Skip to content

Latest commit

 

History

History
146 lines (106 loc) · 11.1 KB

class-type-ethical-hacking.md

File metadata and controls

146 lines (106 loc) · 11.1 KB
title description services documentationcenter author manager editor ms.service ms.workload ms.tgt_pltfrm ms.devlang ms.topic ms.date ms.author
Set up an Ethical Hacking lab with Azure Lab Services | Microsoft Docs
Learn how to set up a lab using Azure Lab Services to teach ethical hacking.
lab-services
na
spelluru
lab-services
na
na
na
article
10/04/2019
spelluru

Set up a lab to teach ethical hacking class

This article shows you how to set up a class that focuses on forensics side of ethical hacking. Penetration testing, a practice used by the ethical hacking community, occurs when someone attempts to gain access to the system or network to demonstrate vulnerabilities that a malicious attacker may exploit.

In an ethical hacking class, students can learn modern techniques for defending against vulnerabilities. Each student gets a Windows Server host virtual machine that has two nested virtual machines – one virtual machine with Metasploitable3 image and another machine with Kali Linux image. The Metasploitable virtual machine is used for exploiting purposes and Kali virtual machine provides access to the tools needed to execute forensic tasks.

This article has two main sections. The first section covers how to create the classroom lab. The second section covers how to create the template machine with nested virtualization enabled and with the tools and images needed. In this case, a Metasploitable image and a Kali Linux image on a machine that has Hyper-V enabled to host the images.

Lab configuration

To set up this lab, you need an Azure subscription to get started. If you don't have an Azure subscription, create a free account before you begin. Once you get an Azure subscription, you can either create a new lab account in Azure Lab Services or use an existing account. See the following tutorial for creating a new lab account: Tutorial to setup a lab account.

Follow this tutorial to create a new lab and then apply the following settings:

Virtual machine size Image
Medium (Nested Virtualization) Windows Server 2019 Datacenter

Template machine

After the template machine is created, start the machine and connect to it to complete the following three major tasks.

  1. Set up the machine for nested virtualization. It enables all the appropriate windows features, like Hyper-V, and sets up the networking for the Hyper-V images to be able to communicate with each other and the internet.
  2. Set up the Kali Linux image. Kali is a Linux distribution that includes tools for penetration testing and security auditing.
  3. Set up the Metasploitable image. For this example, the Metasploitable3 image will be used. This image is created to purposely have security vulnerabilities.

A script that automates the tasks outlined above is available at Lab Services Ethical Hacking Scripts.

Prepare template machine for nested virtualization

Follow instructions in this article to prepare your template virtual machine for nested virtualization.

Set up a nested virtual machine with Kali Linux Image

Kali is a Linux distribution that includes tools for penetration testing and security auditing.

  1. Download image from https://www.offensive-security.com/kali-linux-vm-vmware-virtualbox-image-download/.

    1. Download the Kali Linux Hyper-V 64 Bit for Hyper-V.
    2. Extract the .7z file. If you don’t already have 7 zip, download it from https://www.7-zip.org/download.html. Remember the location of the extracted folder as you'll need it later.

  2. Open Hyper-V Manager from Administrative Tools.

  3. Select Action, and then select Import Virtual Machine.

  4. On the Locate Folder page of the Import Virtual Machine wizard, choose the location of the extracted folder that holds the Kali Linux image.

    Locate Folder dialog

  5. On the Select Virtual Machine page, select the Kali Linux image. In this case, the image is kali-linux-2019.3-hyperv.

    Select Kali image

  6. On the Choose Import Type page, select Copy the virtual machine (create a new unique ID).

    Choose import type

  7. Accept the default settings on Choose Folders for Virtual Machine Files and Choose Folders to Store Virtual Hard Disks pages, and then select Next.

  8. On the Connect Network page, choose LabServicesSwitch created earlier in the Prepare Template for Nested Virtualization section of this article, and then select Next.

    Connect network page

  9. Select Finish on the Summary page. Wait until copy and importing operations are completed. The Kali Linux virtual machine will now be available in Hyper-V.

  10. From Hyper-V Manager, choose Action -> Start, then choose Action -> Connect to connect to the virtual machine.

  11. The default username is root and the password is toor.

    [!NOTE] If you need to unlock the image, press the CTRL key and drag the mouse upwards.

Set up a nested VM with Metasploitable Image

The Rapid7 Metasploitable image is an image purposely configured with security vulnerabilities. You'll use this image to test and find issues. The following instructions show you how to use a pre-created Metasploitable image. However, if a newer version of the Metasploitable image is needed, see https://github.com/rapid7/metasploitable3.

  1. Navigate to https://information.rapid7.com/download-metasploitable-2017.html. Fill out the form to download the image and select the Submit button.
  2. Select the Download Metasploitable Now button.
  3. When the zip file is downloaded, extract the zip file, and remember the location.
  4. Convert the extracted vmdk file to a vhdx file so that you can use with Hyper-V. To do so, open PowerShell with administrative privileges and navigate to the folder where the vmdk file resides, and follow these instructions:

    1. Download the Microsoft Virtual Machine Converter, and run mvmc_setup.msi file when prompted.

    2. Import the PowerShell module. The default location in which the module is installed is C:\Program Files\Microsoft Virtual Machine Converter\

      Import-Module 'C:\Program Files\Microsoft Virtual Machine Converter\MvmcCmdlet.psd1'

    3. Convert the vmdk to a vhd file that can be used by Hyper-V. This operation may take several minutes.

      ConvertTo-MvmcVirtualHardDisk -SourceLiteralPath .\Metasploitable.vmdk -DestinationLiteralPath .\Metasploitable.vhdx -VhdType DynamicHardDisk -VhdFormat vhdx

    4. Copy the newly created metasploitable.vhdx to C:\Users\Public\Documents\Hyper-V\Virtual Hard Disks.

  5. Create a new Hyper-V virtual machine.

    1. Open Hyper-V Manager.

    2. Choose Action -> New -> Virtual Machine.

    3. On the Before You Begin page of the New Virtual Machine Wizard, click Next.

    4. On the Specify Name and Location page, enter Metasploitable for the name, and select Next.

      New VM image wizard

    5. On the Specify Generation page, accept the defaults, and select Next.

    6. On the Assign Memory page, enter 512 MB for the startup memory, and select Next.

      Assign memory page

    7. On the Configure Networking page, leave the connection as Not Connected. You'll set up the network adapter later.

    8. On the Connect Virtual Hard Disk page, select Use an existing virtual hard disk. Browse to the location for the metasploitable.vhdx file created in the previous step, and select Next.

      Connect virtual network disk page

    9. On the Completing the New Virtual Machine Wizard page, and select Finish.

    10. Once the virtual machine is created, select it in the Hyper-V Manager. Don't turn on the machine yet.

    11. Choose Action -> Settings.

    12. On the Settings for Metasploitable dialog for, select Add Hardware.

    13. Select Legacy Network Adapter, and select Add.

      Network adapter page

    14. On the Legacy Network Adapter page, select LabServicesSwitch for the Virtual Switch setting, and select OK. LabServicesSwitch was created when preparing the template machine for Hyper-V in the Prepare Template for Nested Virtualization section.

      Legacy Network adapter page

    15. The Metasploitable image is now ready for use. From Hyper-V Manager, choose Action -> Start, then choose Action -> Connect to connect to the virtual machine. The default username is msfadmin and the password is msfadmin.

The template is now updated and has images needed for an ethical hacking penetration testing class, an image with tools to do the penetration testing and another image with security vulnerabilities to discover. The template image can now be published to the class. Select the Publish button on template page to publish the template to the lab.

Cost

If you would like to estimate the cost of this lab, you can use the following example:

For a class of 25 students with 20 hours of scheduled class time and 10 hours of quota for homework or assignments, the price for the lab would be:

25 students * (20 + 10) hours * 55 Lab Units * 0.01 USD per hour = 412.50 USD.

For more information on pricing, see Azure Lab Services Pricing.

Conclusion

This article walked you through the steps to create a lab for ethical hacking class. It includes steps to set up nested virtualization for creating two virtual machines inside the host virtual machine for penetrating testing.

Next steps

Next steps are common to setting up any lab: