In this exercise, we are going to download the Microsoft Baseline Analyzer Tool and run it against your local computer to look for vulnerabilities:
- Go to Google and search for and download Microsoft's Baseline Analyzer tool. You can also just enter MBSA and it will find it.
- Click on MBSASetup-x64-EN. The MBSA Setup wizard appears. Press Next:
Figure 10
- Click on I accept the license agreement, then press Next:
Figure 11
- On the destination folder page, press Next.
- On the start installation page, press Install, then the installation progress page will appear:
Figure 12: Installation progress
- Then, the setup will finish:
Figure 13: Installation complete
- A shortcut is placed on the desktop. Double-click it. The UAC prompt appears; press Yes:
Figure 14: MBSA shortcut
- The MBSA Management console appears; press Scan a Computer, and then at the bottom right, press Start Scan:
Figure 15: MBSA management console
- The scan starts and it downloads security update information from Microsoft. As it is going to compare the computer updates against the latest updates for Windows 10, this will take about 10-15 minutes:
Figure 16: Obtaining security updates from Microsoft
- The scan results page comes up; you will notice that the default is Score (worst first). Scroll down:
Figure 17
- You can see that the MBSA is a vulnerability scanner that would be used as a credentialed scan and that it produces some good results, but it is passive and informational, and did not try to exploit the computer at all:
Figure 18: Credentialed vulnerability scan
You will now notice if you have any vulnerabilities on your computer. There are hyperlinks below each item listed, giving you information on how to update your vulnerabilities. Look at each of these in turn and take the appropriate actions.