Uncategorized

It’s about time!! My Lab is completed

Published by:

 

I am so happy right now.  I finally got my lab up a running.  This is with the help of a few resources that I will link for sure.  First of all, I wanted to make sure that I incorporated the Windows 2012 Server and Active Directory (I know it’s outdated but it’s the only thing I had permission to).  With that said, I wanted to ensure that I had at least the following:

2 – Windows server 2012 deployed (DC and Member server w/VCenter 6.5 installed)

2 – ESXi Servers 6.5  (to host my VMs)

1 – Kali Linux box (attacker)

1- Windows 8.1 Pro (alt attacker)

1- Windows 8.1 Pro (victim)

1 – Windows 10 Pro (victim)

1- Windows XP Pro Service Pack 2 (victim)

1- Metasploit able VM

1 – ACAS vulnerability scanner

1 – Secret sauce Host Discovery tool that I will not name due to NDA requirements.

My hope is to better understand the secret sauce software mentioned above, but also to study up on my use of all the systems that I have employed in regards to discovering vulnerabilities and security of IT systems.  I am also learning a bit more of VCenter installation and implementation in the process which is a plus.

As stated before I am finishing up my Masters Degree Program at WGU ( I only have 3 classes remaining) which consumes a majority of my time which is the reason it is taking so long to finish my lab in the first place (along with working full time).   Anyway, I am a happy camper at the moment as things are looking up and have a little time to return to the blog site.

 

I used this YouTube video to help me with the setup.   It’s really good.

 

 

 

 

 

Uncategorized

Too many tasks, so little time..

Published by:

Wow, it’s been a while since I’ve been on the blog.  I really need to employ a bit more time management in my life (personal).  Lol.   A lot has been going on and work has been hogging up all my time.   From all the STIGS, Vuln analysis, and Policy writing, my time has been beaten up.  Don’t worry though, I always make time for the important things like family.  As it is because of my family that I stay motivated in life and am able to do the things that I do in the first place. 🙂

I think that I may have mentioned it before but I’ll say it again, I  am in school again and going for the Masters in Cybersecurity at WGU (I know I keep my plate full).  My mom says I’m always looking for ways to keep myself busy and that I am a  workaholic, but I just like being busy.  If I’m not active, I know me, I’ll get lazy and sleep all day.   That’s a fact, especially since we just received the Bear Mattress (really comfortable) that is firm and supports my sleeping style.

Anyway,  I’m planning on finally getting to the Hacker Lab setup so I can’t spend too much time on this post.   I’ll return to the blog on Thursday to provide updates.

Lab OSCP PMP Training

T.G.I.F

Published by:

It’s almost Friday and I am looking forward to finishing up the build of my OSCP lab so I can continue with my studies at Udemy.com.  Because my WGU assignment (drafting a Cyber Defense Report) was due this week, I spent most of my time trying to get the final draft completed and submitted before weeks end.  So excuse the absence and lack of posting.

It’s been a while since my last post I know.  I’ve been so busy with school and work that it’s not even funny.  It’s like everyone is trying to cram everything on me at the last minute (something that I am vert used too) and  since it’s December,  times that by two.

During my time away I started doing a lot of cyber surfing and my interest have been gravitating toward malware analysis for some reason.  I went out and got a couple of books to get me going.  My wife thinks I’m a geek like that  :).  I don’t know, I could use the .pdf versions of the books but I kind of prefer softcover copies when I do my studying.  PDF files are good on my kindle and IPad/IPhone when I am traveling.

Well it’s time to gather my things and finish up with the lab build out.  I’ll be sure to take notes and document it all to share here.     Later..

Lab Training

Building out my LAB today?

Published by:

Today has been busy, to say the least, and didn’t go any way that I thought it would.  For starters, my day was to consist of me knuckling down to finish my WGU homework assignment which I’ve been putting off for the past two weeks.  I really have to finish my paper “Cyber Defense Report” soon or else it will bleed into my other projects and consume all of my time as it gets closer and closer to being in the last minute category.  I figured that I would at least have knocked out a couple more pages as the subject is something I am very familiar with.  Enough of that.

I started working on my lab setup to assist me in practicing crafting custom tools and exploits against practical systems.  I’m using VMware workstation pro to create a virtual network consisting of Windows 2012 server (Domain Controller), Windows 10, 8, and 7 pro,  and Kali  2017-2 for starters.  Honestly, I was only able to install Windows 2012 server and configure the Domain Controller today and I’m squeezing that in, while I am updating this website.

 

— Update– Feb 20, 2018

 

I finally decided on a way for this Hacking lab that has been on the back burner because of all this work my current job has been throwing at me to bog me down.  Like I told my wife, it’s like they know that I am trying to progress or something.  Anyway, I picked up a Dell M4700 mobile workstation from Dell Auctions a few months back that is a decent machine (it cost me about $325).  I have a few laptops but since I’m not attached to this machine yet I decided last night that I could use this as my Vmware ESXi server to host my Hacker lab network.

Tomorrow I will be replacing the current hard drive with a 500 GB SSD and installing ESXi 6 (full blown) onto it.  I will then re-deploy the current VMs that I configured on my old Dell T3500 as this thing is giving me problems installing VMware ESXi 5.5 or 6 on it.  I hate burning up a good laptop to work as a server but I don’t want to spend the money to buy a server and I really don’t have a choice.  Anyway, this is just a practice server and the laptop will suffice in this situation.  If I can manage it, I will record the process on video and post it here (something I would like to explore).  Either way, I’m setting this thing up tomorrow!  I cant put it off any longer.  I really don’t know when I’ll get to set up the Cisco Routers, Switches and ASA, but I am going to force myself to get this all setup and configured.  They’re just sitting in the corner collecting dust telling me that I’m neglecting them.

 

 

 

 

Certifications OSCP PMP Project Management

Preparing for OSCP

Published by:

Thanks for coming to my website.   There’s not much here at the moment but in time the content and people will come.  My purpose of this site is to LiveJournal my journey to OSCP.  How does this relate to the PMP?  Simple, everything relates to Project Management.   My personal belief is that every endeavour  in life is a project.  Whether you are getting the kids ready for school to preparing to undertake an MBA in Cybersecurity.  Project management is involved in every aspect of our lives.

Granted, the OSCP is by no means a requirement for my current job position or the like,  I just want to prove to myself that I am more than capable to obtain this particular Security Certification and that my abilities are in line with the industry standards for Ethical Hacking.  I currently hold the following security certifications (CISSP, CEH, CHFI, Security+, CCNA Security, CCNP, CWNA, and  CWDP) as well as other certs in case you were wondering.

I believe I have a diverse enough background to pull off my preparations for the OSCP.  However, I’m going to start from ground zero and work my way up. It should be fun and also stressful at the same time.  There will be a lot of reading involved and late nights at the computer.  If you have the time, you should come back next week and  I’ll have posted what my game plan is to prepare for the OSCP (books, online course, labs etc.) course/exam.