🧪 Lab Setup Guide

Minimum Specifications

Basic requirements for simple lab environments.

• CPU: Quad-core processor (Intel i5/AMD Ryzen 5)
• RAM: 16GB DDR4 (minimum for multiple VMs)
• Storage: 500GB SSD (fast I/O for VMs)
• Network: Gigabit Ethernet connection

Recommended Specifications

Optimal setup for advanced lab environments.

• CPU: 8-core processor (Intel i7/AMD Ryzen 7)
• RAM: 32GB DDR4 (multiple concurrent VMs)
• Storage: 1TB NVMe SSD + 2TB HDD
• GPU: Dedicated GPU for password cracking

Professional Setup

High-end configuration for complex scenarios.

• CPU: 12+ core processor (Intel i9/AMD Ryzen 9)
• RAM: 64GB+ DDR4 (enterprise lab scenarios)
• Storage: Multiple NVMe SSDs in RAID
• Network: Multiple NICs for network simulation

VMware Workstation Pro

Professional virtualization platform with advanced features.

• Excellent performance and stability
• Advanced networking options
• Snapshot and cloning capabilities
• Team and shared VM features

Cost: $199 (one-time purchase)

VirtualBox (Free)

Open-source virtualization platform suitable for beginners.

• Free and open-source
• Cross-platform compatibility
• Good for basic lab setups
• Large community support

Cost: Free

Proxmox VE

Enterprise-grade virtualization platform for advanced setups.

• KVM and LXC container support
• Web-based management interface
• High availability clustering
• Professional backup solutions

Cost: Free (enterprise features available)

Kali Linux

The de facto standard for penetration testing distributions.

• 600+ pre-installed security tools
• Regular tool updates and new releases
• Extensive documentation and community
• Multiple desktop environments

RAM: 4GB minimum, 8GB recommended

Parrot Security OS

Privacy-focused distribution with comprehensive security tools.

• Lightweight and privacy-oriented
• AnonSurf for anonymity
• Comprehensive toolkit
• Beautiful MATE desktop

RAM: 2GB minimum, 4GB recommended

BlackArch Linux

Arch-based distribution with extensive penetration testing tools.

• 2000+ security tools available
• Rolling release model
• Modular package groups
• Cutting-edge tool versions

RAM: 4GB minimum, 8GB recommended

Basic AD Lab

Simple domain environment for learning AD fundamentals.

• Domain Controller: Windows Server 2019/2022
• Member Servers: 1-2 Windows Server VMs
• Workstations: 2-3 Windows 10/11 VMs
• Total RAM: 12-16GB required

Advanced AD Lab

Complex multi-domain environment for advanced scenarios.

• Multiple Domains: Parent/child domain structure
• Trusts: Forest and external trusts
• Services: SQL, Exchange, SharePoint
• Total RAM: 24-32GB required

Pre-built AD Labs

Ready-to-use Active Directory environments.

• DetectionLab: Blue team focused
• AutomatedLab: Automated deployment
• GOAD: Game of Active Directory
• VulnAD: Vulnerable AD scenarios

Isolated Networks

Secure network isolation for malware and exploit testing.

• Host-Only: Completely isolated
• Internal: VM-to-VM communication only
• Custom Subnets: Multiple network segments
• VLAN Simulation: Enterprise network simulation

Network Services

Essential network services for realistic environments.

• DHCP Server: Automatic IP assignment
• DNS Server: Name resolution
• Web Server: Apache/IIS hosting
• FTP/SSH: File transfer services

Monitoring Tools

Network monitoring and traffic analysis capabilities.

• pfSense: Firewall and routing
• Security Onion: Network security monitoring
• Wireshark: Packet analysis
• ntopng: Network traffic monitoring

Benefits of Cloud Labs

• Scalability: Easily scale resources as needed
• Accessibility: Access labs from anywhere
• Cost-effective: Pay only for what you use
• Snapshot support: Quick lab resets

Recommended Setup

• CPU-Optimized Droplets: For AD labs
• Regular Droplets: For basic labs
• Private Networking: For lab isolation
• Volumes: For additional storage

Security Considerations

• Firewalls: Restrict access properly
• VPC: Isolate lab environments
• Backups: Regular lab state backups
• Monitoring: Track resource usage

Reconnaissance Tools

• Nmap: Network discovery and security auditing
• Masscan: Internet-scale port scanner
• Gobuster: Directory/file/DNS brute-forcer
• Nuclei: Vulnerability scanner

Exploitation Frameworks

• Metasploit: Penetration testing framework
• Cobalt Strike: Red team operations (licensed)
• Empire: PowerShell post-exploitation
• Covenant: .NET command and control

Web Application Testing

• Burp Suite: Web application security testing
• OWASP ZAP: Web application scanner
• SQLMap: SQL injection testing
• Nikto: Web server scanner

Step 1: Platform Setup

1. Install virtualization platform
2. Configure network settings
3. Create isolated networks
4. Test basic VM functionality

Step 2: Attacker Machine

1. Download Kali Linux ISO
2. Create VM with 8GB RAM
3. Install and configure Kali
4. Update tools and system

Step 3: Target Machines

1. Download vulnerable VMs
2. Import into virtualization platform
3. Configure network connectivity
4. Test basic connectivity

Lab Security Essentials

• VPN Protection: Secure with NordVPN
• Network Isolation: Separate lab traffic
• Access Control: Restrict lab access
• Data Protection: Encrypt sensitive data

Why Use a VPN?

• Privacy: Keep lab activities private
• Security: Encrypted connections
• Access: Bypass restrictions safely
• Protection: Shield real IP address

Recommended Features

• Kill Switch: Prevent data leaks
• Double VPN: Extra security layer
• No-logs Policy: Privacy assurance
• Split Tunneling: Control traffic flow