boris/G4G0-2
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

vault backup: 2025-03-16 18:59:42

Browse Source
This commit is contained in:
boris
2025-03-16 18:59:42 +00:00
parent 6befcc90d4
commit ae837183f1
188 changed files with 17794 additions and 409 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
Penetration Testing/Week 7/Lecture 7 - Vulnerability Scanning.md
View File

@@ -14,18 +14,20 @@ Operational Vulnerability is likely the worst
# Quantification of Vulnerabilities
CVSS: Common Vulnerability Scoring System
- Uses principle characteristics of a vulnerability to produce a numerical score reflecting severity. Can be translated into qualitative representation (low->critical) to help organisations assess and prioritise vulnerability management processes
- https://www.first.org/cvss
- <https://www.first.org/cvss>
# Attack Patterns
CAPEC: Common Attack Pattern Enumeration and Classification
- Catalogue of common attack patterns that helps users understand how adversaries exploit weaknesses in applications and other capabilities.
- https://capac.mitre.org/
- <https://capac.mitre.org/>
# Search for Vulnerabilities
- https://cvedetails.com
- <https://cvedetails.com>
# Vulnerability Scanning
@@ -34,4 +36,3 @@ CAPEC: Common Attack Pattern Enumeration and Classification
- Can generate alot of traffic, and may result in denial of service on many devices.
## Nessus