☁ Build a Cloud Cybersecurity Red Team / Blue Team Homelab. Download the step-by-step notes (no email required): bit.ly/3LFqK6I
⏰ Timestamps:
00:00 - Project Introduction
1:49 - Network Topology & Project Overview
5:55 - Option 1: Provision with Terraform
18:09 - Option 2: Provision with AWS Console UI
33:57 - Log Into Attacker Box (Configure RDP)
39:04 - Log Into Security Tools Box
40:33 - Log into Windows Box
43:19 - Download & Configure Splunk
48:36 - Download & Configure Universal Forwarder
54:37 - Download & Configure Nessus
🔧 Terraform GitHub Project: github.com/collinsmc23/cloud-...
🔗 Linked Mention:
Microsoft Remote Desktop for macOS: apps.apple.com/us/app/microso...
WSL Ubuntu 22.04: apps.microsoft.com/store/deta...
Create AWS Account: aws.amazon.com/resources/crea...
Download Terraform: developer.hashicorp.com/terra...
Download AWS CLI: docs.aws.amazon.com/cli/lates...
Download Git: git-scm.com/downloads
Splunk Enterprise (Free Trial) Download Page: www.splunk.com/en_us/download...
Splunk Universal Forwarder Download Page: www.splunk.com/en_us/download...
Tenable Nessus Download Page: www.tenable.com/downloads/nessus
💻 Commands & Configurations:
Bash Script For Kali XRDP Installation:
#!/bin/sh
echo "[i] Updating and upgrading Kali (this will take a while)"
apt-get update
apt-get full-upgrade -y
echo "[i] Installing Xfce4 & xrdp (this will take a while as well)"
apt-get install -y kali-desktop-xfce xorg xrdp
echo "[i] Configuring xrdp to listen to port 3389 (but not starting the service)"
sed -i 's/port=3389/port=3389/g' /etc/xrdp/xrdp.ini
Splunk:
Splunk Enterprise Download:
sudo dpkg -i splunk-deb
/opt/splunk/bin
sudo ./splunk start
Inputs.conf file path location:
C:\Program Files\SplunkUniversalForwarder\etc\system\local
Inputs.conf Configuration:
[WinEventLog://Security]
index = win-security
disabled = 0
Restart Universal Forwarder:
cd C:\Program Files\SplunkUniversalForwarder\bin
splunk.exe restart
Tenable Nesuss:
dpkg -i "Nessus-[version number]-debian6_amd64.deb"
sudo systemctl start nessusd.service
🐕 Follow Me:
Twitter: / collinsinfosec
Instagram: / _collinsinfosec
Cybercademy Discord Server: / discord
🤔 Have questions, concerns, comments?:
Email me: grant@cybercademy.org
🎧 Gear:
Laptop (Lenovo X1 Carbon Ultrabook 6th Gen): amzn.to/2O0UfAM
Monitors (Dell D Series 31.5” D3218HN): amzn.to/2EXlgRF
Keyboard (Velocifire VM01): amzn.to/2TEswfd
Headphones (Audio Technica ATH-M40x): amzn.to/2F4Tvq6
Work Monitors (Dell U4919DW UltraSharp 49 Curved Monitor): amzn.to/3yQmDhM
Desk (FLEXISPOT EW8 Comhar Electric Standing Desk): amzn.to/3S9OxvG
💻 Cybersecurity PC Build Parts
[Processor] Intel Core i7-13700K 3.4 GHz 16-Core Processor: amzn.to/3OlTTUK
[Graphics Card] Asus DUAL OC GeForce RTX 3060 Ti 8 GB Video Card: amzn.to/3OE0bkd
[AIO Cooler] Corsair iCUE H100i RGB ELITE 65.57 CFM Liquid CPU Cooler: amzn.to/3DEUUT9
[Motherboard] MSI PRO Z690-A WIFI DDR4 ATX LGA1700 Motherboard: amzn.to/3Ol9La8
[RAM](2x) Corsair Vengeance LPX 64 GB (2 x 32 GB) DDR4-3200 CL16 Memory: amzn.to/3OlsgeM
[HDD] Seagate IronWolf NAS 8 TB 3.5" 7200 RPM Internal Hard Drive: amzn.to/3DFdc6K
[SSD] Samsung 980 Pro 2 TB M.2-2280 PCIe 4.0 X4 NVME Solid State Drive: amzn.to/3KpTnnQ
[Case] Corsair 5000D AIRFLOW ATX Mid Tower Case: amzn.to/44Rjaxf
[Power Supply] Corsair RM850x (2021) 850 W 80+ Gold Certified Fully Modular ATX Power Supply: amzn.to/478wC1r
[Fans] Corsair iCUE SP120 RGB ELITE 47.7 CFM 120 mm Fans 3-Pack: amzn.to/44R4myD
1 июн 2024