Vulnerability Assessment and Methodology: What can you expect from it?