Skip to content

Vulnerability Scanning

Basic workflow for vuln scanning is as follows: - Host discovery - Port Scanning - Operating System, service, and version detection - Matching results to vuln database Results from a vulnerability Scan can be incomplete or contain wrongfully detected vulnerabilities Understand how any automated tool works, so we know how to best supplement it

Vulnerability Scanning with NMAP

on Kali nse scripts are found under /user/share/nmap/scripts We can find additional NSE scripts on the web. Search \ nse to look for potential scripts if a script is found, save it off under /usr/share/nmap/scripts and follow the nse script naming convention. Then run sudo nmap --script-updatedb to update the script database --> the script will not run unless we do this step