From the course: CISSP Cert Prep (2021): 6 Security Assessment and Testing
Join today to access over 22,600 courses taught by industry experts or purchase this course individually.
Scan perspective
From the course: CISSP Cert Prep (2021): 6 Security Assessment and Testing
Scan perspective
- [Instructor] All vulnerability scans are not alike. While you may set cans to test the same systems using the same tool on the same ports and services, there are other factors that may affect what you see in your scan results. Let's talk about scan perspective. The most important component of scan perspective is the scanner's location on the network, relative to the systems being scanned. For example, consider this typical network diagram showing a firewall that connects an organization to the internet, and also segments a DMZ that contains a web server accessible to the outside world. If, as in this diagram, the vulnerability scanner is also in the DMZ, the scanner has unrestricted access to the web server because it doesn't need to pass through the firewall to get there. However, if the vulnerability scanner is instead located on the internal network, we have a totally different picture. Now, the vulnerability…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.