{"id":370,"date":"2023-07-30T20:07:36","date_gmt":"2023-07-30T20:07:36","guid":{"rendered":"https:\/\/victorcoil.tech\/?page_id=370"},"modified":"2026-04-19T15:13:00","modified_gmt":"2026-04-19T15:13:00","slug":"vulnerability-management-lab","status":"publish","type":"page","link":"https:\/\/victorcoil.tech\/?page_id=370","title":{"rendered":"Vulnerability Scanning AD with Nessus"},"content":{"rendered":"\n<div class=\"wp-block-group has-zeever-bgsoft-background-color has-background is-layout-constrained wp-block-group-is-layout-constrained wp-container-1 is-position-sticky\"><div id=\"guten-fbBQKI\" class=\"guten-element guten-nav-menu nav-menu break-point-tablet submenu-click-title \" data-item-indicator=\"fas fa-angle-down\" data-item-indicator-type=\"icon\" data-item-indicator-svg=\"\" data-close-on-click=\"1\" aria-label=\"\">\n\t\t\t<div class=\"gutenverse-hamburger-wrapper\">\n\t\t\t\t<button class=\"gutenverse-hamburger-menu\" aria-label=\"\">\n\t\t\t\t<i aria-hidden=\"true\" class=\"fas fa-bars\"><\/i>\n\t\t\t\t<\/button>\n\t\t\t<\/div>\n\t\t\t\n\t\t\t<div class=\"gutenverse-menu-wrapper\"><div class=\"gutenverse-menu-container\"><ul id=\"menu-vulnerability-management-lab\" class=\"gutenverse-menu\"><li id=\"menu-item-581\" class=\"menu-item-581  menu-item menu-item-type-custom menu-item-object-custom\"><a href=\"javascript:void(0);\" data-href=\"https:\/\/victorcoil.tech\/?page_id=370\/#SettingUp\" aria-label=\"Initial Set Up\">Initial Set Up<\/a><\/li>\n<li id=\"menu-item-582\" class=\"menu-item-582  menu-item menu-item-type-custom menu-item-object-custom\"><a href=\"javascript:void(0);\" data-href=\"https:\/\/victorcoil.tech\/?page_id=370\/#NonCredScan\" aria-label=\"Non-Credentialed Scan\">Non-Credentialed Scan<\/a><\/li>\n<li id=\"menu-item-583\" class=\"menu-item-583  menu-item menu-item-type-custom menu-item-object-custom\"><a href=\"javascript:void(0);\" data-href=\"https:\/\/victorcoil.tech\/?page_id=370\/#CredScan\" aria-label=\"Credentialed Scan\">Credentialed Scan<\/a><\/li>\n<li id=\"menu-item-584\" class=\"menu-item-584  menu-item menu-item-type-custom menu-item-object-custom\"><a href=\"javascript:void(0);\" data-href=\"https:\/\/victorcoil.tech\/?page_id=370\/#CredScanDep\" aria-label=\"Credentialed Scan With Deprecated App\">Credentialed Scan With Deprecated App<\/a><\/li>\n<li id=\"menu-item-585\" class=\"menu-item-585  menu-item menu-item-type-custom menu-item-object-custom\"><a href=\"javascript:void(0);\" data-href=\"https:\/\/victorcoil.tech\/?page_id=370\/#Remediations\" aria-label=\"Remediations\">Remediations<\/a><\/li>\n<\/ul><\/div>\n\t\t\t\t<div>\n\t\t\t\t\t<div class=\"gutenverse-nav-identity-panel\">\n\t\t\t\t\t\t<div class=\"gutenverse-nav-site-title\">\n\t\t\t\t\t\t\t<a aria-label=\"\" href=\"https:\/\/victorcoil.tech\" class=\"gutenverse-nav-logo\"><\/a>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t\t\t<button class=\"gutenverse-close-menu\" aria-label=\"\"><i aria-hidden=\"true\" class=\"fas fa-times\"><\/i><\/button>\n\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t<\/div>\n\t\t<\/div><\/div>\n\n\n\n<div class=\"wp-block-group has-zeever-bgsoft-background-color has-background is-layout-constrained wp-container-core-group-is-layout-22177b6a wp-block-group-is-layout-constrained\" style=\"padding-top:100px;padding-bottom:100px\">\n<div class=\"wp-block-columns is-layout-flex wp-container-core-columns-is-layout-28f84493 wp-block-columns-is-layout-flex\">\n<div class=\"wp-block-column is-layout-flow wp-block-column-is-layout-flow\">\n<div class=\"wp-block-group has-zeever-bgsoft-background-color has-background is-layout-flow wp-block-group-is-layout-flow\">\n<div class=\"wp-block-columns is-layout-flex wp-container-core-columns-is-layout-28f84493 wp-block-columns-is-layout-flex\">\n<div class=\"wp-block-column is-layout-flow wp-block-column-is-layout-flow\">\n<h2 class=\"wp-block-heading has-text-align-left is-style-lineseparator zeever-animate zeever-move-right zeever-delay-1 has-zeever-primary-color has-text-color has-heading-2-font-size\" id=\"SettingUp\">Setting up<\/h2>\n\n\n\n<h2 class=\"wp-block-heading has-text-align-left zeever-animate zeever-move-right zeever-delay-3 has-zeever-secondary-color has-text-color has-tiny-font-size\" style=\"font-style:normal;font-weight:500;text-transform:uppercase\">Downloading Nessus Essentials<\/h2>\n<\/div>\n\n\n\n<div class=\"wp-block-column is-layout-flow wp-block-column-is-layout-flow\"><\/div>\n<\/div>\n<\/div>\n\n\n\n<div class=\"wp-block-group zeever-animate zeever-move-up zeever-delay-3 has-zeever-bgsoft-background-color has-background is-layout-constrained wp-container-core-group-is-layout-32cee7d8 wp-block-group-is-layout-constrained\" style=\"padding-top:40px\">\n<div class=\"wp-block-columns is-layout-flex wp-container-core-columns-is-layout-28f84493 wp-block-columns-is-layout-flex\">\n<div class=\"wp-block-column is-style-customborderbottomhover zeever-animate zeever-move-up zeever-delay-3 has-black-background-color has-background is-layout-flow wp-block-column-is-layout-flow\" style=\"padding-top:50px;padding-right:40px;padding-bottom:50px;padding-left:40px\">\n<h2 class=\"wp-block-heading has-text-align-left has-zeever-primary-color has-text-color has-heading-3-font-size\" style=\"margin-top:20px;font-style:normal;font-weight:600\">Snapshot To Save Space Or Incase Of Errors<\/h2>\n\n\n\n<p class=\"has-text-align-left has-zeever-bodytext-color has-text-color\">This Lab builds on top of the Active Directory Lab. I recommend taking a snapshot of the Windows 10 Client before installing Nessus, in case you encounter any errors or want to save space. After completing this lab, restore it to the snapshot to free up space for future labs that will build on top of it.<\/p>\n<\/div>\n\n\n\n<div class=\"wp-block-column is-style-customborderbottomhover zeever-animate zeever-move-up zeever-delay-3 has-black-background-color has-background is-layout-flow wp-block-column-is-layout-flow\" style=\"padding-top:50px;padding-right:40px;padding-bottom:50px;padding-left:40px\">\n<h2 class=\"wp-block-heading has-text-align-left has-zeever-primary-color has-text-color has-heading-3-font-size\" style=\"margin-top:20px;font-style:normal;font-weight:600\">Lab Brief Summary<\/h2>\n\n\n\n<p class=\"has-text-align-left has-zeever-bodytext-color has-text-color\">The overall goal is to become familiar with the Nessus vulnerability scanner and to observe differences in the findings after each scan.<\/p>\n\n\n\n<p class=\"has-text-align-left has-zeever-bodytext-color has-text-color\">In this lab, we will perform a non-credentialed scan, followed by a credentialed scan, then a second credentialed scan after downloading deprecated software, and finally remediating any critical and high-ranking Vulnerabilities found.<\/p>\n<\/div>\n\n\n\n<div class=\"wp-block-column is-style-customborderbottomhover zeever-animate zeever-move-up zeever-delay-1 has-black-background-color has-background is-layout-flow wp-block-column-is-layout-flow\" style=\"padding-top:50px;padding-right:40px;padding-bottom:50px;padding-left:40px\">\n<h2 class=\"wp-block-heading has-text-align-left has-zeever-primary-color has-text-color has-heading-3-font-size\" style=\"margin-top:20px;font-style:normal;font-weight:600\">Nessus Registration and Download<\/h2>\n\n\n\n<p>Use this link inside of the Windows 10 Client.<\/p>\n\n\n\n<p><a href=\"https:\/\/www.tenable.com\/products\/nessus\/nessus-essentials\" target=\"_blank\" rel=\"noopener\" title=\"\">https:\/\/www.tenable.com\/products\/nessus\/nessus-essentials<\/a><\/p>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n\n\n\n<div class=\"wp-block-group has-zeever-bgsoft-background-color has-background is-layout-constrained wp-container-core-group-is-layout-ce943d7e wp-block-group-is-layout-constrained\" style=\"padding-top:var(--wp--preset--spacing--20);padding-bottom:var(--wp--preset--spacing--20)\">\n<p style=\"padding-top:var(--wp--preset--spacing--20);padding-bottom:var(--wp--preset--spacing--20)\">To make a snapshot, simply click on the \u201cTake\u201d button as shown below. Make sure that the Windows 10 Client is highlighted. If you ever need to use the snapshot, just click on \u201cSnapshot 1\u201d and the \u201cRestore\u201d button will be available to use.<\/p>\n\n\n\n<figure class=\"wp-block-image aligncenter size-full\"><img decoding=\"async\" width=\"848\" height=\"369\" src=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-snap.png\" alt=\"\" class=\"wp-image-373\" srcset=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-snap.png 848w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-snap-300x131.png 300w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-snap-768x334.png 768w\" sizes=\"(max-width: 848px) 100vw, 848px\" \/><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<p>Inside the Windows 10 Virtual Machine, I logged in with the \u201ca-vcoil\u201d account, the domain admin account we created in the Active Directory Lab.<\/p>\n\n\n\n<p>Once inside, navigate to the URL above to register and download Nessus Essentials. You\u2019ll have to enter your First and last name, as well as an email address. Once you plug those in, a button should appear to download Nessus. An email will also be sent to you with your activation code. There should also be a download button inside that email.<\/p>\n\n\n\n<p>The version and platform selected can be seen below. Click download and accept licenses.<\/p>\n\n\n\n<p><\/p>\n\n\n\n<figure class=\"wp-block-image aligncenter size-full\"><img decoding=\"async\" width=\"711\" height=\"610\" src=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-1.png\" alt=\"\" class=\"wp-image-376\" srcset=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-1.png 711w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-1-300x257.png 300w\" sizes=\"(max-width: 711px) 100vw, 711px\" \/><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<p>Once finished downloading, open the wizard and click Next. Accept the license agreements and click next.<\/p>\n\n\n\n<p>You can leave the destination folder at the default location, click Next, and install. On the User Account Control pop-up window, click Yes. Then just wait for the installation to finish. Once done, click \u201cFinish\u201d to complete the wizard.<\/p>\n\n\n\n<p>A webpage will appear. Click \u201cConnect via SSL,\u201d then \u201cAdvanced,\u201d and continue to localhost.<\/p>\n\n\n\n<p>If the window below appears, just click continue.<\/p>\n\n\n\n<p><\/p>\n\n\n\n<figure class=\"wp-block-image aligncenter size-full\"><img decoding=\"async\" width=\"576\" height=\"552\" src=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-sc-2.1.png\" alt=\"\" class=\"wp-image-378\" srcset=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-sc-2.1.png 576w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-sc-2.1-300x288.png 300w\" sizes=\"(max-width: 576px) 100vw, 576px\" \/><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<p>Once on the page shown below, click on Nessus Essentials and continue.<\/p>\n\n\n\n<p><\/p>\n\n\n\n<figure class=\"wp-block-image aligncenter size-full\"><img decoding=\"async\" width=\"605\" height=\"556\" src=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-2.png\" alt=\"\" class=\"wp-image-379\" srcset=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-2.png 605w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-2-300x276.png 300w\" sizes=\"(max-width: 605px) 100vw, 605px\" \/><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<p>Click Skip and enter the activation code sent to your email.<\/p>\n\n\n\n<p>Create a user account with a username and password that are easy to remember for this lab.<\/p>\n\n\n\n<p>Then just wait for Nessus to initialize.<\/p>\n\n\n\n<p><\/p>\n\n\n\n<figure class=\"wp-block-image aligncenter size-full\"><img decoding=\"async\" width=\"661\" height=\"493\" src=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-3.png\" alt=\"\" class=\"wp-image-381\" srcset=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-3.png 661w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-3-300x224.png 300w\" sizes=\"(max-width: 661px) 100vw, 661px\" \/><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<p>Once initialization is complete, you will be taken to a Nessus Essentials site that shows your scans.<\/p>\n\n\n\n<p>I recommend you make a quick note of the URL, as you will have to come back to it later on after some restarts.<\/p>\n\n\n\n<p><\/p>\n\n\n\n<figure class=\"wp-block-image aligncenter size-full\"><img decoding=\"async\" width=\"1002\" height=\"697\" src=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-4.png\" alt=\"\" class=\"wp-image-382\" srcset=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-4.png 1002w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-4-300x209.png 300w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-4-768x534.png 768w\" sizes=\"(max-width: 1002px) 100vw, 1002px\" \/><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<p>You may need to wait for the plugins to finish compiling before you can continue.<\/p>\n\n\n\n<p>While it&#8217;s compiling, we can collect the IP addresses of the systems we are going to scan. Simply open the terminal and type ipconfig.<\/p>\n\n\n\n<p><\/p>\n\n\n\n<figure class=\"wp-block-image aligncenter size-full\"><img decoding=\"async\" width=\"540\" height=\"274\" src=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-5.png\" alt=\"\" class=\"wp-image-383\" srcset=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-5.png 540w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-5-300x152.png 300w\" sizes=\"(max-width: 540px) 100vw, 540px\" \/><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<p><\/p>\n\n\n\n<p>As seen above, the IP of the Windows 10 client is 172.16.0.101, and the IP address of the Domain Controller is 172.16.0.1.<\/p>\n<\/div>\n<\/div>\n\n\n\n<div class=\"wp-block-group has-zeever-bgsoft-background-color has-background is-layout-constrained wp-container-core-group-is-layout-22177b6a wp-block-group-is-layout-constrained\" style=\"padding-top:100px;padding-bottom:100px\">\n<div class=\"wp-block-columns is-layout-flex wp-container-core-columns-is-layout-28f84493 wp-block-columns-is-layout-flex\">\n<div class=\"wp-block-column has-zeever-bgsoft-background-color has-background is-layout-flow wp-block-column-is-layout-flow\">\n<div class=\"wp-block-group has-zeever-bgsoft-background-color has-background is-layout-flow wp-block-group-is-layout-flow\">\n<div class=\"wp-block-columns is-layout-flex wp-container-core-columns-is-layout-28f84493 wp-block-columns-is-layout-flex\">\n<div class=\"wp-block-column is-layout-flow wp-block-column-is-layout-flow\">\n<h2 class=\"wp-block-heading has-text-align-left is-style-lineseparator zeever-animate zeever-move-right zeever-delay-1 has-zeever-primary-color has-text-color has-heading-2-font-size\" id=\"NonCredScan\">Non-Credentialed Scan<\/h2>\n\n\n\n<h2 class=\"wp-block-heading has-text-align-left zeever-animate zeever-move-right zeever-delay-3 has-zeever-secondary-color has-text-color has-tiny-font-size\" style=\"font-style:normal;font-weight:500;text-transform:uppercase\">Performing a non-credentialed Scan<\/h2>\n<\/div>\n\n\n\n<div class=\"wp-block-column is-layout-flow wp-block-column-is-layout-flow\"><\/div>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n\n\n\n<div class=\"wp-block-group has-zeever-bgsoft-background-color has-background is-layout-constrained wp-block-group-is-layout-constrained\">\n<p>Once everything has compiled, click \u201cNew Scan\u201d. You may have to scroll to the right a bit to see the button.<\/p>\n\n\n\n<p><\/p>\n\n\n\n<figure class=\"wp-block-image aligncenter size-full\"><img decoding=\"async\" width=\"995\" height=\"691\" src=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-6.png\" alt=\"\" class=\"wp-image-386\" srcset=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-6.png 995w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-6-300x208.png 300w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-6-768x533.png 768w\" sizes=\"(max-width: 995px) 100vw, 995px\" \/><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<p>Then click on &#8220;Basic Network Scan&#8221; as seen below.<\/p>\n\n\n\n<p><\/p>\n\n\n\n<figure class=\"wp-block-image aligncenter size-full\"><img decoding=\"async\" width=\"1000\" height=\"616\" src=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-7.png\" alt=\"\" class=\"wp-image-387\" srcset=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-7.png 1000w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-7-300x185.png 300w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-7-768x473.png 768w\" sizes=\"(max-width: 1000px) 100vw, 1000px\" \/><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<p>The first scan will be a non-credentialed basic scan. The image below shows the name I assigned to the scan and the target IP, which is the Windows 10 Client IP.<\/p>\n\n\n\n<p><\/p>\n\n\n\n<figure class=\"wp-block-image aligncenter size-full\"><img decoding=\"async\" width=\"1006\" height=\"615\" src=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-8.png\" alt=\"\" class=\"wp-image-388\" srcset=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-8.png 1006w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-8-300x183.png 300w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-8-768x470.png 768w\" sizes=\"(max-width: 1006px) 100vw, 1006px\" \/><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<p>After making those two changes, just click save at the very bottom. We will be returned to the \u201cMy Scans\u201d page, where a new scan will appear, as shown below.<\/p>\n\n\n\n<p><\/p>\n\n\n\n<figure class=\"wp-block-image aligncenter size-large\"><img decoding=\"async\" width=\"1024\" height=\"512\" src=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-9-1024x512.png\" alt=\"\" class=\"wp-image-389\" srcset=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-9-1024x512.png 1024w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-9-300x150.png 300w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-9-768x384.png 768w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-9.png 1060w\" sizes=\"(max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<p>To start the scan, simply click on the arrow at the right side of the scan.<\/p>\n\n\n\n<p><\/p>\n\n\n\n<figure class=\"wp-block-image aligncenter size-full\"><img decoding=\"async\" width=\"716\" height=\"262\" src=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-10.png\" alt=\"\" class=\"wp-image-390\" srcset=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-10.png 716w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-10-300x110.png 300w\" sizes=\"(max-width: 716px) 100vw, 716px\" \/><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<p>The green symbol shown below indicates that the scan is currently running.<\/p>\n\n\n\n<p><\/p>\n\n\n\n<figure class=\"wp-block-image aligncenter size-full\"><img decoding=\"async\" width=\"432\" height=\"314\" src=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-11.png\" alt=\"\" class=\"wp-image-391\" srcset=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-11.png 432w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-11-300x218.png 300w\" sizes=\"(max-width: 432px) 100vw, 432px\" \/><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<p>Once finished, the green symbol will be replaced with a checkmark.<\/p>\n\n\n\n<p><\/p>\n\n\n\n<figure class=\"wp-block-image aligncenter size-full\"><img decoding=\"async\" width=\"372\" height=\"181\" src=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-12.png\" alt=\"\" class=\"wp-image-392\" srcset=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-12.png 372w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-12-300x146.png 300w\" sizes=\"(max-width: 372px) 100vw, 372px\" \/><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<p>Once you see the checkmark, click on the scan to see the results. Below are my results for the Windows 10 non-credentialed scan.<\/p>\n\n\n\n<p><\/p>\n\n\n\n<figure class=\"wp-block-image aligncenter size-full\"><img decoding=\"async\" width=\"961\" height=\"660\" src=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-13.png\" alt=\"\" class=\"wp-image-393\" srcset=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-13.png 961w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-13-300x206.png 300w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-13-768x527.png 768w\" sizes=\"(max-width: 961px) 100vw, 961px\" \/><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<p>At the very top, you can click on the vulnerabilities tab and go through them. Vulnerabilities tagged with \u201cInfo\u201d usually just want you to be aware of them. If you click on the medium vulnerability, it will also provide solutions to mitigate or patch it.<\/p>\n<\/div>\n<\/div>\n\n\n\n<div class=\"wp-block-group has-zeever-bgsoft-background-color has-background is-layout-constrained wp-container-core-group-is-layout-22177b6a wp-block-group-is-layout-constrained\" style=\"padding-top:100px;padding-bottom:100px\">\n<div class=\"wp-block-columns is-layout-flex wp-container-core-columns-is-layout-28f84493 wp-block-columns-is-layout-flex\">\n<div class=\"wp-block-column is-layout-flow wp-block-column-is-layout-flow\">\n<div class=\"wp-block-group has-zeever-bgsoft-background-color has-background is-layout-flow wp-block-group-is-layout-flow\">\n<div class=\"wp-block-columns is-layout-flex wp-container-core-columns-is-layout-28f84493 wp-block-columns-is-layout-flex\">\n<div class=\"wp-block-column is-layout-flow wp-block-column-is-layout-flow\">\n<h2 class=\"wp-block-heading has-text-align-left is-style-lineseparator zeever-animate zeever-move-right zeever-delay-1 has-zeever-primary-color has-text-color has-heading-2-font-size\" id=\"CredScan\">Credentialed Scan<\/h2>\n\n\n\n<h2 class=\"wp-block-heading has-text-align-left zeever-animate zeever-move-right zeever-delay-3 has-zeever-secondary-color has-text-color has-tiny-font-size\" style=\"font-style:normal;font-weight:500;text-transform:uppercase\">Performing a Credentialed SCan<\/h2>\n<\/div>\n\n\n\n<div class=\"wp-block-column is-layout-flow wp-block-column-is-layout-flow\"><\/div>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n\n\n\n<div class=\"wp-block-group has-zeever-bgsoft-background-color has-background is-layout-constrained wp-block-group-is-layout-constrained\">\n<p>Now for a Credentialed scan. This will allow the scan to go deeper and find more vulnerabilities. Before diving in, we need to make sure that network discovery and file\/printer sharing are on.<\/p>\n\n\n\n<p>On the Windows 10 Client, go to the search bar and type in &#8220;share&#8221;. Click on the option shown below.<\/p>\n\n\n\n<p><\/p>\n\n\n\n<figure class=\"wp-block-image aligncenter size-full\"><img decoding=\"async\" width=\"783\" height=\"672\" src=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-share.png\" alt=\"\" class=\"wp-image-395\" srcset=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-share.png 783w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-share-300x257.png 300w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-share-768x659.png 768w\" sizes=\"(max-width: 783px) 100vw, 783px\" \/><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<p>Make sure that the two options shown below are turned on.<\/p>\n\n\n\n<p><\/p>\n\n\n\n<figure class=\"wp-block-image aligncenter size-full\"><img decoding=\"async\" width=\"772\" height=\"585\" src=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-share2.png\" alt=\"\" class=\"wp-image-396\" srcset=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-share2.png 772w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-share2-300x227.png 300w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-share2-768x582.png 768w\" sizes=\"(max-width: 772px) 100vw, 772px\" \/><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<p>After those changes. Let&#8217;s now perform a credentialed scan.<\/p>\n\n\n\n<p>On the top left, click on \u201cMy scans\u201d. Once back at the \u201cMy Scans\u201d page, click on the check box to the left of the scan name, and a new box will appear at the top. Click on more, then configure.<\/p>\n\n\n\n<p><\/p>\n\n\n\n<figure class=\"wp-block-image aligncenter size-full\"><img decoding=\"async\" width=\"775\" height=\"378\" src=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-14.png\" alt=\"\" class=\"wp-image-397\" srcset=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-14.png 775w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-14-300x146.png 300w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-14-768x375.png 768w\" sizes=\"(max-width: 775px) 100vw, 775px\" \/><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<p>Then click on Credentials at the top, then &#8220;Windows&#8221; as shown below. Fill in the Username and Password with the account you are using on the Windows 10 Client.<\/p>\n\n\n\n<p><\/p>\n\n\n\n<figure class=\"wp-block-image aligncenter size-full\"><img decoding=\"async\" width=\"964\" height=\"526\" src=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-15.png\" alt=\"\" class=\"wp-image-398\" srcset=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-15.png 964w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-15-300x164.png 300w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-15-768x419.png 768w\" sizes=\"(max-width: 964px) 100vw, 964px\" \/><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<p>After adding these credentials. Click &#8220;Save&#8221; at the bottom and go back to the \u201cMy Scans\u201d Page. Then run the scan one more time.<\/p>\n\n\n\n<p>Because this is a credentialed scan, we will see more vulnerabilities. Once this scan finished for me, there were 4 Critical vulnerabilities and 15 High Vulnerabilities. These vulnerabilities were mostly just Edge and other Windows Native Applications that just needed to be updated.<\/p>\n\n\n\n<p><\/p>\n\n\n\n<figure class=\"wp-block-image aligncenter size-large\"><img decoding=\"async\" width=\"1024\" height=\"646\" src=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-cred-1024x646.png\" alt=\"\" class=\"wp-image-400\" srcset=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-cred-1024x646.png 1024w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-cred-300x189.png 300w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-cred-768x484.png 768w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-cred.png 1137w\" sizes=\"(max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n<\/div>\n<\/div>\n\n\n\n<div class=\"wp-block-group has-zeever-bgsoft-background-color has-background is-layout-constrained wp-container-core-group-is-layout-22177b6a wp-block-group-is-layout-constrained\" style=\"padding-top:100px;padding-bottom:100px\">\n<div class=\"wp-block-columns is-layout-flex wp-container-core-columns-is-layout-28f84493 wp-block-columns-is-layout-flex\">\n<div class=\"wp-block-column is-layout-flow wp-block-column-is-layout-flow\">\n<div class=\"wp-block-group has-zeever-bgsoft-background-color has-background is-layout-flow wp-block-group-is-layout-flow\">\n<div class=\"wp-block-columns is-layout-flex wp-container-core-columns-is-layout-28f84493 wp-block-columns-is-layout-flex\">\n<div class=\"wp-block-column is-layout-flow wp-block-column-is-layout-flow\">\n<h2 class=\"wp-block-heading has-text-align-left is-style-lineseparator zeever-animate zeever-move-right zeever-delay-1 has-zeever-primary-color has-text-color has-heading-2-font-size\" id=\"CredScanDep\">Credentialed Scan with Deprecated Browser<\/h2>\n\n\n\n<h2 class=\"wp-block-heading has-text-align-left zeever-animate zeever-move-right zeever-delay-3 has-zeever-secondary-color has-text-color has-tiny-font-size\" style=\"font-style:normal;font-weight:500;text-transform:uppercase\">Performing a Credentialed Scan with deprecated Firefox<\/h2>\n<\/div>\n\n\n\n<div class=\"wp-block-column is-layout-flow wp-block-column-is-layout-flow\"><\/div>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n\n\n\n<div class=\"wp-block-group has-zeever-bgsoft-background-color has-background is-layout-constrained wp-block-group-is-layout-constrained\">\n<p>Let us explore and see what a single deprecated app on our systems can do. <\/p>\n\n\n\n<p>The deprecated app that I will use is Firefox. Google \u201cDownload old Firefox\u201d and click the first link shown below.<\/p>\n\n\n\n<p><\/p>\n\n\n\n<figure class=\"wp-block-image aligncenter size-full\"><img decoding=\"async\" width=\"789\" height=\"444\" src=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-16.png\" alt=\"\" class=\"wp-image-402\" srcset=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-16.png 789w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-16-300x169.png 300w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-16-768x432.png 768w\" sizes=\"(max-width: 789px) 100vw, 789px\" \/><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<p>Inside that link, scroll down until you see the section shown below, and click on the link with the red box around it.<\/p>\n\n\n\n<p><\/p>\n\n\n\n<figure class=\"wp-block-image aligncenter size-full\"><img decoding=\"async\" width=\"773\" height=\"397\" src=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-17.png\" alt=\"\" class=\"wp-image-403\" srcset=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-17.png 773w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-17-300x154.png 300w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-17-768x394.png 768w\" sizes=\"(max-width: 773px) 100vw, 773px\" \/><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<p>Then scroll down until you see 3.6.12<\/p>\n\n\n\n<p><\/p>\n\n\n\n<figure class=\"wp-block-image aligncenter size-full\"><img decoding=\"async\" width=\"487\" height=\"496\" src=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-18.png\" alt=\"\" class=\"wp-image-404\" srcset=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-18.png 487w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-18-295x300.png 295w\" sizes=\"(max-width: 487px) 100vw, 487px\" \/><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<p>Then click on &#8220;Win32&#8221;<\/p>\n\n\n\n<p><\/p>\n\n\n\n<figure class=\"wp-block-image aligncenter size-full\"><img decoding=\"async\" width=\"821\" height=\"477\" src=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-19.png\" alt=\"\" class=\"wp-image-405\" srcset=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-19.png 821w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-19-300x174.png 300w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-19-768x446.png 768w\" sizes=\"(max-width: 821px) 100vw, 821px\" \/><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<p>Then click on &#8220;en-US\/&#8221;<\/p>\n\n\n\n<p><\/p>\n\n\n\n<figure class=\"wp-block-image aligncenter size-full\"><img decoding=\"async\" width=\"602\" height=\"550\" src=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-20.png\" alt=\"\" class=\"wp-image-406\" srcset=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-20.png 602w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-20-300x274.png 300w\" sizes=\"(max-width: 602px) 100vw, 602px\" \/><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<p>Then select the top .exe file. Once downloaded, in the wizard, just keep all defaults and standards, keep clicking next, then install.<\/p>\n\n\n\n<p><\/p>\n\n\n\n<figure class=\"wp-block-image aligncenter size-full\"><img decoding=\"async\" width=\"735\" height=\"310\" src=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-21.png\" alt=\"\" class=\"wp-image-407\" srcset=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-21.png 735w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-SC-21-300x127.png 300w\" sizes=\"(max-width: 735px) 100vw, 735px\" \/><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<p>Once Firefox is done downloading and installed. Go back to Nessus and restart the credentialed scan.<\/p>\n\n\n\n<p>Once the scan is finished, we can see that many more critical and high vulnerabilities are now present.<\/p>\n\n\n\n<p><\/p>\n\n\n\n<figure class=\"wp-block-image aligncenter size-full\"><img decoding=\"async\" width=\"969\" height=\"697\" src=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-fire.png\" alt=\"\" class=\"wp-image-408\" srcset=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-fire.png 969w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-fire-300x216.png 300w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-fire-768x552.png 768w\" sizes=\"(max-width: 969px) 100vw, 969px\" \/><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<p>From 4 Critical, 15 High, 6 Medium, and 1-2 Low. To 82 Critical, 86 High, 22 Mediums, and a handful of lows. All of this is from just Firefox.<\/p>\n\n\n\n<p><\/p>\n\n\n\n<figure class=\"wp-block-image aligncenter size-full\"><img decoding=\"async\" width=\"960\" height=\"706\" src=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-fire2.png\" alt=\"\" class=\"wp-image-409\" srcset=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-fire2.png 960w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-fire2-300x221.png 300w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-fire2-768x565.png 768w\" sizes=\"(max-width: 960px) 100vw, 960px\" \/><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<p>The remediation section tells us that we can upgrade to remediate the vulnerabilities. But we can also just delete Firefox. We can usually approach many applications this way. If you don\u2019t use it, get rid of it. This helps reduce the attack surface.<\/p>\n\n\n\n<p>Sometimes, there will be situations where you can\u2019t just get rid of it and will have to research on available patching to remediate the vulnerability. Even worse, there are times when you can\u2019t patch, as it can disrupt business operations. The call will have to be made to just accept the risk.<\/p>\n\n\n\n<p><\/p>\n<\/div>\n<\/div>\n\n\n\n<div class=\"wp-block-group has-zeever-bgsoft-background-color has-background is-layout-constrained wp-container-core-group-is-layout-22177b6a wp-block-group-is-layout-constrained\" style=\"padding-top:100px;padding-bottom:100px\">\n<div class=\"wp-block-columns is-layout-flex wp-container-core-columns-is-layout-28f84493 wp-block-columns-is-layout-flex\">\n<div class=\"wp-block-column is-layout-flow wp-block-column-is-layout-flow\">\n<div class=\"wp-block-group is-layout-flow wp-block-group-is-layout-flow\">\n<div class=\"wp-block-columns has-zeever-bgsoft-background-color has-background is-layout-flex wp-container-core-columns-is-layout-28f84493 wp-block-columns-is-layout-flex\">\n<div class=\"wp-block-column is-layout-flow wp-block-column-is-layout-flow\">\n<h2 class=\"wp-block-heading has-text-align-left is-style-lineseparator zeever-animate zeever-move-right zeever-delay-1 has-zeever-primary-color has-text-color has-heading-2-font-size\" id=\"Remediations\">Remediations<\/h2>\n\n\n\n<h2 class=\"wp-block-heading has-text-align-left zeever-animate zeever-move-right zeever-delay-3 has-zeever-secondary-color has-text-color has-tiny-font-size\" style=\"font-style:normal;font-weight:500;text-transform:uppercase\">Remediating the Vulnerabilities<\/h2>\n<\/div>\n\n\n\n<div class=\"wp-block-column is-layout-flow wp-block-column-is-layout-flow\"><\/div>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n\n\n\n<div class=\"wp-block-group has-zeever-bgsoft-background-color has-background is-layout-constrained wp-block-group-is-layout-constrained\">\n<p>Let us do the obvious here and delete the deprecated Firefox. This will eliminate most vulnerabilities.<\/p>\n\n\n\n<p>In the Windows 10 Search Bar, search for &#8220;appwiz.cpl&#8221;<\/p>\n\n\n\n<p><\/p>\n\n\n\n<figure class=\"wp-block-image aligncenter size-full\"><img decoding=\"async\" width=\"758\" height=\"670\" src=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-fire4.png\" alt=\"\" class=\"wp-image-419\" srcset=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-fire4.png 758w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-fire4-300x265.png 300w\" sizes=\"(max-width: 758px) 100vw, 758px\" \/><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<p>This will open the Control Panel, Programs and Features. Just right-click on Firefox and uninstall.<\/p>\n\n\n\n<p><\/p>\n\n\n\n<figure class=\"wp-block-image aligncenter size-full\"><img decoding=\"async\" width=\"764\" height=\"428\" src=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-fire5.png\" alt=\"\" class=\"wp-image-420\" srcset=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-fire5.png 764w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-fire5-300x168.png 300w\" sizes=\"(max-width: 764px) 100vw, 764px\" \/><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<p>In the wizard, click Uninstall and Next.<\/p>\n\n\n\n<p>After getting rid of that, let\u2019s run a Windows update. You can do this by clicking the start button at the bottom left of the screen, then clicking settings (the little widget), then \u201cUpdate &amp; Security\u201d.<\/p>\n\n\n\n<p>As shown below, there are a handful of updates. Just click on Install now. Once finished, click restart PC.<\/p>\n\n\n\n<p><\/p>\n\n\n\n<figure class=\"wp-block-image aligncenter size-full\"><img decoding=\"async\" width=\"796\" height=\"574\" src=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-remediate.png\" alt=\"\" class=\"wp-image-421\" srcset=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-remediate.png 796w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-remediate-300x216.png 300w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-remediate-768x554.png 768w\" sizes=\"(max-width: 796px) 100vw, 796px\" \/><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<p>After resetting and seeing that there is nothing else (Make sure you click on &#8220;Check for updates&#8221;. You may have to do it a couple of times.)<\/p>\n\n\n\n<p><\/p>\n\n\n\n<figure class=\"wp-block-image aligncenter size-full\"><img decoding=\"async\" width=\"780\" height=\"243\" src=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-updated.png\" alt=\"\" class=\"wp-image-422\" srcset=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-updated.png 780w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-updated-300x93.png 300w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-updated-768x239.png 768w\" sizes=\"(max-width: 780px) 100vw, 780px\" \/><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<p>After that, Open up the Microsoft Store. There will also be app updates available here.<\/p>\n\n\n\n<p><\/p>\n\n\n\n<figure class=\"wp-block-image aligncenter size-full\"><img decoding=\"async\" width=\"1021\" height=\"792\" src=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-win-up-2.png\" alt=\"\" class=\"wp-image-423\" srcset=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-win-up-2.png 1021w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-win-up-2-300x233.png 300w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-win-up-2-768x596.png 768w\" sizes=\"(max-width: 1021px) 100vw, 1021px\" \/><\/figure>\n\n\n\n<figure class=\"wp-block-image aligncenter size-full\"><img decoding=\"async\" width=\"1018\" height=\"788\" src=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-win-up.png\" alt=\"\" class=\"wp-image-425\" srcset=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-win-up.png 1018w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-win-up-300x232.png 300w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-win-up-768x594.png 768w\" sizes=\"(max-width: 1018px) 100vw, 1018px\" \/><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<p>The whole layout of the store may change a bit after the update. The second layout, this is where I was able to find the updates.<\/p>\n\n\n\n<p><\/p>\n\n\n\n<figure class=\"wp-block-image aligncenter size-full\"><img decoding=\"async\" width=\"1021\" height=\"792\" src=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-win-up-3-1.png\" alt=\"\" class=\"wp-image-426\" srcset=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-win-up-3-1.png 1021w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-win-up-3-1-300x233.png 300w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-win-up-3-1-768x596.png 768w\" sizes=\"(max-width: 1021px) 100vw, 1021px\" \/><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<p>After performing these updates, rescan the system.<\/p>\n\n\n\n<p>As seen below, the critical and Highs have dropped dramatically.<\/p>\n\n\n\n<p>With 1 Critical, 1 high, 2 medium, and 181 info.<\/p>\n\n\n\n<p><\/p>\n\n\n\n<figure class=\"wp-block-image aligncenter size-full\"><img decoding=\"async\" width=\"937\" height=\"668\" src=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-lastScan.png\" alt=\"\" class=\"wp-image-427\" srcset=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-lastScan.png 937w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-lastScan-300x214.png 300w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-lastScan-768x548.png 768w\" sizes=\"(max-width: 937px) 100vw, 937px\" \/><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<p>The critical point shown above is that Internet Explorer isn\u2019t turned off, and some of its features can be used against us. We have to disable and create a specific registry key. Let\u2019s continue remediating.<\/p>\n\n\n\n<p>I clicked on the Windows key and the R key at the same time. In the little pop-up window, I searched for the executable shown below.<\/p>\n\n\n\n<p><\/p>\n\n\n\n<figure class=\"wp-block-image aligncenter size-full\"><img decoding=\"async\" width=\"396\" height=\"204\" src=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-end-remediation.png\" alt=\"\" class=\"wp-image-428\" srcset=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-end-remediation.png 396w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-end-remediation-300x155.png 300w\" sizes=\"(max-width: 396px) 100vw, 396px\" \/><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<p>Then unchecked Internet Explorer 11 and clicked Yes. After this, you will have to do a quick restart.<\/p>\n\n\n\n<p><\/p>\n\n\n\n<figure class=\"wp-block-image aligncenter size-full\"><img decoding=\"async\" width=\"563\" height=\"374\" src=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-end-remediation-2.png\" alt=\"\" class=\"wp-image-429\" srcset=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-end-remediation-2.png 563w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-end-remediation-2-300x199.png 300w\" sizes=\"(max-width: 563px) 100vw, 563px\" \/><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<p>Now for registry keys. Click on the Windows Key and R key, then search for \u201cRegedit\u201d.<\/p>\n\n\n\n<p>Navigate to \u201cHKEY_LOCAL_MACHIENS\\SOFTWARE\\Policies\\Microsoft\\Policies\\Microsoft\u201d. <\/p>\n\n\n\n<p>Right-click on Microsoft and create a new key. Name this new key \u201cInternet Explorer\u201d.<\/p>\n\n\n\n<p>Then, create a subkey by right-clicking \u201cInternet Explorer\u201d and selecting \u201cKey\u201d. Name the new key \u201cMain\u201d. Then right-click \u201cMain\u201d and make a DWORD (32-bit). Name this one \u201cNotifyDisableIEOptions\u201d. Right-click on the newly created DWORD, and click \u201cModify\u201d. Set the value data to 1.<\/p>\n\n\n\n<p>These changes will handle the Critical Vulnerability.<\/p>\n\n\n\n<p><\/p>\n\n\n\n<p>Nessus tells us that the High is our vulnerability to CVE-2013-3900. Their solution requires us to add \u201c\\wintrust\\config\\EnableCertPaddingCheck\u201d.<\/p>\n\n\n\n<p>Inside of Regedit, Move over to \u201cHKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Crytography\u201d<\/p>\n\n\n\n<p>Right-click on Cryptography. Hover over New, then click on \u201cKey\u201d. Name the first key as \u201cWintrust\u201d. Then right-click on Wintrust and create another key. Name this subkey \u201cConfig\u201d.<\/p>\n\n\n\n<p><\/p>\n\n\n\n<figure class=\"wp-block-image aligncenter size-full\"><img decoding=\"async\" width=\"469\" height=\"318\" src=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-end-remediation-3.png\" alt=\"\" class=\"wp-image-431\" srcset=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-end-remediation-3.png 469w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-end-remediation-3-300x203.png 300w\" sizes=\"(max-width: 469px) 100vw, 469px\" \/><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<p>Right-click on \u201cconfig\u201d and instead of making a new key, click on \u201cDWORD (32-bit)\u201d. Name this \u201cEnableCertPaddingCheck\u201d. Once made, double-click it and as shown below, put 1 in the value data field.<\/p>\n\n\n\n<p><\/p>\n\n\n\n<figure class=\"wp-block-image aligncenter size-full\"><img decoding=\"async\" width=\"327\" height=\"191\" src=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-end-remediation-4.png\" alt=\"\" class=\"wp-image-432\" srcset=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-end-remediation-4.png 327w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-end-remediation-4-300x175.png 300w\" sizes=\"(max-width: 327px) 100vw, 327px\" \/><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<p>Then move over to \u201cHKEY_LOCAL_MACHINE\\SOFTWARE\\WOW6432Node\\Microsoft\\Cryptography\u201d. Right-click on Cryptography and create a new Key with the Name \u201cWintrust\u201d and then another subkey with the name Config. Then right-click on Config and do a DWORD (32-bit), name it EnableCertPaddingCheck. Then right-click on it and set the value to 1.<\/p>\n\n\n\n<p>After making these changes and running one more scan, there were only 2 medium vulnerabilities left, with 185 Info-level vulnerabilities.<\/p>\n\n\n\n<p><\/p>\n\n\n\n<figure class=\"wp-block-image aligncenter size-full\"><img decoding=\"async\" width=\"949\" height=\"584\" src=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-official-end.png\" alt=\"\" class=\"wp-image-435\" srcset=\"https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-official-end.png 949w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-official-end-300x185.png 300w, https:\/\/victorcoil.tech\/wp-content\/uploads\/2023\/07\/vuln-official-end-768x473.png 768w\" sizes=\"(max-width: 949px) 100vw, 949px\" \/><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<p>We can simply accept the leftover vulnerabilities. We successfully removed all critical, high, and a handful of medium and low vulnerabilities. <\/p>\n\n\n\n<p>This concludes the Vulnerability Management Lab.<\/p>\n<\/div>\n<\/div>\n","protected":false},"excerpt":{"rendered":"<p>Setting up Downloading Nessus Essentials Snapshot To Save Space Or Incase Of Errors This Lab builds on top of the Active Directory Lab. I recommend taking a snapshot of the Windows 10 Client before installing Nessus, in case you encounter any errors or want to save space. After completing this lab, restore it to the snapshot to free up space for future labs that will build on top of it. Lab Brief Summary The overall goal is to become familiar with the Nessus vulnerability scanner and to observe differences in the findings after each scan. In this lab, we will<\/p>\n","protected":false},"author":1,"featured_media":0,"parent":0,"menu_order":0,"comment_status":"closed","ping_status":"closed","template":"","meta":{"om_disable_all_campaigns":false,"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"_uf_show_specific_survey":0,"_uf_disable_surveys":false,"footnotes":""},"class_list":["post-370","page","type-page","status-publish","hentry"],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/victorcoil.tech\/index.php?rest_route=\/wp\/v2\/pages\/370","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/victorcoil.tech\/index.php?rest_route=\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/victorcoil.tech\/index.php?rest_route=\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/victorcoil.tech\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/victorcoil.tech\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=370"}],"version-history":[{"count":35,"href":"https:\/\/victorcoil.tech\/index.php?rest_route=\/wp\/v2\/pages\/370\/revisions"}],"predecessor-version":[{"id":1141,"href":"https:\/\/victorcoil.tech\/index.php?rest_route=\/wp\/v2\/pages\/370\/revisions\/1141"}],"wp:attachment":[{"href":"https:\/\/victorcoil.tech\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=370"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}