Open main menu

CDOT Wiki β

Changes

SEC520/labs/Lab 1

67 bytes removed, 14:35, 31 January 2018
no edit summary
<h2> <span class="mw-headline">Task #1: Install Kali Linux as Host Server on Your Hard Disk Pack (notebook or netbook) and Install VirtualBox</span></h2>
<br>
There are many toolkits that are avaible for individuals to help "harden" their computer systems...<br /><br />
Examples include: <b>Live Hacking CD</b>, <b>Samurai Web Testing Framework</b>,
<b>Organizational Systems Wireless Assistant.</b>, <b>Ardius</b>, <b>Operator</b>", etc. There are even distributions for the <b>Raspberry Pi</b> (although we need to have a pen testing solution support virtual machines for this course).
<br><br>
TE: Make certain NOT to accept the default computer name. Use a smaller name (like three letters), otherwise, the telnet server package will NOT be installed by defaultOne tookit that contained many of the penetration-testing tools taught in this course was <b>BackTrack</b>. BackTrack is a specialized distribution based on Ubuntu. A newer distribution called <b>Kali Linux</b> is a newer and more complete build of Linux Backtrack using Debian (i.e. Kali is "BackTrack 6"). There is a noticeable improvement which includes fixes to "broken packages" (less hassle to the student to setup and use), as well as better wireless support, and better flexibility for customization.<br /><br /><b>We will be using Kali Linux for this semester...</b><br /><br />
{{Admon/important|Our Labs Assume Using a Removable Hard Disk|Although there are several ways to setup your pentration testing system, this lab will assume that you are using a removable hard disk.<br /><br />
Whichever configuration you decide to use, your system MUST allow both the Kali Linux system to be running at the same time as your other vulnerable Windows and Linux operating systems (to conduct penetration testing).
<br><br><b>NOTE: It is recommended NOT to use all disk space for the host machine, since a future assignment may require the installation of other host and VM
operating system...</b>.
}}
<li>Make certain that you can connect to the Internet (confirm by using a web-broswer)</li>
</ol>
{{Admon/caution|Caution When Running XWindows as Root|It is usually a "bad idea" to run XWindows as root. Running a graphical environment that has the privileges as root can cause damamge when users become accustomed to working in an everyday environment. It is suggested to create a regular user (same one that you added to group admin).<br /><br />
|}}
<ol>
<p><br>
</p><{{Admon/tip|Other Vulnerable Linux Distributions|Although we will be
using an outdate version of Fedora Linux, there are other Linux
distributions of Linux that are designed with security flaws for
<li>Double-click on the VM called <b>Vulnerable Linux</b> in order to install that version of Linux from the CD drive.</li>
</ol>
{{Admon/important|Auto Capture Keyboard Shortcut Keys|There are a number of methods to focus the keyboard and mouse on the Virtual Machine (VM) as opposed to the host machine. The user can accept the default key <b>&lt;right ctrl&gt;</b> to act as a capture toggle-switch.
}}
<ol>
<p><br>
</p>{{Admon/important|DO NOT Install Service Packs (Beyond Service Pack 1) On Windows 2003 Server|Since this course will be exploring security issues with the Windows operating systems, do not update your Window 2003 Server's OS. We will be exploiting this less-secure OS, then later "harden" this OS from attacks.}}  
{{Admon/important|
Do Not Accept Default Computer Name (Use smaller name)| Make certain NOT to accept the default computer name. Use a smaller name (like three letters), otherwise, the telnet server package will NOT be installed by default (needs to be less than 15 characters).}}    
INSTRUCTIONS:
<ol>
<li>At the Windows <b>Server Post-Setup Updates</b> screen, do <b><u>NOT</u></b> perform any updates, and proceed with exiting the screen.</li>
<li>You will proceed to a <b>Windows Server Post-Setup Wizard</b> to help manage your server (like installing services or roles). <b>Make certain that the following wizard settings (or roles) have been added to your Windows server Virtual Machine</b> (for later exploitation):
<ul> <li><b>NO Updates / NO Automatic Updates</b></li> <li>In the <b>Manage Your Server</b> section, make the following selections (add roles): <ul> <li><b>IIS</b><ul><li><b>NOTE:</b> Select <b>Administration</b>, <b>Add Software</b>, view existing services, select <b>IIS</b>, click <b>Details</b>, and then select <b>FTP</b> server.</li></ul></li> <li><b>SMTP SERVER</b></li> <li><b>TELNET SERVER</b><ul> <li><b>NOTE:</b> Select <b>Administration</b>, <b>Services</b>, scroll down the list to <b>Telnet</b>, right-click a select <b>View Properties</b>, enable telent server, <b>Apply</b> settings, and then <b>Start</b> the telent server.</li></ul></li> <li><b>SSH SERVER</b> <ul> <li><b>NOTE:</b>You can download and install <b>FreeSSH</b> from the following URL:<br />[http://www.freesshd.com/freeSSHd.exe http://www.freesshd.com/freeSSHd.exe]. </li> </ul> </li> </olul> </li> </ul></li>
</p>{{Admon/important|Verification of Running Services|
To verify that services are running, you can select <b>Start</b>, <b>Administration</b>, <b>Services</b>.<br /><br /><b>Note:</b> To view that SSH service is running, select the <b>On Demand</b> services tab.
|}}
<ol>
<li value="9">Verify that all the above-mentioned services are running.</li>
</ol>
 
{{Admon/important|Register (Activate) Windows Server / Connectivity Issues|
You have 30 days to register your Windows 2003 Server. If you are experiencing connectivity issues to register your Windows 2003 Server, you can power-off Windows 2003 Server, go to<b> Virtual Box main window</b> (for your <b>Vulnerable Windows</b> server), select in the menu <b>Settings</b>, choose the <b>Network</b>tab, and change to <b>Bridged Connection</b> for the appropriate network card. When you start your Windows 2003 Server and login as <b>Administrator</b>, then you should be able to register your copy of Windows 2003 Server...
|}}
 <ol> <li value="10">Make certain that <b>Firewall is DISABLED</b>.</li> </ul></li> </ul> </li>
<li>Proceed to "Completing the Lab".</li>
</ol>
<p><b>Answer Task #3 observations / questions in your lab log book.</b>