cyberdrain wrote:Well, that is easy enough to do. I'd advise using a virtual machine, like VirtualBox and install stuff like Metasploitable and Damn Vulnerable Web Application. It depends on your focus.
cyberdrain wrote:Be careful that your NAT doesn't allow the VM outside access, as it would leave the computer vulnerable.
cyberdrain wrote:I have some experience with the first and I know that a few other people here have experience with the second (iirc Ninjex and mShred).
cyberdrain wrote:Either way, running a virtual machine is advised as it will make resetting the OS easier (after exploitation) and adds security. Lastly, disabling the firewall on the virtual machine might help with port scanning.
CIDR wrote:Correct me if I'm wrong. This would be done through the Virtual Network Editor after I create the VM instance is that right? From there I could configure it to restrict NAT and prevent it from being visible out in the Internet.
I've been reading through VM Network Types just to determine which one best suits when it comes to pen testing. Host-Only catches my eye which is dominantly there to concentrate traffic between the VM Instance and Virtual Switch VMnet1.
CIDR wrote:Would it be possible to inter-connect boxes so that they can intercommunicate with each others internal VM Instance? Which I guess would help when it comes to leaving them unpatched.
CIDR wrote:Awesome, I'm familiar with Nmap and Wireshark but are there any port scanners or traffic sniffers you would recommend when setting up these isolated home networks If I choose to focus on Web Applications vulnerabilities at some point?. I assume most of them are already on Kali.
CIDR wrote:Are there any further precautions I could take when it comes to possible, later configuration of NAT's behaviour that I/we should take into consideration. If I wanted to take the extra level of security could I change my box to connect to a Cisco 2811 router acting as a DMZ with just the vulnerable box within the zone/perimeter? Still have yet to really dig deep into Demilitarized Zones but I'm on the wiki now re-searching.
Users browsing this forum: No registered users and 0 guests