SlideShare a Scribd company logo

Secure lab setup for cyber security

Download as PPTX, PDF
Birju Tank, profile picture
Birju Tank

This document outlines plans for setting up a secure cybersecurity lab with three main goals: 1) Support both Windows and Linux systems to emulate a real-world environment, 2) Be able to isolate the lab network from the campus network for exercises, and 3) Provide a mixed-use space for both security exercises and general usage. Key aspects of the lab setup include using virtual machines on physical systems to lower costs, purchasing a managed switch to isolate student workstations, and configuring older or vulnerable operating systems on student systems to simulate real-world targets.

Engineering
Related topics:
Cyber-Security
1 of 10
Downloaded 73 times
1
2
3
Most read
4
Most read
5
6
7
Most read
8
9
10
SECURE LAB SETUP FOR CYBER SECURITY Prepared By : Birju Tank GTU PG School, BISAG GANDHINAGAR.
Main Messages  Developing a good cyber security laboratory and related exercise takes:  Planning  Thought  Resources  Helps to think about goals and structure
Goals  Mixed use laboratory  Not enough space to dedicate to security  Need to be able to connect/disconnect from campus network quickly  Support both Windows and Linux  IUP only supported Linux, real-world environment is heterogeneous  Be able to emulate a real-world enterprise computing environment
Laboratory
One Way to Lower the Cost  Purchase one many-port switch to act as physical switch, all hubs  Can isolate groups of ports  Can bridge groups where needed  Advantages  Significant cost savings  Reduced maintenance need  Disadvantage  Initial setup difficult
Cont’d  Use of Virtual Machines within Physical Machines  Products  Microsoft Virtual PC (used 2005)  Support discontinued for Mac environment in 8/2006  VMWare (used 2006)  Another possibility: Xen  Operating systems must be modified  Higher performance gained
Laboratory – Physical Issues  Want to provide some sense of physical security for each station  Lab furniture is currently 8 cubicles with high walls  Problem: not good for general usage, students tend to “hide” in lab and take over stations  Future: a more open physical environment?
INFRASTRUCTURE  Goals  Heterogeneous and Isolated Network  Same system for each student team  Replicating tool (e.g. Norton Ghost) saves much time  Don’t forget to give each machine its own identity
Cont’d  Structure of Isolated Network  One zone (all systems off one hub)  Student Team Systems running older Windows Server, Linux systems  Non-current OSs with known security holes  All tools used in lab exercises  Added several realistic-looking accounts (e.g. backup, logwd, tomcat) with weak passwords
Cont’d  Structure of Isolated Network (continued)  Several Non-Student Systems  Other variants of Windows and Linux  1 Monitoring system  Additional Available Systems  Host systems can be used for internet access

More Related Content

PPT
Cryptography and Network Security William Stallings Lawrie Brown
Information Security Awareness Group
 
PDF
Addressing the cyber kill chain
Symantec Brasil
 
DOCX
Distributed system Tanenbaum chapter 1,2,3,4 notes
SAhammedShakil
 
PPTX
Vulnerability and Assessment Penetration Testing
Yvonne Marambanyika
 
PPTX
Penetration testing reporting and methodology
Rashad Aliyev
 
DOC
Naming in Distributed System
MNM Jain Engineering College
 
PDF
Penetration testing
Ammar WK
 
PPTX
Windows Hacking
Mayur Sutariya
 
Cryptography and Network Security William Stallings Lawrie Brown
Information Security Awareness Group
 
Addressing the cyber kill chain
Symantec Brasil
 
Distributed system Tanenbaum chapter 1,2,3,4 notes
SAhammedShakil
 
Vulnerability and Assessment Penetration Testing
Yvonne Marambanyika
 
Penetration testing reporting and methodology
Rashad Aliyev
 
Naming in Distributed System
MNM Jain Engineering College
 
Penetration testing
Ammar WK
 
Windows Hacking
Mayur Sutariya
 

What's hot (20)

PPT
Consistency protocols
ZongYing Lyu
 
PPTX
cloud computing: Vm migration
Dr.Neeraj Kumar Pandey
 
PPT
3. distributed file system requirements
AbDul ThaYyal
 
PDF
Cyber Domain Security
ICSA, LLC
 
PDF
Application layer security protocol
Kirti Ahirrao
 
PPTX
Linux process management
Raghu nath
 
PPTX
Software Process Models
Hassan A-j
 
PDF
Patch and Vulnerability Management
Marcelo Martins
 
PDF
Security in the Software Development Life Cycle (SDLC)
Frances Coronel
 
PDF
ATT&CKing Your Adversaries - Operationalizing cyber intelligence in your own ...
JamieWilliams130
 
PDF
BSidesLV 2018 - Katie Nickels and John Wunder - ATT&CKing the Status Quo
Katie Nickels
 
PPT
Distributed Operating System
SanthiNivas
 
PPTX
Protection and security
mbadhi
 
PPTX
Pen Testing Explained
Rand W. Hirt
 
PDF
Threat Modelling
n|u - The Open Security Community
 
PDF
Pentest with Metasploit
M.Syarifudin, ST, OSCP, OSWP
 
PDF
Security architecture
Duncan Unwin
 
PDF
Fault tolerance
Gaurav Rawat
 
PDF
Mikrotik Network Simulator (MUM Presentation Material 2013)
Rofiq Fauzi
 
PPTX
Software configuration management
fizamustanser
 
Consistency protocols
ZongYing Lyu
 
cloud computing: Vm migration
Dr.Neeraj Kumar Pandey
 
3. distributed file system requirements
AbDul ThaYyal
 
Cyber Domain Security
ICSA, LLC
 
Application layer security protocol
Kirti Ahirrao
 
Linux process management
Raghu nath
 
Software Process Models
Hassan A-j
 
Patch and Vulnerability Management
Marcelo Martins
 
Security in the Software Development Life Cycle (SDLC)
Frances Coronel
 
ATT&CKing Your Adversaries - Operationalizing cyber intelligence in your own ...
JamieWilliams130
 
BSidesLV 2018 - Katie Nickels and John Wunder - ATT&CKing the Status Quo
Katie Nickels
 
Distributed Operating System
SanthiNivas
 
Protection and security
mbadhi
 
Pen Testing Explained
Rand W. Hirt
 
Threat Modelling
n|u - The Open Security Community
 
Pentest with Metasploit
M.Syarifudin, ST, OSCP, OSWP
 
Security architecture
Duncan Unwin
 
Fault tolerance
Gaurav Rawat
 
Mikrotik Network Simulator (MUM Presentation Material 2013)
Rofiq Fauzi
 
Software configuration management
fizamustanser
 
Ad

Viewers also liked (20)

DOCX
Forensic laboratory setup requirements
Sonali Parab
 
PPT
Computer Forensic
Tawhidur Rahman
 
PPT
Forensic laboratory setup requirements
Sonali Parab
 
PPT
Forensic Lab Development
amiable_indian
 
PPT
Computer forensics
Lalit Garg
 
PPTX
Digital forensics
Roberto Ellis
 
PPT
Computer +forensics
Rahul Baghla
 
PPTX
Computer forensics powerpoint presentation
Somya Johri
 
PPTX
Computer forensics ppt
Nikhil Mashruwala
 
PDF
Cyber Ranges: The (R)evolution in Cybersecurity Training
Minsait
 
PDF
File000149
Desmond Devendran
 
PDF
File000158
Desmond Devendran
 
PPTX
Building a Cyber Range - Kevin Cardwell
EC-Council
 
PPTX
The Forensic Lab
primeteacher32
 
PDF
File000120
Desmond Devendran
 
PPT
Setup Your Personal Malware Lab
Digit Oktavianto
 
PPTX
Introduction to Forensic science labs in India
Saurabh Bhargava
 
PPTX
Proposal of lab
ashfaq_abdullah
 
PPT
Digital Forensic
Cleverence Kombe
 
PDF
How to Setup A Pen test Lab and How to Play CTF
n|u - The Open Security Community
 
Forensic laboratory setup requirements
Sonali Parab
 
Computer Forensic
Tawhidur Rahman
 
Forensic laboratory setup requirements
Sonali Parab
 
Forensic Lab Development
amiable_indian
 
Computer forensics
Lalit Garg
 
Digital forensics
Roberto Ellis
 
Computer +forensics
Rahul Baghla
 
Computer forensics powerpoint presentation
Somya Johri
 
Computer forensics ppt
Nikhil Mashruwala
 
Cyber Ranges: The (R)evolution in Cybersecurity Training
Minsait
 
File000149
Desmond Devendran
 
File000158
Desmond Devendran
 
Building a Cyber Range - Kevin Cardwell
EC-Council
 
The Forensic Lab
primeteacher32
 
File000120
Desmond Devendran
 
Setup Your Personal Malware Lab
Digit Oktavianto
 
Introduction to Forensic science labs in India
Saurabh Bhargava
 
Proposal of lab
ashfaq_abdullah
 
Digital Forensic
Cleverence Kombe
 
How to Setup A Pen test Lab and How to Play CTF
n|u - The Open Security Community
 
Ad

Similar to Secure lab setup for cyber security (20)

PPTX
Sec285 final presentation_joshua_brown
JoshuaBrown233
 
DOCX
ProjectPurposeThe purpose of this project is to provide an o.docx
woodruffeloisa
 
PPT
wireless lan security.ppt
SagarBedarkar3
 
PPS
Developing an Effective
webhostingguy
 
DOC
7th sem
nastysuman009
 
DOC
7th sem
nastysuman009
 
PPT
wireless lan security for their all details
SatyamPrakash38
 
PDF
CNIT 121: 3 Pre-Incident Preparation
Sam Bowne
 
PDF
Don't Get Hacked on Hostile WiFi
Mackenzie Morgan
 
PDF
Application Of An Operating System Security
Amber Wheeler
 
PDF
Netw450 advanced network security with lab entire class
NathanielZaleski
 
PDF
Netw450 advanced network security with lab entire class
EugenioBrown1
 
PDF
Netw450 advanced network security with lab entire class
JohnnyBryant1
 
PDF
Netw450 advanced network security with lab entire class
Carlosbhakta
 
PDF
A University Network Design Exercise
joelavery
 
PPTX
Network
mohamed hasan sa'id
 
DOCX
An organized and Secured Local Area Network in Naval Post Graduate School
Jude Rainer
 
DOCX
IS_Syllabus_4_credits_2018.docx
TinTin271940
 
PPTX
Lecture1.pptx
SamiullahSaleem2
 
PPTX
LabMan 2012 Presentation - Remote Lab
mafudge
 
Sec285 final presentation_joshua_brown
JoshuaBrown233
 
ProjectPurposeThe purpose of this project is to provide an o.docx
woodruffeloisa
 
wireless lan security.ppt
SagarBedarkar3
 
Developing an Effective
webhostingguy
 
7th sem
nastysuman009
 
7th sem
nastysuman009
 
wireless lan security for their all details
SatyamPrakash38
 
CNIT 121: 3 Pre-Incident Preparation
Sam Bowne
 
Don't Get Hacked on Hostile WiFi
Mackenzie Morgan
 
Application Of An Operating System Security
Amber Wheeler
 
Netw450 advanced network security with lab entire class
NathanielZaleski
 
Netw450 advanced network security with lab entire class
EugenioBrown1
 
Netw450 advanced network security with lab entire class
JohnnyBryant1
 
Netw450 advanced network security with lab entire class
Carlosbhakta
 
A University Network Design Exercise
joelavery
 
Network
mohamed hasan sa'id
 
An organized and Secured Local Area Network in Naval Post Graduate School
Jude Rainer
 
IS_Syllabus_4_credits_2018.docx
TinTin271940
 
Lecture1.pptx
SamiullahSaleem2
 
LabMan 2012 Presentation - Remote Lab
mafudge
 

More from Birju Tank (14)

PPTX
Database security
Birju Tank
 
PPTX
Vulnerabilities in Android
Birju Tank
 
PPTX
Blackhole Attck detection in AODV Protocol
Birju Tank
 
PPTX
5 g technology
Birju Tank
 
DOCX
Literature review report
Birju Tank
 
PPTX
Secure routing in DSR
Birju Tank
 
PPTX
J2ME Mobile app
Birju Tank
 
PPTX
Android vs iOS encryption systems
Birju Tank
 
PPTX
Software prototyping
Birju Tank
 
PPTX
Data mining
Birju Tank
 
PPTX
Android operating system
Birju Tank
 
PPT
Virtualization
Birju Tank
 
PPTX
Mobile Broadband Wireless Access
Birju Tank
 
PPTX
Process management
Birju Tank
 
Database security
Birju Tank
 
Vulnerabilities in Android
Birju Tank
 
Blackhole Attck detection in AODV Protocol
Birju Tank
 
5 g technology
Birju Tank
 
Literature review report
Birju Tank
 
Secure routing in DSR
Birju Tank
 
J2ME Mobile app
Birju Tank
 
Android vs iOS encryption systems
Birju Tank
 
Software prototyping
Birju Tank
 
Data mining
Birju Tank
 
Android operating system
Birju Tank
 
Virtualization
Birju Tank
 
Mobile Broadband Wireless Access
Birju Tank
 
Process management
Birju Tank
 

Recently uploaded (20)

DOCX
ASol_English-Language-Literature-Set-1-27-02-2023-converted.docx
AYUSHMANAV
 
DOCX
573137875-Attendance-Management-System-original
AYUSHMANAV
 
PPT
Project quality management in manufacturing
BarMusaTetik
 
PDF
R24 SURVEYING LAB MANUAL for civil enggi
MNANDITHACIVILSTAFF
 
PDF
Well-logging-methods_new................
ZafriFarid
 
PDF
BMEC211 - INTRODUCTION TO MECHATRONICS-1.pdf
ryankakungu
 
PPTX
Foundation to blockchain - A guide to Blockchain Tech
Davies Chacko
 
PDF
The CXO Playbook 2025 – Future-Ready Strategies for C-Suite Leaders Cerebrai...
Cerebraix Technologies
 
PPTX
CYBER-CRIMES AND SECURITY A guide to understanding
Davies Chacko
 
PPTX
Sustainable Sites - Green Building Construction
mhdumerali
 
PPTX
Geodesy 1.pptx...............................................
abhi1361yadav
 
PPTX
MCN 401 KTU-2019-PPE KITS-MODULE 2.pptx
VinayB68
 
PPTX
CARTOGRAPHY AND GEOINFORMATION VISUALIZATION chapter1 NPTE (2).pptx
abhi1361yadav
 
PPT
CRASH COURSE IN ALTERNATIVE PLUMBING CLASS
rene militante
 
PPTX
IOT PPTs Week 10 Lecture Material.pptx of NPTEL Smart Cities contd
ssusera400e8
 
PDF
Enhancing Cyber Defense Against Zero-Day Attacks using Ensemble Neural Networks
IJCNCJournal
 
PDF
Embodied AI: Ushering in the Next Era of Intelligent Systems
Yu Huang
 
PPTX
bas. eng. economics group 4 presentation 1.pptx
kiribakimoses1993
 
PDF
Operating System & Kernel Study Guide-1 - converted.pdf
mranoninvisib16
 
PPTX
UNIT 4 Total Quality Management .pptx
gokuld13012005
 
ASol_English-Language-Literature-Set-1-27-02-2023-converted.docx
AYUSHMANAV
 
573137875-Attendance-Management-System-original
AYUSHMANAV
 
Project quality management in manufacturing
BarMusaTetik
 
R24 SURVEYING LAB MANUAL for civil enggi
MNANDITHACIVILSTAFF
 
Well-logging-methods_new................
ZafriFarid
 
BMEC211 - INTRODUCTION TO MECHATRONICS-1.pdf
ryankakungu
 
Foundation to blockchain - A guide to Blockchain Tech
Davies Chacko
 
The CXO Playbook 2025 – Future-Ready Strategies for C-Suite Leaders Cerebrai...
Cerebraix Technologies
 
CYBER-CRIMES AND SECURITY A guide to understanding
Davies Chacko
 
Sustainable Sites - Green Building Construction
mhdumerali
 
Geodesy 1.pptx...............................................
abhi1361yadav
 
MCN 401 KTU-2019-PPE KITS-MODULE 2.pptx
VinayB68
 
CARTOGRAPHY AND GEOINFORMATION VISUALIZATION chapter1 NPTE (2).pptx
abhi1361yadav
 
CRASH COURSE IN ALTERNATIVE PLUMBING CLASS
rene militante
 
IOT PPTs Week 10 Lecture Material.pptx of NPTEL Smart Cities contd
ssusera400e8
 
Enhancing Cyber Defense Against Zero-Day Attacks using Ensemble Neural Networks
IJCNCJournal
 
Embodied AI: Ushering in the Next Era of Intelligent Systems
Yu Huang
 
bas. eng. economics group 4 presentation 1.pptx
kiribakimoses1993
 
Operating System & Kernel Study Guide-1 - converted.pdf
mranoninvisib16
 
UNIT 4 Total Quality Management .pptx
gokuld13012005
 

Secure lab setup for cyber security

  • 1. SECURE LAB SETUP FOR CYBER SECURITY Prepared By : Birju Tank GTU PG School, BISAG GANDHINAGAR.
  • 2. Main Messages  Developing a good cyber security laboratory and related exercise takes:  Planning  Thought  Resources  Helps to think about goals and structure
  • 3. Goals  Mixed use laboratory  Not enough space to dedicate to security  Need to be able to connect/disconnect from campus network quickly  Support both Windows and Linux  IUP only supported Linux, real-world environment is heterogeneous  Be able to emulate a real-world enterprise computing environment
  • 5. One Way to Lower the Cost  Purchase one many-port switch to act as physical switch, all hubs  Can isolate groups of ports  Can bridge groups where needed  Advantages  Significant cost savings  Reduced maintenance need  Disadvantage  Initial setup difficult
  • 6. Cont’d  Use of Virtual Machines within Physical Machines  Products  Microsoft Virtual PC (used 2005)  Support discontinued for Mac environment in 8/2006  VMWare (used 2006)  Another possibility: Xen  Operating systems must be modified  Higher performance gained
  • 7. Laboratory – Physical Issues  Want to provide some sense of physical security for each station  Lab furniture is currently 8 cubicles with high walls  Problem: not good for general usage, students tend to “hide” in lab and take over stations  Future: a more open physical environment?
  • 8. INFRASTRUCTURE  Goals  Heterogeneous and Isolated Network  Same system for each student team  Replicating tool (e.g. Norton Ghost) saves much time  Don’t forget to give each machine its own identity
  • 9. Cont’d  Structure of Isolated Network  One zone (all systems off one hub)  Student Team Systems running older Windows Server, Linux systems  Non-current OSs with known security holes  All tools used in lab exercises  Added several realistic-looking accounts (e.g. backup, logwd, tomcat) with weak passwords
  • 10. Cont’d  Structure of Isolated Network (continued)  Several Non-Student Systems  Other variants of Windows and Linux  1 Monitoring system  Additional Available Systems  Host systems can be used for internet access