Understanding the basic tools needed to perform a vulnerability analysis allows a better understanding of the technical capabilities and limitations associated with scanning technologies.
View the “6-2 Vulnerability Scanning Lab” video, located in Class Resources.
Part 1:
Complete the following:
- Perform a vulnerability analysis against the Kioptrix 3 VM using the techniques and programs demonstrated in the video.
- Provide screenshots and information related to vulnerabilities found on the Kioptrix 3 VM website and the Kioptrix 3 VM website page source.
- Provide screenshots of the programs/commands you used to discover vulnerabilities on the Kioptrix 3 VM. Be sure to include, at minimum, the Nmap, dirb, nikto, searchsploit, and OWASP ZAP execution and output.
Part 2:
Write a 250-to 500-word summary and address the following:
- Evaluate the effectiveness of applications if they were directly related to a financial institution, government entity, or an ecommerce website in terms of cybersecurity for preventing crime and abuse.
- Describe at least five vulnerabilities discovered during your analysis of the Kioptrix 3 VM.
- Identify at least two different potential web extensions that could provide information to an attacker and describe why it is dangerous.
- Explain a defensive strategy needed to offset the five vulnerabilities focused on above.
Place all screenshots in a Microsoft Word document and submit it to the assignment. When submitting screenshots as part of your assignment, you must always include a full image of your desktop window; this includes the date and time in the lower right-hand corner of the Windows desktop or the upper-right corner of the macOS desktop.
While APA style is not required for the body of this assignment, solid academic writing is expected, and documentation of sources should be presented using APA formatting guidelines, which can be found in the APA Style Guide, located in the Student Success Center.
This assignment uses a rubric. Review the rubric prior to beginning the assignment to become familiar with the expectations for successful completion.
You are required to submit this assignment to LopesWrite. A link to the LopesWrite technical support articles is located Class Resources if you need assistance.https://www.youtube.com/embed/kOssew395k8
Requirements: 250-500 words