W8

1. Performing a Security Assessment

A security assessment of a network infrastructure provides an organization with a way to identify vulnerabilities before they become a security threat.

1. Use your GCU Virtualization Solution (VM) environment as your security assessment platform.

2. Using Nmap, perform a network scan of your virtual network that you created in Topic 4 (a minimum of two targets will be added). Ensure that you fingerprint both the OS and services for each of the target

3. Using OpenVAS, perform a vulnerability scan on both of the targets in your virtual network. Recommend to your organization methods to eliminate the vulnerabilities.

4. As you go, take instructional notes and screenshots that will help to reproduce your process using the "Report Template," located in the Class Resources.

In a 200- to 250-word essay, explain the difference between vulnerability scanning and penetration testing.

2. Wireshark

Organizations are becoming very proactive in their detection of network intrusions. Many are investing in Security Operations Centers (SOCs). Network security analysis is now an essential skill in the security practitioner’s arsenal.

1. Using your GCU Virtualization Solution (VM) environment, run Wireshark while you perform a second network and vulnerability scan of your virtual network.

2. Perform this assessment the same way as the previous assignment.

In a 1 to 2-page report, explain:

1. The data collected by Wireshark. Can you identify the scans that you performed?

2. How can this information be used to track an attacker in your network during a forensics investigation?

3. Provide screenshots of the data for reference within the report.