Analyzing Nessus scan reports requires a combination of technical expertise and organizational knowledge. In this video, learn how to analyze the results of a vulnerability scan.
- [Instructor] As a cybersecurity security analyst, … you'll probably spend a good amount of your time … analyzing reports from vulnerability scans. … One of your primary responsibilities … will be sorting through the results of these scans … and presenting information from them … to a variety of audiences. … You'll need to provide engineers, developers … and administrators with the technical details … that they need to correct issues. … You'll need to explain trends … and high-level risk ratings to business leaders … and you'll need to present security management … with a picture of how well the organization … is doing at managing risk. … As you interpret the results of any scan report, … you should first focus on five factors … that we've already discussed, … the severity of the vulnerability, … the criticality of the systems affected, … the sensitivity of the information involved, … the difficulty of remediation … and the exposure of the system … with the vulnerability. … These five factors will help you triage …
Author
Mike Chapple
Updated
10/3/2019Released
3/8/2019- Setting up Nessus on Linux and Windows
- Identifying scan targets and frequency
- Configuring vulnerability scans
- Reporting scan results
- Overcoming barriers to vulnerability remediation
Skill Level Intermediate
Duration
Views
-
Introduction
-
1. Setting Up Nessus
-
Nessus editions1m 32s
-
-
2. Creating a Vulnerability Management Program
-
Identify scan targets5m 50s
-
Scan frequency5m 7s
-
3. Configuring and Executing Vulnerability Scans
-
Scan configuration6m 16s
-
Scan perspective5m 3s
-
Scanner maintenance3m 19s
-
Vulnerability Scanning Tools1m 37s
-
-
4. Remediating Vulnerabilities
-
Report scan results4m 43s
-
Prioritize remediation3m 46s
-
-
5. Analyzing Scan Results
-
SCAP2m 34s
-
CVSS2m 48s
-
Interpreting CVSS scores3m 22s
-
Analyzing scan reports3m 59s
-
Correlating scan results2m 33s
-
-
6. Common Vulnerabilities
-
Server vulnerabilities5m 18s
-
Endpoint vulnerabilities1m 44s
-
Network vulnerabilities4m 29s
-
Industrial control systems4m 36s
-
Preventing SQL injection5m 29s
-
-
Conclusion
-
Next steps30s
-
Take notes with your new membership!
Type in the entry box, then click Enter to save your note.
Press on any video thumbnail to jump immediately to the timecode shown.
Notes are saved with you account but can also be exported as plain text, MS Word, PDF, Google Doc, or Evernote.
Share this video
Embed this video
Video: Analyzing scan reports