Jump to content

Noob pentest environment advice?


Recommended Posts

What recommendations would you make for a noobs pentest lab?

i currently have virtualbox running Kali, metasploitable, couple of Linux distro’s all on a internal network(virtualbox). 

Is there a simple solution to virtualise embedded system e.g. the firmware from my router?

i know there is this thing called google....but would like guidance from people who are knowledgeable in this area.

Any advise will be gratefully received, including recommended reading. Im not asking anyone to do it for me, just guide me in the right direction please.

This is purely a obsession/hobby for me.



Link to comment
Share on other sites

Also, if you want to spin up a quick AD test lab with an eval of server 2012 R2...or maybe 2016, have not tried this with 2016, you can use DSC to quickly spin one up when you need to.  The longest part is the preupdates and downloading the powershell module required for AD DSC.  I do not have my script on me, it is in the office but I have one that one will configure DHCP, DNS, AD and a few accounts with different permissions.  You could use some of those test run VMs for Windows or do fresh installs of windows to add some machines to the test domain.  I do this mainly in the office off our test host isolated with pfsense.

Here is a link so you can get started with a base DSC lab before hand.



Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

  • Recently Browsing   0 members

    • No registered users viewing this page.
  • Create New...