Казахстан, г. Алматы, ул. Шевченко 90, БЦ «Каратал», офис 53
Казахстан, г. Астана, ул. Иманова 19, БЦ Деловой Дом "Алма-Ата", офис 612

направление: Rapid7 кол-во дней: 2
вендор: Информационная безопасность кол-во часов: 16

Nexpose Certified Administrator: Introduction to Nexpose

What is it?

Are you a security professional that doesn’t quite know where to begin getting an understanding of what kind of devices are in your environment, or how vulnerable some of them may be? Are you looking to deploy new vulnerability management software for your organization or just personal use? This two-day interactive class, led by a Rapid7 Security Consultant, will walk you through some basic to intermediate product features, best security practices, and techniques for vulnerability scanning various devices within a typical network environment.

The classroom or virtual class, which is hosted on a Rapid7 lab and delivered remotely, culminates in several exercises where users can apply learning in a fun, yet educational, simulation against multiple scenario driven target environments.

Customers who participate in Training on-site will experience hands-on opportunities to apply learned skills in a fun, yet educational, scenario in their own environment. The end result will be a strong understanding of Nexpose and how to use it to address your own network security goals.

All participants will have access to the Nexpose Certified Administrator Exam as part of their training program. Leverage the knowledge gained as part of the class to become a certified specialist and stand out from the crowd!

Certification

All participants will have access to the Nexpose Certified Administrator Exam as part of their training program. Leverage the knowledge gained as part of the class to become a certified specialist and stand out from the crowd!

Prerequisite

Ideally, attendees should have experience with the following:

  • Experience with Windows® and Linux Operating Systems Basic knowledge of network protocols

  • Basic knowledge of IPv4 address spacing

  • Vulnerability management system knowledge

Target Audience:

Geared toward security professionals who have little to no Nexpose experience, this hands-on training session is perfect for individuals within an organization who have been tasked with creating a security program from the ground up, or migrating from a different vulnerability management tool. Often over-taxed and under resourced, enabling security professionals the ability to learn how to use Nexpose will greatly enhance your understanding of your network. Those interested in automating your scanning and retrieving comprehensive reports for easy analysis will find this course a perfect fit.

What is the course content?

Introduction to Nexpose

  • What is Nexpose and what are the main product components ?

Install

  • Requirements and recommendations

  • Performing a console backup

  • Installing and pairing a scan engine

Operate

  • Getting Started with the console

  • Viewing results

  • Setting up sites

  • Running manual scans Reporting on the environment

Administer

  • Managing users, roles, and permissions

  • Managing scan credentials Tuning scans

  • Creating custom report templates Managing users

  • Creating custom scan and report templates

Day 1

The first day will focus on vulnerability management methodology to give the attendee a refresher in the basic concepts and workflow of a standard vulnerability management program. During this session, we will complete a practical walkthrough of the Nexpose graphical user interface. Once and understanding of the Nexpose software is established attendees can progress to a number of activities to actually use the tool for scanning.

Day 2

After working through the activities of day 1, the attendees will have a strong understand of Nexpose capabilities and can progress into more advanced labs. Day 2 will consist of lab and lecture and will conclude with outlying questions and delving into topics that may be specific to your particular environment.