1 00:00:10,400 --> 00:00:13,519 hello youtubers welcome back to my 2 00:00:13,519 --> 00:00:15,280 nasdaq youtube channel 3 00:00:15,280 --> 00:00:18,560 this is johnny a network and security 4 00:00:18,560 --> 00:00:20,560 guy 5 00:00:20,560 --> 00:00:23,600 when i'm wearing security hat 6 00:00:23,600 --> 00:00:26,720 one of popular questions i got asked 7 00:00:26,720 --> 00:00:27,920 is about 8 00:00:27,920 --> 00:00:32,079 security of the system how i'm sure this 9 00:00:32,079 --> 00:00:35,440 system has been configured securely 10 00:00:35,440 --> 00:00:38,320 usually my answer is quite simple 11 00:00:38,320 --> 00:00:41,920 that's wrong cis cat scanning 12 00:00:41,920 --> 00:00:45,760 what is ciscat 13 00:00:45,760 --> 00:00:48,960 this is just created the tool center for 14 00:00:48,960 --> 00:00:50,960 internet security configuration 15 00:00:50,960 --> 00:00:53,199 assessment tool 16 00:00:53,199 --> 00:00:55,120 we are going to compare the target 17 00:00:55,120 --> 00:00:58,079 configuration settings with cure 18 00:00:58,079 --> 00:01:00,800 configuration settings recommended they 19 00:01:00,800 --> 00:01:03,840 have 100 cs benchmarks for different 20 00:01:03,840 --> 00:01:05,119 systems 21 00:01:05,119 --> 00:01:07,040 after the comparison they're gonna give 22 00:01:07,040 --> 00:01:09,760 you a report shows the score how to 23 00:01:09,760 --> 00:01:12,119 secure your system and also give you 24 00:01:12,119 --> 00:01:15,200 recommendation for how to remediate 25 00:01:15,200 --> 00:01:18,320 those security holes you might have 26 00:01:18,320 --> 00:01:20,960 this whole tool makes the scanning 27 00:01:20,960 --> 00:01:23,840 validation and reporting much easier and 28 00:01:23,840 --> 00:01:27,040 simpler for users who need to find out 29 00:01:27,040 --> 00:01:29,680 the best security configuration for 30 00:01:29,680 --> 00:01:30,960 their system 31 00:01:30,960 --> 00:01:32,400 this is 32 00:01:32,400 --> 00:01:35,360 very helpful and useful tool there are 33 00:01:35,360 --> 00:01:37,040 two versions 34 00:01:37,040 --> 00:01:40,720 such as cad flow and sas cad catalyte 35 00:01:40,720 --> 00:01:43,920 in this video i'm gonna present it how 36 00:01:43,920 --> 00:01:47,360 you can download cs catalyte how you can 37 00:01:47,360 --> 00:01:50,479 run it and how you can do scan 38 00:01:50,479 --> 00:01:52,479 for your target 39 00:01:52,479 --> 00:01:53,360 now 40 00:01:53,360 --> 00:01:56,000 let's jump into my lab and we can start 41 00:01:56,000 --> 00:01:58,159 it 42 00:02:04,159 --> 00:02:08,560 now let's take a look my lab topology 43 00:02:08,560 --> 00:02:12,319 for this lab i have three machines 44 00:02:12,319 --> 00:02:14,800 one is windows 2016 45 00:02:14,800 --> 00:02:16,319 which we are gonna 46 00:02:16,319 --> 00:02:19,520 launch cs cad lite from this machine to 47 00:02:19,520 --> 00:02:23,360 do the scanning for windows 10 and 48 00:02:23,360 --> 00:02:27,200 51 sec to local this dc 49 00:02:27,200 --> 00:02:30,000 all those machines are in the domain 50 00:02:30,000 --> 00:02:33,200 if you are using work groups and similar 51 00:02:33,200 --> 00:02:35,840 operations 52 00:02:35,840 --> 00:02:38,720 this is very simple network they're all 53 00:02:38,720 --> 00:02:40,720 running in the same 54 00:02:40,720 --> 00:02:44,319 network 192.168.2 55 00:02:44,319 --> 00:02:46,879 if you have firewall between 56 00:02:46,879 --> 00:02:50,800 your cis cad lite server and your 57 00:02:50,800 --> 00:02:54,000 destinations you may need to open your 58 00:02:54,000 --> 00:02:55,440 firewalls 59 00:02:55,440 --> 00:02:59,760 but that will be in different topic 60 00:03:03,040 --> 00:03:06,400 now let's download the cs cat lite 61 00:03:06,400 --> 00:03:08,319 version free 62 00:03:08,319 --> 00:03:09,440 cat tool 63 00:03:09,440 --> 00:03:13,360 to scanning your destination 64 00:03:13,760 --> 00:03:16,640 you can directly using the google to 65 00:03:16,640 --> 00:03:19,920 search says cat lite the first link jump 66 00:03:19,920 --> 00:03:20,800 out 67 00:03:20,800 --> 00:03:23,440 that will be 68 00:03:23,680 --> 00:03:25,519 this page 69 00:03:25,519 --> 00:03:28,080 for this form what you need to do is you 70 00:03:28,080 --> 00:03:30,000 don't need to provide your credit card 71 00:03:30,000 --> 00:03:32,080 you private your minimum personal 72 00:03:32,080 --> 00:03:34,239 information name 73 00:03:34,239 --> 00:03:36,480 organization role 74 00:03:36,480 --> 00:03:40,159 email sector country 75 00:03:40,159 --> 00:03:42,239 how many employees how did you hear 76 00:03:42,239 --> 00:03:43,599 about us 77 00:03:43,599 --> 00:03:45,040 then 78 00:03:45,040 --> 00:03:48,879 click get cs cad button 79 00:03:48,879 --> 00:03:50,640 in couple minutes 80 00:03:50,640 --> 00:03:52,400 you should be able to get the email like 81 00:03:52,400 --> 00:03:53,920 this 82 00:03:53,920 --> 00:03:56,720 cis center for internet security 83 00:03:56,720 --> 00:03:59,680 says catalyte version 4 84 00:03:59,680 --> 00:04:03,360 and the download link here 85 00:04:04,799 --> 00:04:06,000 quick link 86 00:04:06,000 --> 00:04:07,920 the downloading show happening 87 00:04:07,920 --> 00:04:10,400 immediately 88 00:04:10,400 --> 00:04:14,159 at about 148 megabytes 89 00:04:14,159 --> 00:04:16,320 um place down your internet speed one 90 00:04:16,320 --> 00:04:18,238 minute two minutes you should be able to 91 00:04:18,238 --> 00:04:20,639 get it 92 00:04:20,639 --> 00:04:23,600 so that how you can get it 93 00:04:23,600 --> 00:04:25,680 you may also get the list 94 00:04:25,680 --> 00:04:27,919 email as well to show you how to get 95 00:04:27,919 --> 00:04:30,960 started with cis cad lite 96 00:04:30,960 --> 00:04:32,639 that will help you 97 00:04:32,639 --> 00:04:34,800 to start to use 98 00:04:34,800 --> 00:04:37,280 this tool 99 00:04:37,840 --> 00:04:40,240 you also can register for webmail 100 00:04:40,240 --> 00:04:43,840 to get more informations 101 00:04:46,400 --> 00:04:49,199 after you download the software 102 00:04:49,199 --> 00:04:50,560 you will see 103 00:04:50,560 --> 00:04:52,160 this zip file 104 00:04:52,160 --> 00:04:56,919 says cad lite version 4.21.0 105 00:04:57,280 --> 00:04:58,800 to run it 106 00:04:58,800 --> 00:05:00,639 you don't need to install it 107 00:05:00,639 --> 00:05:05,120 only thing you need to do extract all 108 00:05:07,759 --> 00:05:09,280 i'm running 109 00:05:09,280 --> 00:05:12,560 cs catalyte in my virtual machine 110 00:05:12,560 --> 00:05:16,080 i'm giving a gigabyte to run 111 00:05:16,080 --> 00:05:19,759 and for virtual cpu 112 00:05:19,919 --> 00:05:21,360 it depending on 113 00:05:21,360 --> 00:05:24,800 how many system you need to scan 114 00:05:24,800 --> 00:05:26,560 usually 115 00:05:26,560 --> 00:05:28,320 even four giga ram 116 00:05:28,320 --> 00:05:30,320 to watch cpu 117 00:05:30,320 --> 00:05:33,680 it's also more enough 118 00:05:37,440 --> 00:05:40,000 once you unzip it you will get as 119 00:05:40,000 --> 00:05:41,199 accessor 120 00:05:41,199 --> 00:05:43,840 this folder 121 00:05:43,840 --> 00:05:46,800 you will find out this assessor 122 00:05:46,800 --> 00:05:50,479 dash gui exe file 123 00:05:50,479 --> 00:05:53,600 to run it it is very simple just right 124 00:05:53,600 --> 00:05:56,400 click this accessor 125 00:05:56,400 --> 00:06:00,479 dash gui exe file run as administrator 126 00:06:00,479 --> 00:06:05,199 you will see it shows cis cad pro access 127 00:06:05,199 --> 00:06:08,560 in the windows title 128 00:06:08,880 --> 00:06:11,680 if we are syncing this oh i maybe 129 00:06:11,680 --> 00:06:13,360 download the wrong one 130 00:06:13,360 --> 00:06:16,639 but actually the windows title shows 131 00:06:16,639 --> 00:06:19,520 cscad pro accessor 132 00:06:19,520 --> 00:06:22,639 eventually you will get cs cat light 133 00:06:22,639 --> 00:06:23,759 version 134 00:06:23,759 --> 00:06:24,639 since 135 00:06:24,639 --> 00:06:26,319 that 136 00:06:26,319 --> 00:06:29,280 restricted version from this floor 137 00:06:29,280 --> 00:06:34,199 you will see here says cat light 138 00:06:34,880 --> 00:06:38,479 it is using same web gui as pro version 139 00:06:38,479 --> 00:06:39,520 only 140 00:06:39,520 --> 00:06:42,639 thing is this is a restricted version 141 00:06:42,639 --> 00:06:45,280 it's a light version and also you will 142 00:06:45,280 --> 00:06:47,600 see they want you to 143 00:06:47,600 --> 00:06:49,600 see the documentation which is pro 144 00:06:49,600 --> 00:06:52,479 documentation you won't find too much 145 00:06:52,479 --> 00:06:55,039 information about light but you will see 146 00:06:55,039 --> 00:06:59,319 everything for the plot 147 00:07:02,560 --> 00:07:05,360 once you launch the web degree scanning 148 00:07:05,360 --> 00:07:07,360 the system gonna be very simple either 149 00:07:07,360 --> 00:07:09,599 local or remote 150 00:07:09,599 --> 00:07:11,440 the lite version 151 00:07:11,440 --> 00:07:15,039 has no limitation how many targets you 152 00:07:15,039 --> 00:07:16,880 can scan 153 00:07:16,880 --> 00:07:18,479 so you can scan local and the remote 154 00:07:18,479 --> 00:07:21,199 system that start from this local system 155 00:07:21,199 --> 00:07:22,400 first 156 00:07:22,400 --> 00:07:25,599 the local system is a windows 2016 as i 157 00:07:25,599 --> 00:07:28,639 mentioned before so we're gonna 158 00:07:28,639 --> 00:07:31,639 use 159 00:07:33,199 --> 00:07:37,440 windows server list sas controls 160 00:07:37,440 --> 00:07:40,960 assessment module implementation group 1 161 00:07:40,960 --> 00:07:43,440 which is minimum requirement for the 162 00:07:43,440 --> 00:07:45,840 server 163 00:07:46,319 --> 00:07:47,919 and we're gonna choose list one 164 00:07:47,919 --> 00:07:50,240 automated checks and the survey 165 00:07:50,240 --> 00:07:51,440 questions 166 00:07:51,440 --> 00:07:52,960 so you will get a lot of survey 167 00:07:52,960 --> 00:07:58,160 questions for the interactive answers 168 00:07:58,160 --> 00:07:59,599 one thing 169 00:07:59,599 --> 00:08:01,280 the light version 170 00:08:01,280 --> 00:08:04,000 this is different from pro version is 171 00:08:04,000 --> 00:08:07,039 you only have limited benchmarks 172 00:08:07,039 --> 00:08:10,400 for a pro version says dusty's provide 173 00:08:10,400 --> 00:08:13,440 hundreds benchmarks for you to use but 174 00:08:13,440 --> 00:08:15,520 here the benchmarks only limited a 175 00:08:15,520 --> 00:08:17,919 couple from windows 10 176 00:08:17,919 --> 00:08:19,520 ubuntu 177 00:08:19,520 --> 00:08:21,039 google chrome 178 00:08:21,039 --> 00:08:21,919 and the 179 00:08:21,919 --> 00:08:25,360 minimum requirement for windows server 180 00:08:25,360 --> 00:08:27,680 after you choose the benchmarks in the 181 00:08:27,680 --> 00:08:29,440 profile 182 00:08:29,440 --> 00:08:31,120 basically profile i was thinking it's 183 00:08:31,120 --> 00:08:34,240 always baseline 184 00:08:35,599 --> 00:08:38,080 and you can add it 185 00:08:38,080 --> 00:08:40,719 so once you choose edit they will 186 00:08:40,719 --> 00:08:42,080 give you 187 00:08:42,080 --> 00:08:44,240 a text box to ask you 188 00:08:44,240 --> 00:08:46,880 the questions 189 00:08:46,880 --> 00:08:48,000 you can just 190 00:08:48,000 --> 00:08:50,080 click okay okay 191 00:08:50,080 --> 00:08:51,720 let about 192 00:08:51,720 --> 00:08:57,200 29 questions for this survey 193 00:08:57,200 --> 00:08:58,320 so 194 00:08:58,320 --> 00:09:00,560 for me and just quickly 195 00:09:00,560 --> 00:09:04,000 demonstrate the process i will pick 196 00:09:04,000 --> 00:09:08,279 yes for all questions 197 00:09:23,440 --> 00:09:26,160 so once all questions has been answered 198 00:09:26,160 --> 00:09:28,320 let's select the profile and the 199 00:09:28,320 --> 00:09:31,519 benchmark will be in this selected 200 00:09:31,519 --> 00:09:33,519 section 201 00:09:33,519 --> 00:09:35,360 after that 202 00:09:35,360 --> 00:09:38,320 we can choose next 203 00:09:38,320 --> 00:09:41,440 here report output options 204 00:09:41,440 --> 00:09:43,360 since we are using light version we only 205 00:09:43,360 --> 00:09:47,760 have html it's already select for us 206 00:09:47,760 --> 00:09:50,560 if you using pro you can use in csv text 207 00:09:50,560 --> 00:09:53,279 xml and json 208 00:09:53,279 --> 00:09:55,040 and we can pick 209 00:09:55,040 --> 00:09:58,560 the destination you leave default 210 00:09:58,560 --> 00:10:01,200 you also can save a configuration file 211 00:10:01,200 --> 00:10:03,200 for the future to use it and you don't 212 00:10:03,200 --> 00:10:08,000 have to do all the selection again 213 00:10:08,160 --> 00:10:10,240 next 214 00:10:10,240 --> 00:10:12,560 so it's a sql 215 00:10:12,560 --> 00:10:16,959 confirmation start assessment 216 00:10:17,120 --> 00:10:19,040 assessments usually 217 00:10:19,040 --> 00:10:20,000 take 218 00:10:20,000 --> 00:10:24,200 two minutes to get it done 219 00:10:45,200 --> 00:10:46,640 all right 220 00:10:46,640 --> 00:10:49,519 we got a report 221 00:10:50,320 --> 00:10:54,720 ma'am you can choose view html 222 00:10:54,720 --> 00:10:58,079 that will show you a really nice report 223 00:10:58,079 --> 00:11:01,320 in your browser 224 00:11:02,560 --> 00:11:05,760 for my list machine automatic checks 225 00:11:05,760 --> 00:11:07,839 failed 11 226 00:11:07,839 --> 00:11:09,200 items 227 00:11:09,200 --> 00:11:12,399 we have four passed 228 00:11:12,399 --> 00:11:14,640 for user survey questions we got 29 229 00:11:14,640 --> 00:11:16,800 questions since we selected yes for all 230 00:11:16,800 --> 00:11:19,519 of them we passed 100 231 00:11:19,519 --> 00:11:21,360 totally 232 00:11:21,360 --> 00:11:22,959 77 233 00:11:22,959 --> 00:11:25,279 pass 234 00:11:26,480 --> 00:11:29,200 you should be able to see all check 235 00:11:29,200 --> 00:11:31,839 details 236 00:11:34,800 --> 00:11:38,000 for each failed items 237 00:11:38,000 --> 00:11:41,040 you will see remediation recommendations 238 00:11:41,040 --> 00:11:43,120 here 239 00:11:43,120 --> 00:11:45,040 that should help you 240 00:11:45,040 --> 00:11:46,320 to remedy 241 00:11:46,320 --> 00:11:49,600 this failed item 242 00:11:49,600 --> 00:11:54,760 so this is the local scanning 243 00:11:56,320 --> 00:11:58,800 we also able to do the remote system 244 00:11:58,800 --> 00:12:01,360 scanning 245 00:12:08,079 --> 00:12:11,760 as mentioned before i have windows 10 246 00:12:11,760 --> 00:12:13,839 setup as my target 247 00:12:13,839 --> 00:12:18,800 and which is also joined local domain 248 00:12:18,800 --> 00:12:22,160 i'm going to use him js catalyte 249 00:12:22,160 --> 00:12:25,200 windows 2016 servers to scan is windows 250 00:12:25,200 --> 00:12:27,440 10 and we also can do 251 00:12:27,440 --> 00:12:29,839 that domain controller scan as well so 252 00:12:29,839 --> 00:12:31,040 we can do 253 00:12:31,040 --> 00:12:34,040 both 254 00:12:38,720 --> 00:12:41,760 so you need to choose advanced for 255 00:12:41,760 --> 00:12:45,279 remote target assistant 256 00:12:48,079 --> 00:12:51,680 you're going to use windows 10 here 257 00:12:51,680 --> 00:12:53,440 and one thing you may want to make sure 258 00:12:53,440 --> 00:12:54,480 is 259 00:12:54,480 --> 00:12:57,440 you can pin 260 00:12:57,519 --> 00:13:00,480 your remote server 261 00:13:04,959 --> 00:13:07,839 that's our 262 00:13:10,959 --> 00:13:13,440 destination windows 10 server we can 263 00:13:13,440 --> 00:13:16,240 check the name 264 00:13:18,160 --> 00:13:21,200 windows 10 4 265 00:13:21,200 --> 00:13:23,440 so once you confirm that 266 00:13:23,440 --> 00:13:26,560 you can type your system name there 267 00:13:26,560 --> 00:13:28,560 choose your system type 268 00:13:28,560 --> 00:13:30,000 it's windows 269 00:13:30,000 --> 00:13:32,079 in the future we also can do ubuntu 270 00:13:32,079 --> 00:13:37,360 scanning by level b in different video 271 00:13:37,360 --> 00:13:39,440 one thing you need to remember the win 272 00:13:39,440 --> 00:13:42,560 rm windows remote management service has 273 00:13:42,560 --> 00:13:44,320 to be up and running by default it 274 00:13:44,320 --> 00:13:46,800 should be up and running already 275 00:13:46,800 --> 00:13:49,200 if not in then you need to go back to 276 00:13:49,200 --> 00:13:52,880 see is cat pro documentation to see how 277 00:13:52,880 --> 00:13:55,120 to enable windows im how to use group 278 00:13:55,120 --> 00:13:56,560 policy 279 00:13:56,560 --> 00:13:57,600 to 280 00:13:57,600 --> 00:14:00,839 enable indesign for your 281 00:14:00,839 --> 00:14:04,560 destination username 282 00:14:05,839 --> 00:14:10,480 i'm going to use a domain admin account 283 00:14:11,760 --> 00:14:15,160 ip address 284 00:14:17,680 --> 00:14:19,680 username actually 285 00:14:19,680 --> 00:14:22,320 you need to specify the domain here as 286 00:14:22,320 --> 00:14:25,839 well using the format that required 287 00:14:25,839 --> 00:14:29,120 which is the username plus 51sec 288 00:14:29,120 --> 00:14:32,240 code just make sure your domain name is 289 00:14:32,240 --> 00:14:33,199 cracked 290 00:14:33,199 --> 00:14:36,560 username scratch password is right 291 00:14:36,560 --> 00:14:39,680 temporary pass we don't need a lot now 292 00:14:39,680 --> 00:14:42,079 after you enter the destination 293 00:14:42,079 --> 00:14:45,360 information you need to pick 294 00:14:45,360 --> 00:14:48,160 the benchmarks 295 00:14:49,040 --> 00:14:50,560 so we are going to use in windows 10 296 00:14:50,560 --> 00:14:52,639 enterprise benchmark 297 00:14:52,639 --> 00:14:53,760 we can 298 00:14:53,760 --> 00:14:57,199 choose next generation windows security 299 00:14:57,199 --> 00:14:58,720 there's a couple of other lines you can 300 00:14:58,720 --> 00:15:00,959 choose we choose level 2 301 00:15:00,959 --> 00:15:02,639 after all those 302 00:15:02,639 --> 00:15:06,240 options you select it you can save it 303 00:15:06,240 --> 00:15:08,959 it will add it into your target system 304 00:15:08,959 --> 00:15:11,279 here 305 00:15:11,360 --> 00:15:14,160 before you scan to next step you want to 306 00:15:14,160 --> 00:15:16,560 make sure you have connections to the 307 00:15:16,560 --> 00:15:19,040 target 308 00:15:21,279 --> 00:15:24,639 if you see any errors happens here you 309 00:15:24,639 --> 00:15:27,120 may want to go back to check your 310 00:15:27,120 --> 00:15:28,240 settings 311 00:15:28,240 --> 00:15:31,040 as you can see here i do see an error or 312 00:15:31,040 --> 00:15:34,480 code creating a section 313 00:15:35,360 --> 00:15:37,360 so we need to fix that 314 00:15:37,360 --> 00:15:41,040 information before we can continue 315 00:15:41,040 --> 00:15:44,079 so you choose your target system 316 00:15:44,079 --> 00:15:46,240 and choose add it 317 00:15:46,240 --> 00:15:49,920 and verify those configurations one by 318 00:15:49,920 --> 00:15:51,920 one so we notice 319 00:15:51,920 --> 00:15:55,440 we put that wrong ip here 320 00:15:55,440 --> 00:15:58,320 let's save 321 00:15:58,399 --> 00:16:00,320 and allow me to test the connection 322 00:16:00,320 --> 00:16:03,320 again 323 00:16:11,120 --> 00:16:12,079 now 324 00:16:12,079 --> 00:16:14,480 alloys calm 325 00:16:14,480 --> 00:16:16,880 connection establish it 326 00:16:16,880 --> 00:16:20,759 let's go to the next step 327 00:16:22,959 --> 00:16:24,959 choose our target system as i mentioned 328 00:16:24,959 --> 00:16:27,839 before we can add more here target 329 00:16:27,839 --> 00:16:29,600 system like we can add the domain 330 00:16:29,600 --> 00:16:32,639 controller dc 331 00:16:34,399 --> 00:16:37,120 windows 332 00:16:37,120 --> 00:16:39,360 http 333 00:16:39,360 --> 00:16:42,680 same thing 334 00:16:54,639 --> 00:16:57,120 since it's a windows server so we 335 00:16:57,120 --> 00:16:59,600 probably 336 00:16:59,680 --> 00:17:01,199 need to change 337 00:17:01,199 --> 00:17:03,279 the benchmarks so i just choose the 338 00:17:03,279 --> 00:17:04,559 automated 339 00:17:04,559 --> 00:17:07,679 subcontrols only 340 00:17:15,599 --> 00:17:17,679 save 341 00:17:17,679 --> 00:17:21,039 now we have two systems 342 00:17:22,400 --> 00:17:24,400 so you need to choose or you can choose 343 00:17:24,400 --> 00:17:26,959 multiple forefront using a control you 344 00:17:26,959 --> 00:17:30,240 can choose two of them together to scan 345 00:17:30,240 --> 00:17:32,720 i want to make sure we can go to the dc 346 00:17:32,720 --> 00:17:36,679 as well let's test connection 347 00:17:47,200 --> 00:17:48,960 so connection has been 348 00:17:48,960 --> 00:17:51,440 tested successfully 349 00:17:51,440 --> 00:17:54,799 establish it establish it 350 00:17:54,799 --> 00:17:56,640 so let's uh 351 00:17:56,640 --> 00:17:58,000 choose both 352 00:17:58,000 --> 00:18:01,720 and go to next 353 00:18:16,559 --> 00:18:21,760 we need a benchmark for our windows 10 354 00:18:21,760 --> 00:18:24,240 believe we can choose this one choose 355 00:18:24,240 --> 00:18:26,320 add 356 00:18:26,320 --> 00:18:28,559 and save 357 00:18:28,559 --> 00:18:32,160 so now it shows one so we need 358 00:18:32,160 --> 00:18:34,960 benchmarks at least one benchmark for 359 00:18:34,960 --> 00:18:37,039 each of system 360 00:18:37,039 --> 00:18:39,039 next 361 00:18:39,039 --> 00:18:42,480 again html has been selected for us 362 00:18:42,480 --> 00:18:44,320 report 363 00:18:44,320 --> 00:18:46,799 folder we keep default 364 00:18:46,799 --> 00:18:49,600 then we do start 365 00:18:49,600 --> 00:18:52,160 assessment 366 00:18:53,440 --> 00:18:55,679 this may take um 367 00:18:55,679 --> 00:18:58,240 two three minutes to get the post 368 00:18:58,240 --> 00:19:00,720 dumping since it's remote it's slower 369 00:19:00,720 --> 00:19:02,960 than doing a local 370 00:19:02,960 --> 00:19:04,880 the process is the same 371 00:19:04,880 --> 00:19:07,120 it created a connection 372 00:19:07,120 --> 00:19:09,200 and the land goes through 373 00:19:09,200 --> 00:19:12,400 all controls they need to 374 00:19:12,400 --> 00:19:15,520 validate using script 375 00:19:15,520 --> 00:19:18,160 and then validate all settings 376 00:19:18,160 --> 00:19:22,120 and then come back with report 377 00:20:50,320 --> 00:20:53,200 well after probably five minutes five 378 00:20:53,200 --> 00:20:55,200 six minutes 379 00:20:55,200 --> 00:20:56,799 the report 380 00:20:56,799 --> 00:20:59,200 has been generated 381 00:20:59,200 --> 00:21:01,600 we finished our scanning 382 00:21:01,600 --> 00:21:06,000 so you will be able to see both reports 383 00:21:06,000 --> 00:21:10,360 let's take a quick look here 384 00:21:20,159 --> 00:21:24,120 it's for windows 10. 385 00:21:32,320 --> 00:21:34,720 you also can check along 386 00:21:34,720 --> 00:21:37,440 domain controllers 387 00:21:37,440 --> 00:21:41,320 51 sec dc1 388 00:21:46,000 --> 00:21:50,159 so now we finished our remote scanning 389 00:21:50,159 --> 00:21:53,440 basically that's how you can use 390 00:21:53,440 --> 00:21:55,520 this free tool 391 00:21:55,520 --> 00:21:58,159 to validate your security configuration 392 00:21:58,159 --> 00:22:00,159 on your target system 393 00:22:00,159 --> 00:22:02,240 you don't have to pay 394 00:22:02,240 --> 00:22:06,320 any if you are only using those basic 395 00:22:06,320 --> 00:22:07,600 profiles 396 00:22:07,600 --> 00:22:10,000 for your system for windows 10 and the 397 00:22:10,000 --> 00:22:14,480 server ubuntu google clone 398 00:22:14,480 --> 00:22:17,039 if you have more other system need to be 399 00:22:17,039 --> 00:22:19,280 validated then you have to 400 00:22:19,280 --> 00:22:22,880 get the license for your pro version 401 00:22:22,880 --> 00:22:27,360 that will be in my different videos 402 00:22:27,360 --> 00:22:30,960 that's all for this video how you can 403 00:22:30,960 --> 00:22:33,520 use free tool 404 00:22:33,520 --> 00:22:36,240 cis cad lite 405 00:22:36,240 --> 00:22:39,200 to check your security settings on your 406 00:22:39,200 --> 00:22:40,799 target 407 00:22:40,799 --> 00:22:42,720 i hope you enjoyed it 408 00:22:42,720 --> 00:22:45,120 if you find anything useful in this 409 00:22:45,120 --> 00:22:46,960 video give me a thumb up 410 00:22:46,960 --> 00:22:50,080 also please subscribe my channel if you 411 00:22:50,080 --> 00:22:51,440 haven't 412 00:22:51,440 --> 00:22:55,080 thank you for watching 413 00:22:59,200 --> 00:23:02,269 [Music] 414 00:23:13,520 --> 00:23:15,600 you