Documente Academic
Documente Profesional
Documente Cultură
Lab Guide
Table of Content.......................................................................................................................................................2
Lab 1: Créez un Template de scan personnalisé ...............................................................................................4
Lab 2: Création de sites statiques / Lancement d’un scan ................................................................................5
Lab 3: Asset Groups ................................................................................................................................................6
Tâche 1: Créer un groupe d'actifs statique ......................................................................................................6
Tâche 2: Créer un groupe d'actifs dynamiques...............................................................................................6
Lab 4: Real Context .................................................................................................................................................7
Tâche 1: Tag an Individual Asset ......................................................................................................................7
Tâche 2: Dynamic Asset Tagging .....................................................................................................................7
Tâche 3: Tag Assets in a Site ............................................................................................................................7
Tâche 4: Tag Assets dans un groupe d'actifs dynamiques ...........................................................................8
Tâche 5: Tag Assets dans un groupe d'actifs statiques ................................................................................8
Lab 5: Automated Actions ......................................................................................................................................9
Lab 6: Créer / Gérer des utilisateurs .................................................................................................................. 10
Tâche 1: Mettre à jour la politique de mot de passe ................................................................................... 10
Tâche 2: Créer un nouvel utilisateur .............................................................................................................. 10
Lab 7: Pairing the Console to an Engine ........................................................................................................... 11
Tâche 1: Pair the engine.................................................................................................................................. 11
Tâche 2: Enable the Engine ............................................................................................................................ 11
Tâche 3: Verify Pairing Success..................................................................................................................... 11
Lab 8: Credential Management .......................................................................................................................... 12
Tâche 1: Shared Credentials - SSH Credentials ......................................................................................... 12
Tâche 2: Site Specific Credentials - Windows Credentials ........................................................................ 12
Lab 9: Exception Handling .................................................................................................................................. 13
Tâche 1: Submit an Exception ........................................................................................................................ 13
Tâche 2: Approve/Reject an Exception Submission ................................................................................... 13
Lab 10: Risk Scoring ............................................................................................................................................ 14
Tâche 1: Ajustement du score de risque ....................................................................................................... 14
Tâche 2: Modifier la stratégie de risque ........................................................................................................ 14
Lab 11: Manage Reports ..................................................................................................................................... 15
Tâche 1: Create a Report Template (Document) ........................................................................................ 15
Tâche 2: Create a Report Template (CSV) .................................................................................................. 15
Tâche 3: Create a Report Document Report ................................................................................................ 16
Tâche 4: Create a CSV Report ....................................................................................................................... 16
Lab 1: Créez un Template de scan personnalisé
1. Dans la console, sélectionnez Home dans le menu de gauche pour accéder au tableau de bord
Nexpose.
2. Dans la section en Haut, cliquez sur le bouton Create puis Site.
3. Configurez le site avec les paramètres suivants: Remarque: En cliquant sur les sections
individuelles en haut (Info & Security, Assets, etc.), vous naviguez dans les différentes sections
de configuration. Chaque section peut avoir plusieurs pages de configuration. Vous pouvez
naviguer en utilisant la navigation supérieure
a) Info & Security
i. Nommez le site « US Central Site X ».
ii. Autoriser l'accès à Sally à ce site.
b) Assets
a. Dans la section Include, entrez le sous-réseau du lab 192.168.5.0/24'.
b. Ajoutez '192.168.5.254’ à la liste d’Exculsion.
c) Templates
a. Sélectionnez le template Full Audit without Web Spider.
d) Engines
a. Sélectionnez local scan engine.
e) Alerts
a. Créez une alerte email à 'userX@rapid7labs.com'.
f) Schedule
a. Cliquez sur Create a Schedule.
b. Entrez "Start date and time" à 21h UTC le 10 du mois prochain
c. Réglez la durée de scan maximale à 3 heures et 30 minutes.
d. Réglez scan répété tous les mois le 10
e. Définissez « If a scan reaches the maximum duration » à « continue the scan where
it previously stopped »
f. Cliquez sur Save pour confirmer votre nouvel horaire.
g) Blackout
a. Cliquez sur Create Blackout dans le menu de gauche.
b. Activer un blackout qui commence le vendredi prochain de 1-4 am UTC, et les
répétitions se poursuivent tous les vendredis.
c. Cliquez sur Save pour créer le nouveau blackout.
4. Cliquez sur Save and Scan en haut à droite pour enregistrer la configuration de votre site et
commencer une analyse.
5. Revenez au tableau de bord Nexpose en cliquant sur le lien Home dans le menu de gauche.
6. Surveiller l'état sous le volet 'Current Scans for All Sites'. Cela devrait se rafraîchir
automatiquement toutes les quelques secondes.
Lab 3: Asset Groups
1. What permissions listed allow a user to view vulnerability data for a site named ‘HQ’? (Select all that
apply)
a. A role that allows View Site Asset Data and access to the ‘HQ’ site
b. A role that allows View Group Asset Data and access to the ‘HQ’ site
c. Everyone can see vulnerability findings if they have access to the site ‘HQ’
d. Global Administrator access
e. None of the above
3. When sending your diagnostic information to support.rapid7.com you are doing it over a TLS-
encrypted session over port 443.
a. True
b. False
6. If the error message "Not enough memory to complete scan" occurs during a scan, which of the
following actions should be considered?
a. Run fewer simultaneous scans
b. Lower the number of scan threads allocated by your scan template
c. Power off the console
d. Both A and B
e. Both A and C
7. What is the minimum system RAM requirement (in GB) for Nexpose console installations?
a. 32 GB
b. 4 GB
c. 16 GB
d. 12 GB
e. 8 GB
8. Which of the following report data export formats can Nexpose output?
a. CSV Export
b. XML Export
c. Database Export
d. CyberScope XML Export
e. All of the above
9. You have configured a scan for a class C network with the asset scope of 192.168.1.0/24, used the
built in scan template named ‘Full Audit’, and enabled syslog alerts to your SIEM at 10.1.4.2. You have
scheduled the scan to run monthly. Your scan has completed as scheduled, but your Policy Evaluation
report has no data. What is the likely cause?
a. The Full Audit template does not include Policy checks.
b. The Syslog alerts are not being delivered correctly.
c. The scan has likely failed.
d. You have input the scope incorrectly.
10. What URL would you use if trying to reach a remote Nexpose install on another server?
a. http://servername/nsc:3780
b. https://localhost:3780
c. https://serverIPaddress:3780
d. https://serverIPaddress:40814
11. You have a single dual-processor Nexpose console with 8GB of RAM. You currently have no
additional scan engines installed. You are attempting to scan 12 class C networks. Your scans seem to
be failing and you are seeing ‘out of memory’ errors entries in the console log. What is the BEST
course action that you should take to resolve the issue?
a. Increase the console's RAM.
b. Deploy Remote Scan Engines and offload scans from the console.
c. Increase available memory by stopping unnecessary services.
d. Spread your scans over a longer period.
12. Specify the devices to which you can apply custom tags: (Select all that apply)
a. An individual asset
b. Asset groups
c. Sites
d. Reports
e. Scan templates
13. Performing a filtered asset search is the first step in creating what type of asset groups? (select all
that apply)
a. Full
b. Asset
c. Dynamic
d. Site
14. Which of the following is a factor in the determination of vulnerability severity levels?
a. Temporal Scores
b. CVSS Scores
c. Weighted Scores
d. SANS Vulnerability Scores