Conceptual Hardware View (Under Construction)

The Cyber Security Education & Research Center (CERC) Lab will use a combination of hardware and virtual capabilities to perform lab exercises and conduct research projects.

Conceptual Software View (Under Construction)

The Cyber Center lab will establish a baseline (golden) harware and software configuration that is ready to execute Lab exercises. Software and tools loaded will include:

  1. Microsoft Hyper-V, Oracle VirtualBox, or VMWare Workstation/Fusion (tbd)
  2. Kali Linux
  3. pfSense firewall
  4. MetaSploit
  5. WireShark
  6. Tbd

Open Source Tools:

Support for the following open source cyber security tools available in the Cyber Lab:

  1. Metasploit – provides information about security vulnerabilities and aids in penetration testing and IDS signature development.
  2. OpenSSH – provides a secure channel over an unsecured network in a client–server architecture
  3. OpenVAS (Open Vulnerability Assessment System) – originally known as GNessUs is a software framework of several services and tools offering vulnerability scanning and vulnerability management.
  4. Onion – Linux distro for IDS (Intrusion Detection) and NSM (Network Security Monitoring). It’s based on Xubuntu 10.04 and contains Snort, Suricata, Sguil, Squert, Snorby, Bro, NetworkMiner, Xplico, and many other security tools.
  5. OSSEC Wireshark – free and open-source packet analyzer used for network troubleshooting, analysis, software and communications protocol development, and education.
  6. SQLMAP – sqlmap is an open source software that is used to detect and exploit database vulnerabilities and provides options for injecting malicious codes into them. It is a penetration testing tool that automates the process of detecting and exploiting SQL injection flaws providing its user interface in the terminal.[

Reference:
OWASP Top 10 -2017 –  The Open Web Application Security Project (OWASP)(OWASP) Ten Most Critical Web Application Security Risks

Bitnami