Cyber Security: Steps to Perform Vulnerability Assessments

1. Preparation
   • Define the scope of the assessment (e.g., specific operating systems, applications).
   • Gather necessary tools and resources (e.g., vulnerability scanners like Nessus, OpenVAS).
2. Scanning
   • Use automated tools to scan systems for known vulnerabilities.
   • Ensure scans cover all critical areas, including operating systems, applications, and network configurations.
3. Analysis
   • Review scan results to identify vulnerabilities.
   • Prioritize vulnerabilities based on severity, potential impact, and exploitability.
4. Reporting
   • Create a detailed report outlining identified vulnerabilities, their severity, and recommended remediation steps.
   • Share the report with relevant stakeholders.
5. Remediation
   • Apply patches or other fixes to address identified vulnerabilities.
   • Implement additional security measures as needed (e.g., configuration changes, access controls).
6. Verification:
   • Rescan systems to verify that vulnerabilities have been successfully mitigated.
   • Update records to reflect the current security status.

At Home Task: Perform a Vulnerability Assessment Using Windows Defender, XProtect or GateKeeper

Objective: Use in-built software on Windows or Mac to scan for vulnerabilities and malware.

Instructions

1. Open the Start Menu and select Settings.
2. Go to Update & Security.
3. Click on Windows Security.
4. Select Virus & threat protection.
5. Click on Quick scan to perform a basic scan of your system.
6. For a more thorough scan, click on Scan options and select Full scan, then click Scan now.
7. Review the results and follow any recommended actions to address detected issues.
8. Take a screenshot and paste below as evidence that you completed this task:

Mac users:

Built-in Tools are XProtect and Gatekeeper.

XProtect is Apple’s built-in anti-malware system that automatically updates to protect against known malware.

XProtect works in the background and does not require user intervention.

Ensure macOS is up to date to get the latest XProtect definitions.

Gatekeeper helps protect your Mac by ensuring only trusted software runs on the system.

Steps to Check Gatekeeper Settings:

1. Open System Preferences.
2. Click on Security & Privacy.
3. In the General tab, ensure App Store and identified developers is selected under Allow apps downloaded from.