pen-test
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Looking to set up an infosec lab

from [John M. Martinelli] [Permanent Link][Original]
To: pen-test@securityfocus.com
Subject: Looking to set up an infosec lab
From: "John M. Martinelli" <john@martinelli.com>
Date: Mon, 30 Jul 2007 21:40:13 -0400
Delivered-to: sp-com-lists@consult.net
Delivered-to: pentest-list2@consult.net
Delivered-to: mailing list pen-test@securityfocus.com
Delivered-to: moderator for pen-test@securityfocus.com
In-reply-to: <20b0a0170707300602p59857285l3f1a703a6f14c352@mail.gmail.com>
List-help: <mailto:pen-test-help@securityfocus.com>
List-id: <pen-test.list-id.securityfocus.com>
List-post: <mailto:pen-test@securityfocus.com>
List-subscribe: <mailto:pen-test-subscribe@securityfocus.com>
List-unsubscribe: <mailto:pen-test-unsubscribe@securityfocus.com>
Mailing-list: contact pen-test-help@securityfocus.com; run by ezmlm
References: <20b0a0170707270525m548e299dtd0643c9e0e2ef49d@mail.gmail.com> <BA0E92F3A518C74F99579843B13CF25939A4@ned.LogicallySecure.local> <002401c7d18b$1a7086f0$4f5194d0$@org> <20b0a0170707300602p59857285l3f1a703a6f14c352@mail.gmail.com>
Resent-date: Mon, 30 Jul 2007 22:55:40 -0600 (MDT)
Resent-from: pen-test-return-1078484736@securityfocus.com
Resent-message-id: <20070731045540.D8A0A143E50@outgoing2.securityfocus.com>
Resent-sender: listbounce@securityfocus.com
Sender: listbounce@securityfocus.com 
Hi, list.
A few of the previous e-mails going out on the mailing list got my attention - I'm interested in building a moderate hacklab to conduct mock attacks, intrusion detection, detection evasion, etcetera. My hardware situation allows me to deploy a VMware or Parallels lab - what kind of machines would you set up in my situation?
I plan on having a few Windows machines - perhaps a '98 box, a 2000 box, and an XP box. As far as Linux, I'd like to set up a Zoot (RedHat 6.2) and BSD box, but beyond that I'm asking for advice. Which flavors would you put up for conducting general vulnerability testing? 

Thanks,
John Martinelli
RedLevel.org Security

------------------------------------------------------------------------
This list is sponsored by: Cenzic

Need to secure your web apps NOW?
Cenzic finds more, "real" vulnerabilities fast.
Click to try it, buy it or download a solution FREE today!

http://www.cenzic.com/downloads
------------------------------------------------------------------------
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Cross testing exploit with vulnerability scan results, Chroot
Next by Date:  Re: Looking to set up an infosec lab, Ned Kratzer
Previous by Thread:  Re: Cross testing exploit with vulnerability scan results, Chroot
Next by Thread:  Re: Cross testing exploit with vulnerability scan results, Anders Thulin
Indexes:  [Date] [Thread] [Top] [All Lists]