This post is focusing on how to build a simple Pen test lab with a minimal effort and also it can provides enough practice opportunity.

It will be a series of posts for Pen Test lab since there are some typical Pen Test steps will be discussed and put into this lab as example. 

Topology

1. Set Up Environmet

1.1 VMware Workstation

You also can use ESXi / Virtual Box / Hyper-V to set up your virtual lab environment. 

1.2 Kali Linux

Download ISO image from https://ift.tt/1xv2Ev9 or download virtual machine from https://ift.tt/2D6en2N

The VM images have a default password of “kali/kali

1.3 Metasploitable Linux 

Metasploitable is an intentionally vulnerable Linux virtual machine. This VM can be used to conduct security training, test security tools, and practice common penetration testing techniques. Download link: https://ift.tt/2jSrhGH

The default login and password is msfadmin:msfadmin.

2. Basic Configuration Environment

2.1 Network Settings Change
  • IP Change
    • Temporary Change (Immediately Take Into Effect):
ifconfig
ifconfig eth0 192.168.2.20/24 
    • Permanent Change:
      • DHCP
vim /etc/network/interfaces
auto eth0
iface eth0 inet dhcp
/etc/init.d/networking restart
networking service restart does not work, it will need a restart server (reboot). 
    • Static
vim /etc/network/interfaces


auto eth0
iface eth0 inet static
address 192.168.2.20
netmask 255.255.255.0
gateway 192.168.2.1
/etc/init.d/network restart
echo $? : echo $? will return the exit status of last command.
0 – executed successfully
1-255 – 
  • Gateway Change
route add default gw 192.168.2.1
  • DNS Change
echo nameserver 8.8.8.8 > /etc/resolv.conf

2.2 Enable Root Account and Enable SSH Remote Access

By default, in Kali version 2020+, root account is not allow to log in to system. Also SSHD service is disabled. 

  • change root password

sudo passwd root

  • change sshd configure file to allow root log in from remote ssh session
vim /etc/ssh/sshd_config

PermitRootLogin yes

  • Start SSHD service
/etc/init.d/ssh start
lsof -i :22
netstat -na | grep 22
  • Enable SSHD service in boot. 

update-rc.d ssh enable

2.3 Disable Screen Lock 

System – Power Management

2.4 Update && Upgrade

apt update -y && apt upgrade -y
  • apt-get upgrade will only upgrade currently-installed packages;
  • apt upgrade will upgrade currently-installed packages and install new packages pulled in by updated dependencies;
  • the various dist-upgrade and full-upgrade variants will upgrade currently-installed packages, install new packages introduced as dependencies, and remove packages which are broken by upgraded packages.
Command Upgrade Current Install New Remove Broken
apt-get upgrade Yes No No
apt upgrade Yes Yes No
apt-get dist-upgradeapt full-upgrade etc. Yes Yes Yes

If update && upgrade is too slow, you might need to change your apt source to the one close to your location.

cp /etc/apt/sources.list /etc/apt/sources.list.bak

vim /etc/apt/sources.list

Choose from either “中科大kali Apt Source” or “阿里云kali Apt Source

#中科大kali Apt Source
deb http://mirrors.ustc.edu.cn/kali sana main non-free contrib
deb http://mirrors.ustc.edu.cn/kali-security/ sana/updates main contrib non-free
deb-src http://mirrors.ustc.edu.cn/kali-security/ sana/updates main contrib non-free


#阿里云kali Apt Source
deb http://mirrors.aliyun.com/kali sana main non-free contrib
deb http://mirrors.aliyun.com/kali-security/ sana/updates main contrib non-free
deb-src http://mirrors.aliyun.com/kali-security/ sana/updates main contrib non-free

#kali Default Apt Source:
deb http://security.kali.org/kali-security/ sana/updates main contrib non-free
deb-src http://security.kali.org/kali-security/ sana/updates main contrib non-free
After configuration changed, use command “apt-get update” command to take it into effect. 

Snapshot your Kali VMware environment

from Blogger //blog.51sec.org/2021/05/pen-test-lab-1-environment-setup_16.html

By Jon

Leave a Reply