- This topic has 12 replies, 8 voices, and was last updated 12 years ago by
.
-
Posts
-
-
i am curious about the various equipement security practitioners have for testing.
my setup, main dell m1710 xps laptop,
dell latitude c640 for pen testing and linux backtrack.optiplex with 8gb of ram, quad xeon, vmware esx 3.5 lab with various distro’s of linux and windows flavors.
what about you?
-
-
-
-
I’ve got a powerfulish box running VMware Workstation for most of the buffer overflow/bruteforce type stuff.
For stuff that is harder to replicate in a virtual environment (for me it’s; ARP redirection and mitm stuff, I find the VMWare network to produce some ‘strange’ results for some network based things that I can’t duplicate in a real-world environment) I generally use a few live boot CDs on whatever hardware is lying around [including the gf’s laptop when desperate, shhh….]. Once you’re done remove CD and everything is back the way it was. Generally removes the build and rebuild cycle from crash and burn boxes.
Finally my day-to-day laptop doubles as a wireless platform when the need arises.
I’m current looking to expand my lab though, I’m eagerly awaiting Build Your Own Security Lab (cheers Bill) to arrive through my letterbox. Hopefully it will provide some good ideas.
-
-
-
-
-
Virtualbox is great with one exception, the networking. If you are interested in having your own network and putting all of the virtual boxes on the network through NAT, then Virtualbox is cake to setup. The one beef that I have is that it sucks to have to create individual bridge adapters and then more individual adapters for each box linked with the bridge device. Then if you want DHCP on a host only network, you need to set that up yourself. In comparison to VMware, virtualbox needs to fix that. As far as speed, I think Virtualbox is much faster and seems to have a smaller memory footprint. For my linux boxes, I use virtualbox as my VM architecture since the hardware support seems great.
As far as lab boxes, I have 2 linux boxes, one a quad core 4g ram and one a dual core with 2g of ram that I use. I use ESX server on them and have a host only network on each with a small linux box I use as a gateway server and allow or disallow bridging when I need it to bridge the host only network to the real word for software downloads etc. I have a number of other boxes that I use in bridged mode to do testing with. This setup is nice in that there are some boxes that I really REALLY don’t want on the network, such as XP sp0 boxes, and others which require network access.Â
-
Attack:Â 2 laptops running VM Workstation
Servers:Â tower running VM Workstation
Infrastructure:Â (2) Cisco 3750 switches, (2) 5510 ASAs, 2811 & 3825 routers, (2) Cisco 802.11n APs, (1) WLAN Controller, (2) MARS Gen-1 boxes, HP server for CSA-MC, Cisco Web Application Firewall, and ACS server (AAA).
Trying to get Network Admission Control (NAC) network modules for wired/wireless integration within the routers, and an IPS module for the ASA firewall which will also integrate with wireless. Although I could simply run a VM image of the NAC Server & Mgr on the HP server for some cool shit. LOL
;D
-
@charlottebandit wrote:
Attack:Â 2 laptops running VM Workstation
Servers:Â tower running VM Workstation
Infrastructure:Â (2) Cisco 3750 switches, (2) 5510 ASAs, 2811 & 3825 routers, (2) Cisco 802.11n APs, (1) WLAN Controller, (2) MARS Gen-1 boxes, HP server for CSA-MC, Cisco Web Application Firewall, and ACS server (AAA).
Trying to get Network Admission Control (NAC) network modules for wired/wireless integration within the routers, and an IPS module for the ASA firewall which will also integrate with wireless. Although I could simply run a VM image of the NAC Server & Mgr on the HP server for some cool shit. LOL
;D
Wow thats a hefty lab, have you just collected that much gear over time?
-
-
- You must be logged in to reply to this topic.
