SECTION 1: Hands-On Demonstration
Part 1. Audit a Windows System using Policy Analyzer
- showing the MaximumPasswordAge settings in the Policy Viewer and paste it into the Lab Report file.
- showing the updated MaximumPasswordAge setting in the Policy Viewer and paste it into the Lab Report file.
Part 2. Audit a Windows System using OpenVAS
8. Make a screen capture showing the Tasks list with the completed scan of 172.30.0.15 and paste it into the Lab Report file.
11. Make a screen capture showing the vulnerabilities from the completed scan of 172.30.0.15
and paste it into the Lab Report file.
13. In the Lab Report file, describe remediation steps for the vulnerability you selected.
SECTION 2: Applied Learning
Part 1. Audit a Windows System using MBSA
11. Make a screen capture showing the MBSA scan results and paste it into your Lab Report file.
16. In the Lab Report file, describe the security issue for this missing update.
Part 2. Audit a Windows System using OpenVAS
7. Make a screen capture showing the vulnerabilities from the completed scan of 172.30.0.17
and paste it into the Lab Report file.
17. Make a screen capture showing the active Windows Firewall and paste it into the Lab Report file.
21. Make a screen capture showing the vulnerabilities from the latest completed scan of 172.30.0.15 (without the DCE/RPC vulnerability listed) and paste it into the Lab Report file.
SECTION 3: Challenge Questions
Tools and Commands
Challenge Exercise
Use Windows Update on TargetWindows03 to download and install one of the Windows Server 2012 R2 security updates identified by MBSA. Make a screen capture showing the update confirmation on TargetWindows03.