Home security labs... who has them?

Re: Home security labs... who has them?

Cisco 2950 switch
Cisco 1924 switch
Cisco 2503 router (1 eth, 1 ser)
Cisco 2524 router (1 eth, 1 ser) back to back with 2503
Cisco 870 soho router
Linksys WRT54G
1 - rackmount server 2003 r2 running vmware (700+gb backend storage)
1 - winXP (phys)
1 - winXP (vm)
1 - win2k server (vm)
1 - vista (vm)
1 - win7 (phys)
1 - mandrake (vm)
1 - mandrake (phys)
1 - redhat (phys)

I am looking at picoTux units, as well as expanding the vm's on the w2k3r2 server.
I like the idea of separate units on my vlans. The dual nic's on the server come in handy.

I ran into a serious power drag, most of the time most of it is shutdown.
Keeping it cool isn't that bad as I am relegated to the dark abyss of the basement, it stays a cool 62 to 65 F.

Re: Home security labs... who has them?

My lab is mostly virtual machine driven across 3 different systems depending on the type of code I'm writing or the project I'm working on. I personally run VMware workstation and love it. It's nice to create a VMWare image on one computer and be able to drag it over to any other system of any OS and just start it up.

Other good VMware alternatives are VirtualBox (from sun) and Microsoft has one called Virtual PC. I've played around with virtualbox also but I'm partial to VMware. I haven't really had the time or desire to mess around with VirtualPC.

Personal pentesting lab

This is a grey line. I'm not sure if this is against the rules or not, so I won't post the question but rather test the waters with the concept.


Is asking a hardware question about a personal pentesting lab against the rules?

Re: Personal pentesting lab

Not at all. Discussion of what hardware (or software) might make an ideal pentest lab is fine. My own consists of 4 PCs, a couple of switches, and a couple of routers.

On the other hand, asking how to lack the local bank using something you saw on "Leverage" the other night... Well, let's just say the results won't be pretty.

Re: Personal pentesting lab

I have been using a virtual setup, but I was thinking about going to a hardware setup. This is going to be a self-contained system for personal use.

I was thinking of starting with:

1 Workstation (Running XP)
--- Cat5 ---
1 Switch (Cisco managed)
--- Cat5 ---
1 Server (Running SLAMPP)
--- Cat5 ---
1 Wireless router

1 Attack Laptop

• This sounds like the basics to me, but wondering if I am missing something?
• Also, I was going with SLAMPP because the co-developers are in my local LUG, but would the "30 day free trial" of Red Hat be better?

Re: Personal pentesting lab

I'd add a box in running VMs and set up a small Active Directory Domain.

Re: Personal pentesting lab

The only issue that would be against the rules would be that the topic was recently discussed with many answers previously provided about 3 weeks ago. If the previous thread didn't answer your questions on the topic and your question was still a good one, you could have continue the only 3 week old thread.

I've merged this thread with the old one so all of the previously answered questions and requests are provided in one place.

Re: Personal pentesting lab

My apologies.

I searched for "pentesting lab" and "hacking lab" before posting and didn't find anything that would work for me. The search for "security lab" slipped my mind.

Re: Personal pentesting lab

No worries. You have had a good history here so far, and it didn't look like an intentional mistake. I didn't even issue a warning, I just merged the threads and provided information on how things could have been handled better. That is how things seem to work here. Occasional issues are overlooked when people have a good history and don't cause problems.

Cheers.

Re: Personal pentesting lab

Here's another. It's almost a checklist for what a lab:
http://www.securityaegis.com/network-pentest-lab/

Re: Home security labs... who has them?

I've been toying with the idea of setting up a home security testing network, but I have three main problems:

1. Space - My room is not exactly small, but there is already a lot in it. I'm living at home for my first year of college, so I can't exactly move a ton of things around, lest the step-dad throw a hissy fit. I've discussed using our basement (it's huge, cold, and mostly empty, but a bit too damp) but the verdict's still not out. Solution: It seems like VM is the way to go. That's another idea I had toyed with but not tried yet.
2. Power - For the same reasons, I can't be running up a large power bill or I may find myself homeless rather quickly. Right now I have a desktop computer re-purposed as a server, and I'm going to see how it affects the bill (I started it December 1st, and will check on January 1st). Again, the solution seems to be VM. And again, I kick myself for not having done this already.
3. Time - College is my main concern right now. Next semester I'll have a 5-course schedule running from 8:30 AM to 9:30 PM most days. Fridays I have off, but I'm looking for a job to fill that slot. How much time do you guys dedicate to setting up/maintaining/running these networks?

I definitely have an interest in getting something like this together, but I'm pretty much the only technically-inclined person in my family and neighborhood, so having decent conversations about it is difficult at best. Regardless, you guys have shown me that VM is the panacea for my problems, and I thank you!

Re: Home security labs... who has them?

1. Space - Mine is in a wire bookcase, 4'x5'x18"
2. Power - No idea, I never bothered to check it by itself. Since it runs infrequently, it's hard to say without throwing a wattmeter on it. Even then, the figures would be
   variable. Sometimes several machines are running, sometimes it's just one.
3. Time - Setup took about a day once I had all the components. Run time depends on when I can fit it in. As a matter of fact, I'd planned on running a new challenge today - one of the Foundstone HacMe series I've put off several times- but I client called with an emergency last night, and it looks like my New Year's will be spent in their server room.

Re: Home security labs... who has them?

Okay, I'll play. Might as well skew the statistics.

1. Space - Two heavy duty Edsal(1) shelving units, 48"x18"x72", large desk (which I'm about to replace with a table), various bookcases, tables, one four-drawer legal sized filing cabinet, two two-drawer filing cabinets... This room would be considered a family room in size.
2. Power - You don't want to know. There are two routers, two 8 port KVMs, two monitors, 10 desktops of various persuasion, an 4-in-1 inkjet printer, a couple of laptops, all running all the time, and another 5 or 6 desktops that can be fired up if necessary.
3. Time - The initial setup has taken years, as things move into or out of the mix. I spend at least an hour every day, looking at logs, and now and then still messing with the internets in general.

Am I nuts? Sure, but you already knew that.

I should note that one of these computers dates from 1995 (it's a Compaq, with a whopping 64 mb of memory, and TWO gigabytes of storage. Of course, since it's OpenBSD, the OS takes up about 3% of the space (no windowing system whatsoever, thanks), and even with serious logging it still is less than half used. If it weren't for that danged /usr/local, it would be far less.

1. http://www.homedepot.com/Storage/h_d...atalogId=10053

Re: Home security labs... who has them?

Preface: This post assumes all software to be running on a Windows machine. I would have ditched it for Linux ages ago, but I need it for college.

I've looked into VMWare and found it to be almost exactly what I need! The download process was a pain (No "personal" edition so I had to make up some company information) but other than that it went well. As it turns out, however, you can only have either VMWare Player or Server installed. So my question is, which version is better suited for a home pen-testing network? I ask this knowing little about the two, but what I have found so far is:

• Server supports the ever-handy "snapshot" feature I have read many of you talking about
• Player is much smaller and apparently runs much faster
• Server has some graphical issues (Not much of a concern, but nice to know)

Can anyone confirm or deny this information? Currently, I have Player running and I am messing around with it a bit. I would like to make a firm decision as to which to use early on. I have read a few posts (linuxappfinder, ubuntuforums, gooddells) which answered some questions and raised others. Of course there is still one more issue...

VirtualBox looks promising. It has an open source version, which is always a plus in my eyes. It looks like it has a smaller footprint, a much better download/install/register (or lack of registration) process, and a better community. As before, can anyone confirm this? Preferably someone who has used both programs and can provide some personal insight.

As always, input is appreciated greatly.

Re: Home security labs... who has them?

WOW... there are some really good posts here. Thank you all sooo much for providing feed back. I think to help be more green I am going to move some of my lab systems to VM's. I know my power bill will thank me in the end.

It is also nice to see I am not the only one up at night working and learning in my lab. It is nice when you have a better lab then your company, for maybe 1/100th of the cost. :)

I would like to see this thread keep going so any new hackers out here looking to build a lab, what gear are you looking at? Are there specific computers you are looking for and if so, give a brief reason. Processor, memory or cost to name but a few reasons.

I think our community is so great because we all want to help each other learn more about computers and security. That is why I keep coming back and I hope each of you will share. I know there is someone out there wanting to learn something about computer security and pentesting and just does not know where to start. This is a great piece of history that will help others learn and grow the community.

Thanks so much to everyone.

xs