Directions: Perform a penetration test on a website of your choice using one of these tools:
Nmap: https://nmap.org/ (Links to an external site.)
Wireshark: https://www.wireshark.org/ (Links to an external site.)
Metasploit: https://www.metasploit.com/ (Links to an external site.)
Nmap (\"Network Mapper\") is a free and open-source utility for network discovery and security auditing. Many systems and network administrators also find it useful for tasks such as network inventory, managing service upgrade schedules, and monitoring host or service uptime. Nmap uses raw IP packets to determine what hosts are available on the network, what services (application name and version) those hosts are offering, what operating systems (and OS versions) they are running, and what type of packet filters/firewalls are in use.
Within the Nmap site, there is:Nikto is an open-source (GPL) web server scanner which performs comprehensive tests against web servers for multiple items, including over 6,400 potentially dangerous files/CGIs, checks for outdated versions of over 1,200 servers, and version specific problems on over 270 servers. It also checks for server configuration items such as the presence of multiple index files, HTTP server options, and will attempt to identify installed web servers and software. Scan items and plugins are frequently updated and can be automatically updated.
Parameters: Create a report detailing the results found by performing a vulnerability scan of a chosen website. The report should state which tool was used, the name of the target website and list the number vulnerabilities scanned for, several important examples, how many vulnerabilities were detected, and several examples