1 00:00:00,240 --> 00:00:06,780 All right, folks, let's look at some really cool stuff now this we have came across while creating 2 00:00:06,780 --> 00:00:16,560 the task, but will go a bit more deeper to understand what is the purpose of it in very detailed scan, 3 00:00:16,560 --> 00:00:18,870 config alerts and schedules. 4 00:00:19,510 --> 00:00:22,700 Let's let's go from a different approach. 5 00:00:22,710 --> 00:00:26,650 Let's start for the alerts and schedule and then we'll come to this Kangan thing. 6 00:00:27,450 --> 00:00:27,860 All right. 7 00:00:27,870 --> 00:00:36,420 So what are the other two other ways you can make sure you get alerts about your task and its status 8 00:00:36,420 --> 00:00:36,840 as well. 9 00:00:36,900 --> 00:00:40,380 So what you can probably do is you can go to the config. 10 00:00:41,780 --> 00:00:42,870 Click on the alerts. 11 00:00:43,310 --> 00:00:44,330 You don't have any. 12 00:00:45,080 --> 00:00:51,910 You can create one, you can mention the alert for whatever purposes you want to make sure. 13 00:00:52,400 --> 00:00:57,440 Then in that case, you either can specify based on the events. 14 00:00:58,010 --> 00:01:03,470 So let's say I want to specify based on the event, maybe if anything, you know, it's a new event 15 00:01:03,470 --> 00:01:04,430 or whatever. 16 00:01:04,760 --> 00:01:11,720 If I could get any in weeds and all that stuff and it can even be done based on the task as well. 17 00:01:12,530 --> 00:01:17,140 So if your task has been requested, what is the status of it? 18 00:01:17,160 --> 00:01:23,270 If it is a new one, if it is completed, then you should get an e-mail or whatever the method you specify, 19 00:01:23,750 --> 00:01:28,030 you can specify the condition or severity has been changed. 20 00:01:28,530 --> 00:01:34,280 The data report, the method delivery method of what is the method you want to opt for? 21 00:01:34,620 --> 00:01:38,400 Is it through the email as CBS rebegin message? 22 00:01:38,420 --> 00:01:39,620 Send me whatever it is. 23 00:01:39,950 --> 00:01:49,670 OK, if it is the e-mail then you can specify the to address your idea admin, the security folks or 24 00:01:49,670 --> 00:01:50,150 anyone. 25 00:01:50,960 --> 00:01:56,690 Then you specify the, you know, your own address subject line for sure. 26 00:01:57,020 --> 00:01:58,700 It can be customized completely. 27 00:01:58,910 --> 00:02:02,930 You can specify the e-mail content as well. 28 00:02:02,940 --> 00:02:05,690 And once it is done you can just save it. 29 00:02:06,020 --> 00:02:06,180 Right. 30 00:02:06,620 --> 00:02:10,360 So that's pretty quick in a way. 31 00:02:10,880 --> 00:02:12,380 So that's all about the alerts. 32 00:02:12,380 --> 00:02:19,700 It's just to make sure you get notified about all the activities that you do or maybe all the changes 33 00:02:19,700 --> 00:02:27,850 that happen based on these can, you know, be used on the DASK or maybe related to the NYPD or if you 34 00:02:27,860 --> 00:02:31,550 get any any new initiatives or changes into the databases. 35 00:02:31,550 --> 00:02:36,470 But everything OK, so now next, let's look at the schedule. 36 00:02:36,480 --> 00:02:37,490 That's pretty quick. 37 00:02:38,330 --> 00:02:46,130 You know, we just have to see what schedules you want to plan for. 38 00:02:46,130 --> 00:02:51,490 Let's say we have a schedule for any of the patterns that you want to go for. 39 00:02:52,100 --> 00:03:03,110 So we are mostly be scheduling this scan maybe for four p.m. or maybe four p.m. Eastern time or maybe 40 00:03:04,610 --> 00:03:07,700 it is in the midnight hour, maybe in the weekend time sometime. 41 00:03:07,940 --> 00:03:09,700 So you can specify accordingly. 42 00:03:09,840 --> 00:03:17,060 You can give us specific details about it and, you know, what is the duration you would like to go 43 00:03:17,060 --> 00:03:17,420 for? 44 00:03:17,660 --> 00:03:23,260 And if you really want to make that, you know, you can specify that one is ISBA. 45 00:03:23,660 --> 00:03:30,140 If you want to make it weekly, then you can do that as a part of your scanning and, you know, best 46 00:03:30,140 --> 00:03:35,630 practices and what kind of compliance that you have all across your organization. 47 00:03:36,290 --> 00:03:37,070 So that's done. 48 00:03:37,070 --> 00:03:41,450 Let's jump to this conclusion, which is very, very important part of it. 49 00:03:42,410 --> 00:03:46,940 For that, we again have to go to the configuration, click on this scan config. 50 00:03:47,390 --> 00:03:48,230 Now, look at this. 51 00:03:48,230 --> 00:03:52,940 It's actually what we have seen in the dust, isn't it? 52 00:03:53,770 --> 00:04:00,920 OK, let me show you over here you see the base discovery, full fast food and fast and all this stuff. 53 00:04:01,250 --> 00:04:04,940 This is exactly what we have seen while creating the task. 54 00:04:05,030 --> 00:04:11,930 OK, when we were creating the dust, you see this we have created that does we specify all the barometer. 55 00:04:11,940 --> 00:04:13,550 And you say this scan config. 56 00:04:14,030 --> 00:04:21,320 We we usually on the last on the last bus to the scans, we have selected the full and fast. 57 00:04:21,590 --> 00:04:27,570 And I told you already for every every scan config is like scan profiles, OK? 58 00:04:27,890 --> 00:04:32,000 And this consists of multiple and we d and then we deserve nothing. 59 00:04:32,000 --> 00:04:38,240 But you know, these are network vulnerability tests for different vendors. 60 00:04:38,630 --> 00:04:50,630 OK, so if we again go back to our scan config and let's look at this, OK, why, why, why I want 61 00:04:50,630 --> 00:04:51,440 to explain you. 62 00:04:51,440 --> 00:04:58,400 This is because if you don't like what is really pre-built, what is really present, you can customize 63 00:04:58,400 --> 00:04:58,550 it. 64 00:04:59,250 --> 00:05:04,670 Let me show you how you can simply go and create the new one over here. 65 00:05:05,240 --> 00:05:09,050 Let's say, you know, you can create any kind of custom. 66 00:05:09,050 --> 00:05:10,490 You can scan config. 67 00:05:11,240 --> 00:05:15,740 And it depends on what are you actually willing to scan. 68 00:05:16,080 --> 00:05:23,470 Let's say you just want to scan for Cisco devices so you can't really have all the plug ins into it. 69 00:05:23,480 --> 00:05:23,720 Right. 70 00:05:23,930 --> 00:05:31,760 Full and fast has multiple you know, it has the multiple needs related to Cisco servers, routers, 71 00:05:31,760 --> 00:05:36,350 switches, appliance server, you know, of being over firewalls. 72 00:05:36,530 --> 00:05:38,840 You know, everything, everything you talk about. 73 00:05:39,080 --> 00:05:41,240 But if you really want to just scan. 74 00:05:41,310 --> 00:05:46,760 What's Cisco device, you really don't mean the rest of the stuff, right, so you can just specify 75 00:05:46,770 --> 00:05:54,560 like Cisco devices, scan confect and let's say you got three options. 76 00:05:54,780 --> 00:05:59,790 I'll just keep it a base for minimum set off and repeat for now. 77 00:05:59,970 --> 00:06:03,120 OK, let's save it once it is ready. 78 00:06:03,900 --> 00:06:08,720 You can see over here, let's customize it, click on the edit scan config. 79 00:06:09,180 --> 00:06:12,030 Once you do that, it's going to start loading up. 80 00:06:12,780 --> 00:06:21,420 You see this, you get to see almost all the and we tease all the Edwards family and every and the family 81 00:06:21,690 --> 00:06:24,270 has a list of and reads into it. 82 00:06:24,460 --> 00:06:35,580 OK, so if you even see Cisco, we got Cisco as seven, six forty seven and winds into it. 83 00:06:35,760 --> 00:06:41,720 OK, and that's pretty fantastic because this will help us to go more deeper inside. 84 00:06:42,030 --> 00:06:48,960 And even if you want to make a bit more specific, even in the Cisco family, you can be very specific 85 00:06:48,960 --> 00:06:49,560 as well. 86 00:06:50,460 --> 00:06:52,500 Out of 700 or something. 87 00:06:52,500 --> 00:06:56,180 You can select one of them maybe for a specific one. 88 00:06:57,090 --> 00:06:58,110 Why does it is needed? 89 00:06:58,350 --> 00:07:06,390 Because sometime, you know, you get in a notification from some organization or from somebody or it's 90 00:07:06,390 --> 00:07:08,550 a new one that has been identified. 91 00:07:08,550 --> 00:07:12,480 Or maybe you want to check for a specific vulnerability all across your network. 92 00:07:12,750 --> 00:07:15,560 You just specifically select that vulnerability. 93 00:07:15,670 --> 00:07:24,350 Let's say in our case, I just specifically select a one Lovelady's maybe this occurs or something. 94 00:07:24,420 --> 00:07:34,410 This one every once I select that, that after that only this you see this one of three six forty seven 95 00:07:34,410 --> 00:07:37,620 one liberty has been and has been selected. 96 00:07:38,100 --> 00:07:45,360 OK, and in that case all the devices will be scanned only for this one. 97 00:07:45,900 --> 00:07:52,200 OK, but I select all of them then the all the vulnerabilities will be selected in that case. 98 00:07:52,770 --> 00:07:53,610 You got my point. 99 00:07:53,770 --> 00:08:00,690 So when you really want to scan for one device in a way, one device all across the network, you can 100 00:08:00,690 --> 00:08:05,000 go here and select your specific vulnerability. 101 00:08:05,400 --> 00:08:12,150 But if you want to select or if you want to scan for all the devices all across your network, you can 102 00:08:12,150 --> 00:08:16,560 select the entire entire family itself. 103 00:08:16,980 --> 00:08:27,870 So it'll give you a very granular, you know, functionality of selecting either one entity or family 104 00:08:27,870 --> 00:08:28,930 of languages. 105 00:08:30,270 --> 00:08:30,890 You got that. 106 00:08:31,200 --> 00:08:33,600 So once you select that, you can save it. 107 00:08:34,470 --> 00:08:38,850 And you see this, you have just created a scan config. 108 00:08:40,140 --> 00:08:48,700 This can go on for you just created this and this has total six to be and is available now. 109 00:08:49,450 --> 00:08:51,090 What do you can actually do this? 110 00:08:51,420 --> 00:08:57,300 You can create a task and let's say you have already selected your target. 111 00:08:57,360 --> 00:08:59,700 OK, while creating the task. 112 00:09:02,480 --> 00:09:10,310 What's creating the task in the task you call your target, Joe Cisco routers, firewall, so whatever 113 00:09:10,310 --> 00:09:17,000 the device may be called, manager or you know, or maybe your wireless Cisco wireless devices. 114 00:09:18,450 --> 00:09:23,270 And after that, what is needed to do is in this can go on faith. 115 00:09:23,820 --> 00:09:26,990 You should see your newly created Schenkkan faith. 116 00:09:27,840 --> 00:09:28,470 You see this? 117 00:09:28,830 --> 00:09:30,540 It's that beautiful. 118 00:09:31,080 --> 00:09:36,480 So once that is done, you can save it and you are ready to go to this. 119 00:09:36,480 --> 00:09:44,550 Saves a whole lot of time of yours because when it is a generic scan config, it's going to scan for 120 00:09:44,670 --> 00:09:47,820 all the readings and it's going to take a whole lot of time. 121 00:09:48,240 --> 00:09:53,040 But if you're sure that you are only scanning for Cisco routers, then go for this. 122 00:09:53,790 --> 00:09:54,600 Makes sense, right? 123 00:09:55,110 --> 00:10:01,380 So this is all about, you know, alerts, schedules and very important. 124 00:10:01,380 --> 00:10:03,210 Schanker, something I hope you like. 125 00:10:03,210 --> 00:10:04,850 The video will get you some.