[project]Conduct Vulnerability Assessment using OSSIM and deal with incident tickets

overview

Vulnerability scan was conducted using Alien Vault OSSIM.

From the browser, I access 10.10.10.26 to use Alien Vault. I create the new scan job which conduct a vulnerability scan for windows 10 machines (10.10.10.10). Once the scan is completed, I can see the report of the scan on pdf and check the detail.

It is important to conduct a vulnerability scan to check if there is a weakness in the private network and Alien Vault issues the report with vulnerabilities based on their security risk levels (medium, info, high, etc) so that the system admin can work on the highest risks first.

overview

I used AlienVault to create the ticket. The ticket can be created based on type like vulnerability. It is important to make documentation and act based on that. Whenever any progress occurs, the progress should be written in the ticket. As a security engineer, it is important to practice dealing with a ticket constantly.