Nmap Vulnerability Scan

Overview

This project demonstrates an Nmap vulnerability scan performed on a Metasploitable 2 virtual machine in my home lab. The scan results were analyzed and visualized using the ELK stack (Elasticsearch, Logstash, and Kibana) to create a detailed report and dashboards for easy information retrieval.

Key Findings

• Identified multiple vulnerabilities including:

  • ftp-vsftpd-backdoor on port 21

  • distcc-cve2004-2687 on port 3632

  • rmi-vuln-classloader on port 1099

• Detected services and their configurations, e.g., Apache Jserv and OpenSSH.

Conclusion

This project demonstrates a thorough vulnerability scan workflow and visual analysis using Nmap and the ELK stack. The process provides an effective way for SOC analysts to identify and report vulnerabilities in a systematic manner.