Advice needed for pentest lab setup

Viewing 9 reply threads
  • Author
    Posts
    • #6197
      AndyB67
      Participant

      Have recently aquired the recommended WAP and USB Wifi device for my attempt at Backtrack WiFU after easter.  My initial plans were to just run the WAP in various configurations and keep experimenting with aircrack as it’s currently not connected to anything.

      As well as my laptop that dual boots Ubuntu and Backtrack, I also have a reasonable spec PC (with 2 network cards) setup with just Backtrack on and sat on my home network/internet connection.

      Have just had a thought that I could run a couple of VM’s off my backtrack PC (dam vunerable linux and a poorly patched xp), tie them down to the 2nd network card and connect that to my new WAP so I have something to have a go at when I crack into the WAP.

      Bearing in mind that my training WAP is going to be potentially vunerable, whats the best way to secure my backtrack system so I don’t allow someone an easy way in. 

      I plan to put the second network card, vm’s and the wap on a class B network address and subnet compared with my class c address for my network but want to do everything else I can to keep the two networks separated on the PC???

    • #38704
      rattis
      Participant

      something to remember. In order to attack WiFi there as to be traffic on it in some form.

    • #38705
      dynamik
      Participant

      @AndyB wrote:

      Bearing in mind that my training WAP is going to be potentially vunerable, whats the best way to secure my backtrack system so I don’t allow someone an easy way in. 

      Just put all your vulnerable VMs on a virtual network that isn’t connected to anything else (as opposed to bridged, NAT, or host-only).

      @chrisj wrote:

      something to remember. In order to attack WiFi there as to be traffic on it in some form.

      You need the handshake for WPA, but you can use something like fragmentation or chopchop for WEP.

    • #38706
      TheXero
      Participant

      When I was enrolled in the course, I had the WRT54GL router on its own and not connected to anything

      Now that I’ve passed, it part of my PenTest lab (made up of VM’s).  For now don’t connect it to anything unless you want it broken into just stick to the course material, then once you have passed the exam you can experiment to your hearts desire 🙂

    • #38707
      rattis
      Participant

      When I did wifu, I had an Linksys WRT54GL with a xubuntu box connected to it via wireless, and another on connected to it via wire. The router itself was not connected to the internet.

      I use the traffic between them for the labs where I needed to have traffic running (handshake, capture, etc). I also used being able to connect into those boxes as proof I had the right key when I connected to wireless from my laptop running backtrack.

    • #38708
      AndyB67
      Participant

      @chrisj wrote:

      something to remember. In order to attack WiFi there as to be traffic on it in some form.

      I have an old(ish) dell PDA that is capable of wep and wpa wireless so that can give me some wirless traffic.

      Thanks for the advice guys had fogotten about VM’s virtual networks as it’s a while since I used it in anger

    • #38709
      AndyB67
      Participant

      Bit more advice required here if possible as my ‘hacking’ PC has two nics in and i’m having an issue with them

      The 1st is a 100M onboard one (eth0) currently connected to my WAP and vunerable machines that has no external connection to the internet.  This gets a 10.0 address off my WAP (subnetted)

      The 2nd is a 1G add in card (eth1) connected to my home network that has a connection to the internet.  This gets a 192 address off my internet router

      With eth1 up, I am able to browse the internet and do all the good stuff.  The moment I bring eth 0 up, I lose my connection to the internet as it tries to route all my traffic through the WAP.

      What would be the best way to get my system to route all external traffic through my home net? 
      Should I swap the nic cables over so that eth1 connects to my WAP and eth0 my home network?
      Do I just need to make modifications to the routing table on my PC?

      My next question is re VMware and virtual networks.  I’ve currently got VMWare Player but could get my hands on a (legal) copy of Workstation if needed.
      I’d like to bridge any virtual machines I create onto which ever NIC is attached to the WAP.  Is there any way to force which nic the VM binds to?

      Thanks in advance

    • #38710
      lorddicranius
      Participant

      @AndyB wrote:

      Bit more advice required here if possible as my ‘hacking’ PC has two nics in and i’m having an issue with them

      The 1st is a 100M onboard one (eth0) currently connected to my WAP and vunerable machines that has no external connection to the internet.  This gets a 10.0 address off my WAP (subnetted)

      The 2nd is a 1G add in card (eth1) connected to my home network that has a connection to the internet.  This gets a 192 address off my internet router

      With eth1 up, I am able to browse the internet and do all the good stuff.  The moment I bring eth 0 up, I lose my connection to the internet as it tries to route all my traffic through the WAP.

      What would be the best way to get my system to route all external traffic through my home net? 
      Should I swap the nic cables over so that eth1 connects to my WAP and eth0 my home network?
      Do I just need to make modifications to the routing table on my PC?

      My next question is re VMware and virtual networks.  I’ve currently got VMWare Player but could get my hands on a (legal) copy of Workstation if needed.
      I’d like to bridge any virtual machines I create onto which ever NIC is attached to the WAP.  Is there any way to force which nic the VM binds to?

      Thanks in advance

      No experience with VMWare, but the other issue sounds like a routing issue.  Make sure the default gw on your ‘hacking’ PC is set to the IP of your Internet router, then configure another route to route all 10 network traffic to the WAP IP.

    • #38711
      TheXero
      Participant

      Set eth0 to a static address, but leave the default gateway blank

      I’ve had this trouble in the past, multiple default gateway’s can only lead to trouble

    • #38712
      AndyB67
      Participant

      @TheXero wrote:

      Set eth0 to a static address, but leave the default gateway blank

      Bingo, got my internet back with eth0 up.  It’s always the little things that trip me up!!

      Just need to dig out my vmware notes and working out the VMnetwork side of things now. 

      Thanks guys

Viewing 9 reply threads
  • You must be logged in to reply to this topic.

Copyright ©2022 Caendra, Inc.

Contact Us

Thoughts, suggestions, issues? Send us an email, and we'll get back to you.

Sending

Sign in with Caendra

Forgot password?Sign up

Forgot your details?