Scribd Logo
Upload

Welcome to Scribd!

  • Lab 4.2 - MSBSA: CCIS2400: Security Essentials

    Uploaded by

    jocansino4496
    34 views4 pages
    cvcxc

    Original Title

    CSSIA_4-2

    Copyright

    © Attribution Non-Commercial (BY-NC)

    Available Formats

    DOC, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    cvcxc

    Copyright:

    Attribution Non-Commercial (BY-NC)
    Download as DOC, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    34 views4 pages

    Lab 4.2 - MSBSA: CCIS2400: Security Essentials

    Uploaded by

    jocansino4496
    cvcxc

    Copyright:

    Attribution Non-Commercial (BY-NC)
    Download as DOC, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 4

    CCIS2400: Security Essentials

    Lab 4.2 --- MSBSA


    Objective At the end of this lab students will be able to analyze a Windows operating system for weaknesses such as missing security patches, weak passwords, MS Office vulnerabilities and be able to correct these. Security Analysis erforming a security analysis on desktop!server platforms helps administrators identify vulnerabilities on those platforms. Operating systems and certain applications with missing or out"of"date patches are vulnerable to attacks from a variety of sources including e"mail and #oS attacks. Microso t Baseline Security Analy!er $sing this tool can help a network administrator identify common security misconfigurations. %apabilities of the tool include e&amining Windows desktops and servers for common security best practices such as strong passwords, scanning servers running ''S and S() Server for common security misconfigurations, and checking for misconfigured security zone settings in Microsoft Office and 'nternet *&plorer. +y identifying these weaknesses, an administrator can develop a more comprehensive plan when installing the Windows operating system in order to harden it. Install t"e MSBSA: ,. 'f the MS+SA is not already present on your computer, you will need to download and install it. -his is a free product, but you may have to .validate/ your OS with Microsoft before being allowed to download. 0ou will find the installation file here1 http1!!ca.htc.mnscu.edu!ccis2344 2. 'nstallation is straight forward"""5ust follow the prompts

    Copyright Center for Systems Security and Information Assurance

    'nformation Assurance 6 2

    )ab Manual 78,.49

    :eleased1 ;!4;

    age ,.,.4!,

    #sin$ t"e MSBSA ,. )aunch the MS+SA. Select the .Scan a computer/ link. 2. 0our screen will look like the one shown below. 0our computer name will be in the dialog bo& by default. 0ou can also scan by its ' address. )ook at the option check bo&es shown below. +y default, they are all checked. -he Windows vulnerabilities option will check items such as guest account 7enabled or disabled9, check the local password and see if Automatic updates are being done. -he security updates option will not only check for operating system security issues, but also application security issues such as Media layer and Office security issues. Make sure that all the Option bo&es are checked before you begin the scan.

    <. %lick on

    and rela& for a few minutes.

    3. When the scan is complete, a Security :eport will appear. With the sort"order set to .worst first,/ what were the two biggest!worst security risks present on your %= ,. 2.

    Copyright Center for Systems Security and Information Assurance

    'nformation Assurance 6 2

    )ab Manual 78,.49

    :eleased1 ;!4;

    age ,.,.4!2

    ;. %lick on the .What was scanned/ for the >, item in the report for some details about this issue!risk. ?. %lick on the .:esult details/ link for the >, item for information about versions of software that are not up"to"date and!or patches that need to be installed. :eferences to the original Microsoft Security bulletin7s9 and links to the Microsoft web site will give even more details. @. %lick on the .Aow to correct this/ link for the >, item to get step"by"step instructions on how to correct the problem. rint this document and keep it for future reference. B. :un a scan on another % in the classroom. #id you get the same results or different ones=

    Analysis ,. What operating system7s9 would you view as most vulnerable to e&ploitation=

    2. +ased on the MS+SA scan, what application software items listed on your computer would you view as most vulnerable to e&ploitation=

    <. +ased on the information gathered, what items would you correct first=

    3. After working with this utility, do you see any potential items that it missed= 'f yes, what are they=

    A%%en&i': -his lab was developed using MS +aseline Security Analyzer version 2, which can be obtained from http1!!www.microsoft.com or http1!!www.download.com

    Copyright Center for Systems Security and Information Assurance

    'nformation Assurance 6 2

    )ab Manual 78,.49

    :eleased1 ;!4;

    age ,.,.4!<

    Copyright Center for Systems Security and Information Assurance

    'nformation Assurance 6 2

    )ab Manual 78,.49

    :eleased1 ;!4;

    age ,.,.4!3

    You might also like