design: Principles and Practice
100% (1)
Hardware/Software Co-Design: Principles and Practice
16 pages
Pavan KumarYelda
No ratings yet
Pavan KumarYelda
4 pages
Direct-Hit - Search Diagrama 4
No ratings yet
Direct-Hit - Search Diagrama 4
1 page
29 Avanza (Cont. Next Page) : Engine Control (From Aug. 2015 Production)
No ratings yet
29 Avanza (Cont. Next Page) : Engine Control (From Aug. 2015 Production)
5 pages
Btech Cse 8 Sem Software Verification Validation and Testing 38006 2020
No ratings yet
Btech Cse 8 Sem Software Verification Validation and Testing 38006 2020
2 pages
DCS - Integration With Other Systems PDF
No ratings yet
DCS - Integration With Other Systems PDF
6 pages
Architectural Blueprints - The "4+1" View Model of Software Architecture
No ratings yet
Architectural Blueprints - The "4+1" View Model of Software Architecture
16 pages
Autonomous-Drone-Delivery-Project-Report
No ratings yet
Autonomous-Drone-Delivery-Project-Report
7 pages
Integration Architecture EBS R12
No ratings yet
Integration Architecture EBS R12
71 pages
RS RAMS Flowchart
No ratings yet
RS RAMS Flowchart
2 pages
100 Python Interview Questions and Answers
No ratings yet
100 Python Interview Questions and Answers
32 pages
2 3+Tools+and+Integration
No ratings yet
2 3+Tools+and+Integration
13 pages
TranThiNgocMai 27201448177
No ratings yet
TranThiNgocMai 27201448177
5 pages
Conveyor Belt Project: Author: Morouj Al-Ghafari Date: 29 April 2018
No ratings yet
Conveyor Belt Project: Author: Morouj Al-Ghafari Date: 29 April 2018
6 pages
Advanced BPM
100% (5)
Advanced BPM
54 pages
Mitsubishi Engine 4G6
100% (5)
Mitsubishi Engine 4G6
108 pages
Lecture 9 Business Process Modelling
No ratings yet
Lecture 9 Business Process Modelling
43 pages
Babok v2 All Chapters PDF Free
No ratings yet
Babok v2 All Chapters PDF Free
20 pages
QA Training Presentation
No ratings yet
QA Training Presentation
11 pages
2.7V6 Distribucion
No ratings yet
2.7V6 Distribucion
20 pages
NIST Maturity Worksheet
No ratings yet
NIST Maturity Worksheet
22 pages
Module 3 CPU Process Scheduling
No ratings yet
Module 3 CPU Process Scheduling
4 pages
GRiD - Autonomous Indoor Drone - Comets - VIT Chennai
No ratings yet
GRiD - Autonomous Indoor Drone - Comets - VIT Chennai
12 pages
Corrected SCRUM Module End
No ratings yet
Corrected SCRUM Module End
3 pages
SyedSarafeenaAli 03
No ratings yet
SyedSarafeenaAli 03
13 pages
Microservices Architecture
No ratings yet
Microservices Architecture
60 pages
From Monolith To Microservices: A Data Ow-Driven Approach
No ratings yet
From Monolith To Microservices: A Data Ow-Driven Approach
10 pages
1.1 Problem Definition To Develop A Library Management System
No ratings yet
1.1 Problem Definition To Develop A Library Management System
9 pages