The initial set of lab exercises have been defined by the National Cyber Security Student Association for building a Cyber Lab. in their by leveraging cloud based, hardware independent configurations.
- Learn about how to install a virtual machine (and a hypervisor) in Microsoft Hyper-V, Oracle VirtualBox, or VMWare Workstation/Fusion.
- Develop a networking diagram to track virtual machines and connections
- Set up a attacking machine (Kali box) or download a pre-built image from OffensiveSecurity: https://www.offensive-security.com/kali-linux-vmware-virtualbox-image-download/.
- Learn about firewalls and pfSense (https://pfsense.org/download/) can be a good start.
- Follow the guides that you can find in the Internet or books to install the other machines that will expand your lab environment.
- “Advanced Penetration Testing for Highly-Secured Environments – Second Edition” (By: Lee Allen, Kevin Cardwell)
- “The Hacker Playbook 2: Practical Guide To Penetration Testing” (By: Peter Kim).
Lab Exercises (work-in-progress)
The following online portals are the primary labs used to practice cyber security skills:
- picoCTF – CTF practice competition; no linux distribution required.
- OvertheWire.org – Bandit wargames ; Linux disribution required.
- National Cyber League (NCL) – Gym practice portal available for practice during spring and fall competion windows.
These are additional labs available (optional):
- Root Me – Over 200 hacking challenges and 50 virtual environments allowing you to practice your hacking skills across a variety of scenarios.
- Hack This Site, URL: https://www.hackthissite.org/. Training for web applications.
- google-gruyere.appspot – Web Application Exploits and Defenses
- Infosec CTF – Infosec Institute CTF – their very own CTF Labs