Difference between revisions of "SEC520/labs/Lab 1"
m (Protected "SEC520/labs/Lab 1": OER transfer ([Edit=Allow only administrators] (indefinite) [Move=Allow only administrators] (indefinite))) |
|||
(2 intermediate revisions by one other user not shown) | |||
Line 45: | Line 45: | ||
<ul> | <ul> | ||
<li>[http://www.kali.org/ Kali Linux Website]</li> | <li>[http://www.kali.org/ Kali Linux Website]</li> | ||
− | |||
<li>[http://www.unix.com/man-page/Linux/8/adduser/ adduser]</li> | <li>[http://www.unix.com/man-page/Linux/8/adduser/ adduser]</li> | ||
− | |||
− | |||
<li>[http://www.unix.com/man-page/Linux/8/service/ /sbin/service]</li> | <li>[http://www.unix.com/man-page/Linux/8/service/ /sbin/service]</li> | ||
− | |||
<li>[http://www.virtualbox.org/wiki/Documentation VirtualBox Documentation]</li> | <li>[http://www.virtualbox.org/wiki/Documentation VirtualBox Documentation]</li> | ||
<li>[http://docs.fedoraproject.org/en-US/Fedora_Core/5/html/Release_Notes/ Fedora Core 5 Documentation]</li> | <li>[http://docs.fedoraproject.org/en-US/Fedora_Core/5/html/Release_Notes/ Fedora Core 5 Documentation]</li> | ||
Line 68: | Line 64: | ||
<h2> <span class="mw-headline">Task #1: Install Kali Linux as Host Server on Your Hard Disk Pack (notebook or netbook) and Install VirtualBox</span></h2> | <h2> <span class="mw-headline">Task #1: Install Kali Linux as Host Server on Your Hard Disk Pack (notebook or netbook) and Install VirtualBox</span></h2> | ||
<br> | <br> | ||
− | There are many toolkits that | + | There are many toolkits that are avaible for individuals to help "harden" their computer systems...<br /><br /> |
− | |||
Examples include: <b>Live Hacking CD</b>, <b>Samurai Web Testing Framework</b>, | Examples include: <b>Live Hacking CD</b>, <b>Samurai Web Testing Framework</b>, | ||
<b>Organizational Systems Wireless Assistant.</b>, <b>Ardius</b>, <b>Operator</b>", etc. There are even distributions for the <b>Raspberry Pi</b> (although we need to have a pen testing solution support virtual machines for this course). | <b>Organizational Systems Wireless Assistant.</b>, <b>Ardius</b>, <b>Operator</b>", etc. There are even distributions for the <b>Raspberry Pi</b> (although we need to have a pen testing solution support virtual machines for this course). | ||
<br><br> | <br><br> | ||
− | TE: | + | TE: Make certain NOT to accept the default computer name. Use a smaller name (like three letters), otherwise, the telnet server package will NOT be installed by default One tookit that contained many of the penetration-testing tools taught in this course was <b>BackTrack</b>. BackTrack is a specialized distribution based on Ubuntu. A newer distribution called <b>Kali Linux</b> is a newer and more complete build of Linux Backtrack using Debian (i.e. Kali is "BackTrack 6"). There is a noticeable improvement which includes fixes to "broken packages" (less hassle to the student to setup and use), as well as better wireless support, and better flexibility for customization.<br /><br /><b>We will be using Kali Linux for this semester...</b><br /><br /> |
− | |||
− | name (like three letters), otherwise, the telnet server package will NOT | ||
− | |||
− | One tookit that contained many of the penetration-testing tools taught in this course was <b>BackTrack</b>. BackTrack is a specialized distribution based on Ubuntu. A newer distribution called <b>Kali Linux</b> is a newer and more complete build of Linux Backtrack using Debian (i.e. Kali is "BackTrack 6"). There is a noticeable improvement which includes fixes to "broken packages" (less hassle to the student to setup and use), as well as better wireless support, and better flexibility for customization.<br /><br /><b>We will be using Kali Linux for this semester...</b><br /><br /> | ||
{{Admon/important|Our Labs Assume Using a Removable Hard Disk|Although there are several ways to setup your pentration testing system, this lab will assume that you are using a removable hard disk.<br /><br /> | {{Admon/important|Our Labs Assume Using a Removable Hard Disk|Although there are several ways to setup your pentration testing system, this lab will assume that you are using a removable hard disk.<br /><br /> | ||
Whichever configuration you decide to use, your system MUST allow both the Kali Linux system to be running at the same time as your other vulnerable Windows and Linux operating systems (to conduct penetration testing). | Whichever configuration you decide to use, your system MUST allow both the Kali Linux system to be running at the same time as your other vulnerable Windows and Linux operating systems (to conduct penetration testing). | ||
− | <br><br><b>NOTE: | + | <br><br><b>NOTE: It is recommended NOT to use all disk space for the host machine, since a future assignment may require the installation of other host and VM |
− | |||
− | |||
operating system...</b>. | operating system...</b>. | ||
}} | }} | ||
Line 102: | Line 91: | ||
<li>Make certain that you can connect to the Internet (confirm by using a web-broswer)</li> | <li>Make certain that you can connect to the Internet (confirm by using a web-broswer)</li> | ||
</ol> | </ol> | ||
− | {{Admon/caution|Caution When Running XWindows as Root|It is usually a | + | {{Admon/caution|Caution When Running XWindows as Root|It is usually a "bad idea" to run XWindows as root. Running a graphical environment that has the privileges as root can cause damamge when users become accustomed to working in an everyday environment. It is suggested to create a regular user (same one that you added to group admin).<br /><br /> |
− | "bad idea" to run XWindows as root. Running a graphical environment that | ||
− | |||
− | accustomed to working in an everyday environment. It is suggested to create a regular user (same one that you added to group admin).<br /><br /> | ||
|}} | |}} | ||
<ol> | <ol> | ||
Line 114: | Line 100: | ||
</ol> | </ol> | ||
− | <pre> | + | <pre> gdebi [filename] </pre> |
− | gdebi [filename] | ||
− | |||
− | </pre> | ||
<ol> | <ol> | ||
<li value="13">Make appropriate selections to have VirtualBox application installed.</li> | <li value="13">Make appropriate selections to have VirtualBox application installed.</li> | ||
Line 129: | Line 112: | ||
<p><br> | <p><br> | ||
− | </p> | + | </p>{{Admon/tip|Other Vulnerable Linux Distributions|Although we will be |
using an outdate version of Fedora Linux, there are other Linux | using an outdate version of Fedora Linux, there are other Linux | ||
distributions of Linux that are designed with security flaws for | distributions of Linux that are designed with security flaws for | ||
Line 157: | Line 140: | ||
<li>Double-click on the VM called <b>Vulnerable Linux</b> in order to install that version of Linux from the CD drive.</li> | <li>Double-click on the VM called <b>Vulnerable Linux</b> in order to install that version of Linux from the CD drive.</li> | ||
</ol> | </ol> | ||
− | {{Admon/important|Auto Capture Keyboard Shortcut Keys|There are a number of | + | {{Admon/important|Auto Capture Keyboard Shortcut Keys|There are a number of methods to focus the keyboard and mouse on the Virtual Machine (VM) as opposed to the host machine. The user can accept the default key <b><right ctrl></b> to act as a capture toggle-switch. |
− | |||
− | opposed to the host machine. The user can accept the default key <b><right ctrl></b> to act as a capture toggle-switch. | ||
}} | }} | ||
<ol> | <ol> | ||
Line 175: | Line 156: | ||
</ol> | </ol> | ||
}} | }} | ||
− | {{Admon/important|Installing telnet-server|It may be difficult to simply | + | {{Admon/important|Installing telnet-server|It may be difficult to simply install applications from repositories for unsupported Linux distributions (like Fedora Core 5). Instead, perform the following steps: |
− | install applications from repositories for unsupported Linux | + | <ol> |
− | distributions (like Fedora Core 5). Instead, perform the following steps:<ol | + | <li> Download the rpm packages for <b>telnet-server </b>and <b>xinted</b> by clicking on the following links:<br />[http://rpm.pbone.net/index.php3/stat/4/idpl/16682910/dir/fedora_5/com/telnet-server-0.17-35.2.1.i386.rpm.html Telnet Server Download Page] (select a download mirror)<br />[http://rpm.pbone.net/index.php3/stat/4/idpl/16683039/dir/fedora_5/com/xinetd-2.3.13-6.2.1.i386.rpm.html xinetd Dependency Download Page] (select a download mirror). |
+ | </li> | ||
+ | <li>Change directory to where files were downloaded.</li> | ||
+ | <li>Install the <b>xinetd</b> dependency first, then the <b>telnet-server</b> program by using <b><nowiki>rpm -i <packagename> </nowiki></b>(you can ignore warnings. If you can't install due to public key issues, you can download public keys from the following site: [http://dl.fedoraproject.org/pub/archive/fedora/linux/core/5/ http://dl.fedoraproject.org/pub/archive/fedora/linux/core/5/].</li> | ||
+ | <li>Issue the command: <b><nowiki>/sbin/chkconfig telnet on</nowiki></b> to start the telnet server.</li> | ||
+ | </ol> | ||
+ | <br /> | ||
After installing telnet-server, edit the file <b>/etc/xinetd.d/telnet</b> and change to "no" for disable. Then you need to reload xinetd by issuing the command: <b>/sbin/service xinetd reload</b><br /><br />You should become familiar with the <code>/sbin/service</code> , <code>/sbin/chkconfig</code> , and <code>/usr/sbin/sestatus</code> to set services, and to provide information to instructor for lab sign-off. | After installing telnet-server, edit the file <b>/etc/xinetd.d/telnet</b> and change to "no" for disable. Then you need to reload xinetd by issuing the command: <b>/sbin/service xinetd reload</b><br /><br />You should become familiar with the <code>/sbin/service</code> , <code>/sbin/chkconfig</code> , and <code>/usr/sbin/sestatus</code> to set services, and to provide information to instructor for lab sign-off. | ||
}} | }} | ||
Line 193: | Line 180: | ||
<li>TELNET Server (located under "On Demand" services)</li> | <li>TELNET Server (located under "On Demand" services)</li> | ||
</ul> | </ul> | ||
− | <br>(You can alternatively list service status by issuing the command: <b>/sbin/service --status-all</b>)<br | + | <br>(You can alternatively list service status by issuing the command: <b>/sbin/service --status-all</b>)<br> |
</li><li>Proceed to Task #3</li> | </li><li>Proceed to Task #3</li> | ||
</ol> | </ol> | ||
Line 206: | Line 193: | ||
<p><br> | <p><br> | ||
− | </p>{{Admon/important|DO NOT Install Service Packs (Beyond Service Pack 1) On Windows 2003 Server|Since | + | </p>{{Admon/important|DO NOT Install Service Packs (Beyond Service Pack 1) On Windows 2003 Server|Since this course will be exploring security issues with the Windows operating systems, do not update your Window 2003 Server's OS. We will be exploiting this less-secure OS, then later "harden" this OS from attacks.}} |
− | |||
− | operating systems, do not update your Window 2003 Server's OS. We will | ||
− | be exploiting this less-secure OS, then later "harden" this OS from | ||
− | attacks. | ||
− | }} | ||
− | |||
− | |||
{{Admon/important| | {{Admon/important| | ||
− | Do Not Accept Default Computer Name (Use smaller name)| | + | Do Not Accept Default Computer Name (Use smaller name)| Make certain NOT to accept the default computer name. Use a smaller name (like three letters), otherwise, the telnet server package will NOT be installed by default (needs to be less than 15 characters).}} |
− | |||
− | name (like three letters), otherwise, the telnet server package will NOT | ||
− | |||
− | }} | ||
− | |||
− | |||
− | |||
− | |||
INSTRUCTIONS: | INSTRUCTIONS: | ||
<ol> | <ol> | ||
Line 237: | Line 209: | ||
<li>At the Windows <b>Server Post-Setup Updates</b> screen, do <b><u>NOT</u></b> perform any updates, and proceed with exiting the screen.</li> | <li>At the Windows <b>Server Post-Setup Updates</b> screen, do <b><u>NOT</u></b> perform any updates, and proceed with exiting the screen.</li> | ||
<li>You will proceed to a <b>Windows Server Post-Setup Wizard</b> to help manage your server (like installing services or roles). <b>Make certain that the following wizard settings (or roles) have been added to your Windows server Virtual Machine</b> (for later exploitation): | <li>You will proceed to a <b>Windows Server Post-Setup Wizard</b> to help manage your server (like installing services or roles). <b>Make certain that the following wizard settings (or roles) have been added to your Windows server Virtual Machine</b> (for later exploitation): | ||
− | + | <ul> | |
− | + | <li><b>NO Updates / NO Automatic Updates</b></li> | |
− | + | <li>In the <b>Manage Your Server</b> section, make the following selections (add roles): | |
− | + | <ul> | |
− | + | <li><b>IIS</b><ul><li><b>NOTE:</b> Select <b>Administration</b>, <b>Add Software</b>, view existing services, select <b>IIS</b>, click <b>Details</b>, and then select <b>FTP</b> server.</li></ul></li> | |
− | + | <li><b>SMTP SERVER</b></li> | |
− | + | <li><b>TELNET SERVER</b><ul> | |
− | + | <li><b>NOTE:</b> Select <b>Administration</b>, <b>Services</b>, scroll down the list to <b>Telnet</b>, right-click a select <b>View Properties</b>, enable telent server, <b>Apply</b> settings, and then <b>Start</b> the telent server.</li></ul></li> | |
− | + | <li><b>SSH SERVER</b> | |
− | </ | + | <ul> |
+ | <li><b>NOTE:</b>You can download and install <b>FreeSSH</b> from the following URL:<br />[http://www.freesshd.com/freeSSHd.exe http://www.freesshd.com/freeSSHd.exe]. | ||
+ | </li> | ||
+ | </ul> | ||
+ | </li> | ||
+ | </ul> | ||
+ | </li> | ||
+ | </ul> | ||
+ | </li> | ||
− | + | {{Admon/important|Verification of Running Services| | |
To verify that services are running, you can select <b>Start</b>, <b>Administration</b>, <b>Services</b>.<br /><br /><b>Note:</b> To view that SSH service is running, select the <b>On Demand</b> services tab. | To verify that services are running, you can select <b>Start</b>, <b>Administration</b>, <b>Services</b>.<br /><br /><b>Note:</b> To view that SSH service is running, select the <b>On Demand</b> services tab. | ||
|}} | |}} | ||
− | |||
<li value="9">Verify that all the above-mentioned services are running.</li> | <li value="9">Verify that all the above-mentioned services are running.</li> | ||
− | |||
− | |||
{{Admon/important|Register (Activate) Windows Server / Connectivity Issues| | {{Admon/important|Register (Activate) Windows Server / Connectivity Issues| | ||
You have 30 days to register your Windows 2003 Server. If you are experiencing connectivity issues to register your Windows 2003 Server, you can power-off Windows 2003 Server, go to<b> Virtual Box main window</b> (for your <b>Vulnerable Windows</b> server), select in the menu <b>Settings</b>, choose the <b>Network</b>tab, and change to <b>Bridged Connection</b> for the appropriate network card. When you start your Windows 2003 Server and login as <b>Administrator</b>, then you should be able to register your copy of Windows 2003 Server... | You have 30 days to register your Windows 2003 Server. If you are experiencing connectivity issues to register your Windows 2003 Server, you can power-off Windows 2003 Server, go to<b> Virtual Box main window</b> (for your <b>Vulnerable Windows</b> server), select in the menu <b>Settings</b>, choose the <b>Network</b>tab, and change to <b>Bridged Connection</b> for the appropriate network card. When you start your Windows 2003 Server and login as <b>Administrator</b>, then you should be able to register your copy of Windows 2003 Server... | ||
|}} | |}} | ||
− | + | <li value="10">Make certain that <b>Firewall is DISABLED</b>.</li> | |
− | |||
− | |||
− | |||
− | |||
− | |||
<li>Proceed to "Completing the Lab".</li> | <li>Proceed to "Completing the Lab".</li> | ||
− | + | </ol> | |
<p><b>Answer Task #3 observations / questions in your lab log book.</b> | <p><b>Answer Task #3 observations / questions in your lab log book.</b> | ||
</p><p><br> | </p><p><br> | ||
</p> | </p> | ||
− | |||
<h1> <span class="mw-headline"> Completing the Lab </span></h1> | <h1> <span class="mw-headline"> Completing the Lab </span></h1> | ||
Line 290: | Line 261: | ||
<li>Completed Lab 1 notes.</li> | <li>Completed Lab 1 notes.</li> | ||
</ol> | </ol> | ||
− | + | ||
− | |||
<h1> <span class="mw-headline"> Preparing for Quizzes </span></h1> | <h1> <span class="mw-headline"> Preparing for Quizzes </span></h1> | ||
Latest revision as of 14:59, 21 July 2023
Setup for Labs
Introduction
- This lab teaches the student how and why attackers break into systems. For this purpose everyone will be a "victim" in the class as well as a "bad guy". Generally, we try to envision a network server environment.
- Unfortunately, performing penetration system testing on an organization's network without their consent can lead to serious consequences. The college has created a lab that allows students to perform penetration testing in a safe environment - it is called the IFS Lab. This lab is in heavy demand due to the IFS program, and may not be available for SEC520 students. Another method to encourage the "safe and permitted practice of penetration testing at the college" is to have students host vulnerable operating systems as virtual machines on their host computer system (i.e. Hard Disk Packs).
- This lab assumes that you already have the required materials (listed below in the Required Materials section), and are ready to perform this lab.
Objectives
- Install Kali Linux (host) on hard disk pack (or other suitable configuration).
- Install Virtual Machine application called VirtualBox on host OS (Kali Linux).
- Setup and install a vulnerable Linux OS as a Virtual Machine on the host.
- Setup and install Windows 2003 Server as a Virtual Machine on the host.
Required Materials
- SATA Hard Disk in removable disk tray (Note: can use existing Notebook / Netbook with VMware)
- Kali Linux Installation DVD (Refer to methods to obtain and burn media in main page).
- Vulnerable Linux Installation DVD (Refer to methods to obtain and burn media in main page).
- Windows 2003 Server Installation CD (Refer to methods to obtain and burn media in main page).
- Lab Logbook (Lab1 Reference Sheet) (to make notes and observations).
Prerequisites
- None (First Lab)
Online Tools and References
- Kali Linux Website
- adduser
- /sbin/service
- VirtualBox Documentation
- Fedora Core 5 Documentation
- Windows 2003 Server Documentation
- Online MS Windows Command Reference
Course Notes
Performing Lab 1
Task #1: Install Kali Linux as Host Server on Your Hard Disk Pack (notebook or netbook) and Install VirtualBox
There are many toolkits that are avaible for individuals to help "harden" their computer systems...
Examples include: Live Hacking CD, Samurai Web Testing Framework,
Organizational Systems Wireless Assistant., Ardius, Operator", etc. There are even distributions for the Raspberry Pi (although we need to have a pen testing solution support virtual machines for this course).
TE: Make certain NOT to accept the default computer name. Use a smaller name (like three letters), otherwise, the telnet server package will NOT be installed by default One tookit that contained many of the penetration-testing tools taught in this course was BackTrack. BackTrack is a specialized distribution based on Ubuntu. A newer distribution called Kali Linux is a newer and more complete build of Linux Backtrack using Debian (i.e. Kali is "BackTrack 6"). There is a noticeable improvement which includes fixes to "broken packages" (less hassle to the student to setup and use), as well as better wireless support, and better flexibility for customization.
We will be using Kali Linux for this semester...
INSTRUCTIONS:
- Use your Hard Disk Pack solely for this course: Do not share the contents with this diskpack with any other courses that you are taking. Remember: this is a course dealing with "Internet Security" which means that you could lose your work if you do something wrong.
- Obtain the Kali Linux installation media (eg. DVD, USB Stick).
- Insert your Hard Disk Pack and Kali Linux CD into your lab machine.
- Boot your lab machine, and at the BIOS display, press F10 (password: ENTER) and then select the CD/DVD drive containing the Kali Linux install media for boot selection.
- Select the first INSTALL option in the Kali Linux startup menu.
- Accept the recommended or default selections during the install. Remember to write down any passwords (do not forget them!). You may want to (when prompted) add a non-existent username to the administrator's group that you can add later to have admin access.
- When you have completed your install, remove the installation media, restart your Kali Linux machine.
- Make certain that you can connect to the Internet (confirm by using a web-broswer)
- You can use the Synaptic Package Manager (graphic tool) or the Linux commands apt-get to install other applications that you wish to use in on your system (eg. different web-browser).
- It is recommended NOT to graphically install VirtualBox on your Kali machine. The lab's author has had success with installing VirtualBox (as a .deb file) from the main website.
- Download the appropriate VirtualBox .deb file (32/64 bit) from the following link:
https://www.virtualbox.org/wiki/Downloads - After the file has downloaded, open a Linux shell, go to the directory containing the downloaded file Issue the following command as root:
gdebi [filename]
- Make appropriate selections to have VirtualBox application installed.
- Start the VirtualBox application. If the appliation does not appear in any of the menus, simply run the virtualbox command in root in a shell terminal.
- Proceed to Task #2
Answer the Task #1 observations / questions in your lab log book.
Task #2: Install / Setup Vulnerable Linux OS as a Virtual Machine
INSTRUCTIONS:
- In your regular account, run a graphical X-Windows session.
- Obtain and burn in the image of Fedora Core 5 onto a bootable DVD.
Here is a link to a downloadable source: http://dl.fedoraproject.org/pub/archive/fedora/linux/core/5/i386/iso/FC-5-i386-DVD.iso
( Refer to Required Materials) - Insert the Vulnerable Linux (FC5) installation DVD into the DVD Drive.
- From the Applications menu, select System Tools, then select Oracle VM VirtualBox.
- Click on the New buttoni, and click on Next to proceed.
- Enter a name for the Vulnerable Linux system (we will refer to the name of Vulnerable Linux System for the duration of these labs. Make certain that the OS Type is Linux, and the Version is Linux 2.6, and then click on Next to proceed.
- Accept the default Base memory size, and click Next to proceed.
- Accept all defaults for the Virtual Hard Disk screen, and click Next two times to proceed.
- Accept the default Storage Type (i.e. "Dynamically expanding storage"), and proceed to the next screen.
- In the Virtual Disk Location and Size, accept the default name, and set the Size of the Partition to 10 GB and proceed to the final screen.
- In the Summary screen, verify the information, and click Finish to finish the VM setup.
- Double-click on the VM called Vulnerable Linux in order to install that version of Linux from the CD drive.
- Accept the defaults in the Anaconda installation wizard,
but overide for Eastern Timezone. Select and remember a suitable root
password. In the software packages section to include, select Web Server. In addition, select the Customize (i.e. Customize Now, and make the following package selections:
- FTP Server
- Mail Server
- Network Servers
- Server Configuration Tools
- Complete remaining screens to start installation - the installation process should take approximately 30 minutes to complete.
- After reboot, the Setup Agent wizard will allow the user to make selections.
- Make certain to DISABLE the Firewall and DISABLE SELinux
- Create an unprivileged user (remember the password).
- Accept all other defaults and allow the system to reboot for changed to take effect.
- After reboot, verify that you can login, make the menu selections System, Administration, Server Settings, Services (or issue the command system-config-services to graphically activate and verify all each of the following services are running:
- Web (HTTPD) Server
- FTP (VSFTP) Server
- Mail Server
- SSH Server
- TELNET Server (located under "On Demand" services)
(You can alternatively list service status by issuing the command: /sbin/service --status-all)
- Proceed to Task #3
Answer Task #2 observations / questions in your lab log book.
Task #3: Install / Setup Windows 2003 Server as a Virtual Machine
INSTRUCTIONS:
- Obtain an installation CD of Windows 2003 Server (refer to Required Materials).
- Create another Virtual Machine (20 GB) to be called Vulnerable Windows.
- Install Windows Server 2003 (Enterprise Edition) on an NTFS partition. Follow similar selections for settings (such as Eastern Time Zone, administrative password) like you did in Task #2.
!!! NOTE: Make certain NOT to accept the default computer name. Use a smaller name (like three letters), otherwise, the telnet server package will NOT be installed by default - Choose Application Server as one of the packages.
- Complete the other defaults, and allow the system to reboot.
- Upon boot-up, similate pressing the <ctrl><alt><del> keys by selecting in the Virtual Box Window menu: Machine, then selecting Insert Ctrl-Alt-Del in order to allow the login screen to appear.
- At the Windows Server Post-Setup Updates screen, do NOT perform any updates, and proceed with exiting the screen.
- You will proceed to a Windows Server Post-Setup Wizard to help manage your server (like installing services or roles). Make certain that the following wizard settings (or roles) have been added to your Windows server Virtual Machine (for later exploitation):
- NO Updates / NO Automatic Updates
- In the Manage Your Server section, make the following selections (add roles):
- IIS
- NOTE: Select Administration, Add Software, view existing services, select IIS, click Details, and then select FTP server.
- SMTP SERVER
- TELNET SERVER
- NOTE: Select Administration, Services, scroll down the list to Telnet, right-click a select View Properties, enable telent server, Apply settings, and then Start the telent server.
- SSH SERVER
- NOTE:You can download and install FreeSSH from the following URL:
http://www.freesshd.com/freeSSHd.exe.
- NOTE:You can download and install FreeSSH from the following URL:
- IIS
- Verify that all the above-mentioned services are running.
- Make certain that Firewall is DISABLED.
- Proceed to "Completing the Lab".
Answer Task #3 observations / questions in your lab log book.
Completing the Lab
Arrange evidence for each of these items on your screen, then ask your instructor to review them and sign off on the lab's completion:
- Booted Kali Linux (host) with running Vulnerable Linux (VM) and Vulnerable Windows 2003 Server (VM).
- Proof of following installed servers, applications, or settings on your vulneable Linux System:
- FTP, SMTP, Web Server, SSH Server, TELNET, NO Firwall is running, SELinux is disabled
- Proof of following installed servers, applications, or settings on your vulnerable Window 2003 Server:
- NTFS Partitions, IIS, SSH Server, TELNET, NO Firewall is running
- Completed Lab 1 notes.
Preparing for Quizzes
- Briefly list the steps to setup a computer system to practice penetration testing (for a Linux and Windows machine) on your own (without having to test another organization's computer system and seeking their approval).
- Write a Linux command to run Xwindows from a text-based console (assuming that Xwindows has been installed).
- Write a Linux command to display the status of all running or non-running services on the system.
- Write a Linux command to confirm that the firewall is disabled.
- List the steps to add the user called msaul in the sudoer's file in order to run super-user utilities.
- Write a Linux command to create an unpriviledged user called user1. You can assume that you are currently logged in a regular user, but you have administration priviledges in the sudoer's file.
- List 3 important types of settings to consider when creating a Virtual Machine using a VM application such as VirtualBox.
- Write a Linux command to change the password of an existing user.
- Write a Linux command to start the SSH server.
- Why is it userful to setup a host (with virtual machines) as it relates to penetration testing?