Recommended
More Related Content
What's hot
What's hot (18)
Similar to The Semi Comprehensive Guide To Building a Home Lab
Similar to The Semi Comprehensive Guide To Building a Home Lab (20)
Recently uploaded
Recently uploaded (20)
The Semi Comprehensive Guide To Building a Home Lab
- 1. The Semi-Comprehensive Guide to Building a Home Lab Andrew Williams
- 2. whoami ● Over thirteen years of IT and Information Security Experience ● MS in Management of Information Systems w/ Information Security Concentration from the University of Alabama at Birmingham ● CISSP, CEH, Linux+, Security+, ECSA ● Founder of HUNTSEC infosec meetup ● A nerd with a home lab ● Does anybody read these things?
- 3. Agenda ● Get started with a home lab ● Move to advanced hardware ● Fill lab with VMs ● Add additional pieces to your lab ● Look at things you can do with a lab
- 4. Why Build a Home Lab? ● Test new techniques/Configurations ● Gain experience which looks good on a resume - Build Skills ● Exposure to OSs you may not otherwise afford ● Ability to roll back mistakes easily (sometimes) ● It’s Fun ● Might allow you to answer the ultimate question
- 5. Hardware Beginner Level ● Notebook or Desktop ● 500 GB Storage ● All the RAM ● I5 (I7 would be better)
- 7. Software Beginner Level - Choose ● VMware Workstation or Fusion ● VMware Player ● VirtualBox ● Parallels
- 8. I once tried to setup a lab with Hyper-V... this has been widely regarded as a bad move.
- 9. Hardware Moderate to Advanced Level
- 10. Hardware Moderate to Advanced Level
- 11. Hardware Moderate to Advanced Level
- 12. Hardware Moderate to Advanced Level Old Desktops Can Work
- 13. Hardware Moderate to Advanced Level Intel NUC is Better • I7 Intel NUC • 32 GB RAM • 500 GB SSD • Total Cost: Roughly $1000
- 14. Software Moderate to Advanced Level VMware ESXi Xenserver
- 15. You’ve Got a Hypervisor, Now What? - Linux/Unix • Kali Linux • Ubuntu • CentOS • Free/Open BSD • Virtual Appliances
- 16. You’ve Got a Hypervisor, Now What? - Windows • XP, Sadly Still in Use • Dreamspark/Microsoft Imagine (.edu) • Evaluations • IE Developer Trials
- 17. You’ve Got a Hypervisor, Now What? - Deliberate Targets • Windows - Ninite • Windows - oldversion.com • Metasploitable • Vulnhub • Damn Vulnerable Linux • Metasploit Baseline Builder
- 18. Practice Virtualization - Yes You Heard Me • ESXi • Xenserver
- 19. Storage - Freenas Enable VM Migration, Store all the things Any desktop with at least 4 GB of Memory (more is better) At least 4 drives (Get Red) 8 GB Flash Drive
- 20. PFSense • Isolation • VPN • Firewall Experience (there’s that word again)
- 22. What’s Next • Security Onion • Puppet/Ansible/ Chef • GRR • Memory Analysis • Malware Analysis • SOS Sysmon
- 23. What’s Next • Weidman • Nessus
- 24. Resources ● @andrewdwilliams ● Newegg.com ● https://az412801.vo.msecnd.net/vhd/VMBuild_20141027/VMware/IE8/Windows/IE8.XP.For.Windows.VMware.zip ● http://www.raspbsd.org ● https://xenserver.org ● https://www.vulnhub.com ● https://marketplace.vmware.com/vsx/ ● https://www.virtualbox.org ● https://twit.tv/shows/know-how/episodes/78 ● https://www.tenable.com/products/nessus-home ● https://store.netgate.com/SG-3100.aspx ● http://store.vmware.com/store/vmware/en_US/home
- 25. Resources ● https://www.vmware.com/products/workstation-player.html ● https://www.microsoft.com/en-us/evalcenter/ ● https://ninite.com ● http://www.oldversion.com ● https://developer.microsoft.com/en-us/microsoft-edge/tools/vms/ ● https://imagine.microsoft.com/en-us/custom/Dreamspark ● https://www.parallels.com/products/desktop/buypd3/?full ● https://docs.microsoft.com/en-us/virtualization/hyper-v-on-windows/quick-start/enable-hyper-v ● https://github.com/rapid7/metasploit-baseline-builder ● http://vmiss.net/2017/01/03/why-nested-esxi-is-an-essential-part-of-your-home-lab/
- 26. Resources ● https://information.rapid7.com/metasploitable-download.html ● http://www.computersecuritystudent.com/SECURITY_TOOLS/DVL/lesson1/ ● http://www.freenas.org ● https://www.pfsense.org ● https://securityonion.net ● https://github.com/google/grr ● https://www.youtube.com/watch?v=vBGnQuD8uX0 ● https://github.com/SwiftOnSecurity/sysmon-config ● https://www.tenable.com/products/nessus-home ● https://www.nostarch.com/pentesting ● https://github.com/puppetlabs/puppet
Editor's Notes
- I have evolved a home lab over many years, starting with some Server 2003 machines about 13 years ago.
- This is the talk I would want if I were starting over today. Hopefully help you avoid some mistakes I’ve made.
- You can build skills that are directly transferable to your resume and applicable for potential employers.. Knowing how this is put together is important knowledge on the path to infosec pro. Everyone has a test environment. Some people also have a separate production environment. Exposure to tech that might otherwise be expensive. Test ideas before bringing them to your organization. You can roll back mistakes on VMs. It’s also fun. Everyone has a test environment. Some people also have a separate proc
- It’s may seem counter intuitive, but a good notebook or desktop is all you need to get started. Mac, Windows, or Linux, doesn’t matter. But a mac can also run Mac VMs. Bonus you’ve got a good general purpose machine when not vm
- RasPis are also a good place to start. Prices for these start around 35 dollars. Can run Linux or BSD. Have used this to run DNS, although I should have gotten a newer model to improve performance. But you can learn real Linux skills with one of these for cheap, and learn about real infosec skills and concepts as well.
- To make virtualization work, what you need is a hypervisor. There are two types but for the beginner just getting started you want a type 2 hypervisor VMware is gold standard, all the features, lots of premade virtual appliances $80 Fusion $250 Workstation VMware player - free no snapshots Virtual Box - free, cross platform, good feature set, lacks some polish, get what you pay for Parallels -Another choice on the Mac
- Hyper-V is built into win10 pro, ent, and education. Makes some things harder than vmware (networking, mounting drives, sharing files) but it can be done
- You can use refurbished servers from places like tiger direct but they sound like this…
- and use so much power…
- this guy’s happy, not to mention the cooling issues
- I’ve used them to run server OSs and hypervisors. I’ve even run Server 2008 on a notebook before.
- But these are the way to go. Small and quiet. And you can still use the notebook as part of your lab
- At this point you need a type 1 hypervisor, one that runs directly on the hardware without a host OS. 2 choices VMware ESXi -gold standard, but they charge for the cool features like migration, where I started, which is useful to this day Citrix Xenserver - #2 so they try harder, migration is free, easier to update, most easily managed from Windows
- Regardless of the type of hypervisor you have, you are going to want software for the VMs. Kali is an obvious choice especially on a notebook- 1st thing I set up Ubuntu or Debian - 1 of the two main branches of Linux in my mind CentOS - The other main branch and essentially Redhat Enterprise Don’t forget BSD’s - gets you a true UNIX - often poses attackers more of a challenge if not experienced
- XP is sadly still in use (and still supported in POSs and ATMs) Win10 and Server 2016 are the other obvious choices Dreamspark/Microsoft Imagine Microsoft Evaluations IE Developer trials (XP, 7, 8, 10) Newegg - Win10 under $200
- Now you may want to make your windows targets more realistic that’s where Ninite comes in - lets you download and install a lot of popular software easily As well as old versions.com lets you install old versions of windows apps with known vulnerabilities Metasploitable and Damn Vulnerable Linux are some great downloadable linux target vas Vulnhub also has some target vas Metasploitable baseline builder automate the generation of 23 different windows targets - new this week
- Something else you can do, even with a type 2 hypervisor on a notebook, is get experience running Virtualiztion software setup clusters inside a vm I’ve done this on a MBP VMISS has a great blog post on how to do this.
- Nas is a great add on for a home lab Gain experience with iSCSI, RAID, and file sharing protocols - raid experience alone has been helpful in my work life free version of an enterprise grade product Enable VM migration Just need a lot of drives and a 8GB flashI RAID Levels
- Gain experience with a enterprise grade Firewall/UTM Isolate your home lab network VPN Firewall experience directly translates to managing firewall in the enterprise (tivo story) Old pc with intel nice or linked box or run it in a vm
- I used a tp-link, but the key here is to get a smart switch gives you features above and beyond a cheap switch VLANS, Span Port, LAG
- What are some other things you can do? Run security Onion Learn to manage systems at scale with puppet/ansible/or chef GRR -Enterprise grade incident response memory analysis - pause vm Malware analysis- Coleman Kane SOS Sysmon
- Or you have all you need to work through Georgia Weidman’s book on pen testing or get started with Nessus Home