• Online, Self-Paced
Course Description

Organizations, both big and small, suffer from countless vulnerability issues. In this course, Performing Network Vulnerability Scanning with Nexpose, you will learn the foundational knowledge of using the vulnerability scanning tool, Nexpose, to assess the risk and the attack surface of a machine and/or network. First, you will learn how to prepare your toolkit and setup your sample targets to perfect your skills with your tool. Next, you will discover how to setup, configure, and customize your tool so that the deployment of it is in an effective manner and you can accurately assess the attack surface and risk of the target. Finally, you will explore how to tune and customize the Nexpose scanner to assess and evaluate web applications that are running on a web server. When youÕre finished with this course, you will have the skills and knowledge of using the Nexpose Vulnerability Assessment tool to assess the weaknesses and evaluate the risk of the targets and networks to the organization's overall risk needed to effectively identify potential attack vectors from an adversary, and take the required steps to mitigate the risk of these methods of attack.

Learning Objectives

  • Preparing Your Toolkit
  • Configuration and Setup of Nexpose
  • Exploring Scan Policy Templates
  • Web Application Scanning with Nexpose

Framework Connections

The materials within this course focus on the Knowledge Skills and Abilities (KSAs) identified within the Specialty Areas listed below. Click to view Specialty Area details within the interactive National Cybersecurity Workforce Framework.

Feedback

If you would like to provide feedback for this course, please e-mail the NICCS SO at NICCS@hq.dhs.gov.