Assignments of day 2 in week #4

Vulnerability analysis: Network scanner

1. Use your student ID as the one-time password to login the NTEC Nessus Network Scanner

2. Download the latest window nessus client (winnessus-x.x.x.zip) to your PC from http://www.nessus.org/win32.html and install it.

3. Start up the nessus.exe at your PC. It will take a minute to generate your key pair when first to use. Then enter the following information in the nessus window accordingly. Note. You can only login the NTEC scanner server from CUHK hosts. If you are using other broadband networks, please login the CSC VPN service first.

   Nessusd Host:	scanner.hkntec.net
   Port:	8241
   Login:	[your_login_name]

   

   After you click "Log in" button, you will be prompted for the one-time password. After your login, you can access the Plugins menus. Click the "Disable all" button first to disable all plugin scan. Then select the "FTP" item with "Anonymous FTP entabled" and "wu-ftpd SITE EXEC vulnerability"

   

4. Go to Trarget selection menu, enter the "ntec81" and click "start the scan" button to have the network scan.

5. Post your scan result on your web page

6. Temporary install some un-patched programs, that you had done in week #2 and week #3, at your host. Then use the network scanner to scan your host with enabling all plug-ins. Post your finding on your web page.

7. Removing all un-patched programs and restore the original ones.

References:

• Read the man page of the above commands
• Nessus Scanner

• Common Vulnerabilities and Exposures