https://blog.s4yhii.com/tags/security/ Recent content in Security on s4yhii's blog https://blog.s4yhii.com/%3Clink%20or%20path%20of%20image%20for%20opengraph,%20twitter-cards%3E https://blog.s4yhii.com/%3Clink%20or%20path%20of%20image%20for%20opengraph,%20twitter-cards%3E Hugo -- 0.155.3 en-us Thu, 20 Jan 2022 12:00:00 -0400 https://blog.s4yhii.com/posts/2022-01-21-vuln-scan-with-nessus-in-aws/ Thu, 20 Jan 2022 12:00:00 -0400 https://blog.s4yhii.com/posts/2022-01-21-vuln-scan-with-nessus-in-aws/ <h2 id="introduction">Introduction</h2> <p>In this tutorial we will cover vulnerability scanning and vulnerability remediation. These are two of the main steps in the Vulnerability Management Lifecycle. We will be using Nessus Essentials to scan local VMs hosted on VMWare Workstation in order run credentialed scans to discover vulnerabilities, remediate some of the vulnerabilities.</p> <h2 id="ec2-instance-setup">EC2 Instance Setup</h2> <p>first step is launch an EC2 instance, the recommended requirements are:</p> <ul> <li>windows OS</li> </ul> <p><img alt="Untitled" loading="lazy" src="https://raw.githubusercontent.com/s4yhii/s4yhii.github.io/master/assets/images/htb/Vulnerability%20Management%20with%20Nessus%20in%20AWS%2090286706ffaf46128c3727fb6f6c7e58/Untitled.jpg"></p> <ul> <li>basic: t3 medium</li> <li>recommended: t3 xlarge</li> </ul> <p>Decrypt your password to login in a RDP session and use this to access your EC2 instance</p>