This document provides instructions for a lab activity involving analyzing vulnerability assessment reports from Nmap and Nessus vulnerability scanners. The document explains that Nmap identifies hosts, operating systems, open ports and services while Nessus identifies software vulnerabilities. Students will review sample reports from both tools and answer questions to identify details about the scanned systems. They will also search the Common Vulnerabilities and Exposures (CVE) database to learn more about identified vulnerabilities.