Nexpose Certified Administrator: Introduction to Nexpose
What is it?
Are you a security professional that doesn’t quite know where to begin getting an understanding of what kind of devices are in your environment, or how vulnerable some of them may be? Are you looking to deploy new vulnerability management software for your organization or just personal use? This two-day interactive class, led by a Rapid7 Security Consultant, will walk you through some basic to intermediate product features, best security practices, and techniques for vulnerability scanning various devices within a typical network environment.
The classroom or virtual class, which is hosted on a Rapid7 lab and delivered remotely, culminates in several exercises where users can apply learning in a fun, yet educational, simulation against multiple scenario driven target environments.
Customers who participate in Training on-site will experience hands-on opportunities to apply learned skills in a fun, yet educational, scenario in their own environment. The end result will be a strong understanding of Nexpose and how to use it to address your own network security goals.
All participants will have access to the Nexpose Certified Administrator Exam as part of their training program. Leverage the knowledge gained as part of the class to become a certified specialist and stand out from the crowd!
Certification
All participants will have access to the Nexpose Certified Administrator Exam as part of their training program. Leverage the knowledge gained as part of the class to become a certified specialist and stand out from the crowd!
Prerequisite
Ideally, attendees should have experience with the following:
Experience with Windows® and Linux Operating Systems Basic knowledge of network protocols
Basic knowledge of IPv4 address spacing
Vulnerability management system knowledge
Target Audience:
Geared toward security professionals who have little to no Nexpose experience, this hands-on training session is perfect for individuals within an organization who have been tasked with creating a security program from the ground up, or migrating from a different vulnerability management tool. Often over-taxed and under resourced, enabling security professionals the ability to learn how to use Nexpose will greatly enhance your understanding of your network. Those interested in automating your scanning and retrieving comprehensive reports for easy analysis will find this course a perfect fit.
What is the course content?
Introduction to Nexpose
What is Nexpose and what are the main product components ?
Install
Requirements and recommendations
Performing a console backup
Installing and pairing a scan engine
Operate
Getting Started with the console
Viewing results
Setting up sites
Running manual scans Reporting on the environment
Administer
Managing users, roles, and permissions
Managing scan credentials Tuning scans
Creating custom report templates Managing users
Creating custom scan and report templates
Day 1
The first day will focus on vulnerability management methodology to give the attendee a refresher in the basic concepts and workflow of a standard vulnerability management program. During this session, we will complete a practical walkthrough of the Nexpose graphical user interface. Once and understanding of the Nexpose software is established attendees can progress to a number of activities to actually use the tool for scanning.
Day 2
After working through the activities of day 1, the attendees will have a strong understand of Nexpose capabilities and can progress into more advanced labs. Day 2 will consist of lab and lecture and will conclude with outlying questions and delving into topics that may be specific to your particular environment.