Lesson 13

Date: 6/27/2018

Linux Network Security

Linux System Administration

Vulnerability scanning
Exercise

In the browser on your desktop, navigate to Nessus and click onto "Try for Free".

Create an account for yourself on the Nessus page.

Download the Nessus deb package for your Ubuntu distribution, 64-bit, from the download page, for example Nessus-7.1.2-ubuntu1110_amd64.deb.

Install the package and start Nessus service:

dpkg -i Nessus-7.1.2-ubuntu1110_amd64.deb
/etc/init.d/nessusd start

In the browser, login to the Nessus admin page, https://localhost:8834, with the credentials you've created during the registration stage.

Wait until the installation finishes, then use "Advanced scan" to scan the ports on smbhost (use the IP address) for vulnerabilities.

Start Win7 VM, and scan the ports on Win7 for vulnerabilities from Nessus.

Exercise: SSH brute force attack
Exercise: Log check for login attempts
Exercise: TCP wrappers
Exercise: denyhosts
Stack overflow
Exercise with Stack overflow
Package upgrades and verification
Open Ports List exercise
Closing Ports
IP filtering firewalls (iptables)
Building iptables rules
Simple iptables script
NAT table
NAT script
Exercises with iptables
Port scanning exercises
Vulnerability scanning exercises
References
Take me to the Course Website