Beruflich Dokumente
Kultur Dokumente
Use this setup guide to prepare your lab environment for the Ethical Hacking course activities.
Intel Core i5 3.2 GHz 64-bit CPU or better (multiple cores is preferred)
16 GB RAM (32 GB or more is recommended)
200 GB free disk space, 7200 RPM or faster drive (SSD is preferred)
DVD drive
1 Ethernet network adapter
17” LC monitor
Mouse, sound card
Internet access
Wireless network adapter (built-in or USB)
Support Tools:
You will need the following support software:
VMWare Workstation 15 Player for Windows (alternatively, VMWare Workstation Pro or Oracle
Virtual Box)
o https://www.vmware.com/products/workstation-player/workstation-player-
evaluation.html
7zip for 64-bit Windows
o https://www.7-zip.org/a/7z1805-x64.exe
Opera Browser for Windows
o https://www.opera.com/computer/thanks?ni=stable&os=windows
A PDF reader such as Adobe Acrobat Reader or Foxit PDF Reader
o https://www.foxitsoftware.com/downloads/#Foxit-Reader/
o https://get.adobe.com/reader/
Mozilla Thunderbird for Windows
o https://www.thunderbird.net/en-US/
MailEnable Standard Edition (Free) Email Server
o http://www.mailenable.com/standard_edition.asp
Hacking Tools
You will need to download and organize a number of hacking tools on your host. You will drag and drop
these tools as needed to your Windows guests during the activities.
C:\HackingTools\
5. Download and place each of the following tools in their respective folders:
Note: Make sure your antivirus (realtime protection) is shut off. Additionally, Chrome and
Internet Explorer browsers may still refuse to download some of the tools, especially the denial-
of-service applications. Consider using Opera instead.
Angry IP Scanner
o https://github.com/angryip/ipscan/releases/download/3.5.3/ipscan-3.5.3-
setup.exe
MegaPing
o http://www.magnetosoft.com
Colasoft Packet Builder
o http://www.colasoft.com/download/products/download_packet_builder.p
hp
Wireshark 2.6.4 (Stable Release) or later for Windows
o https://www.wireshark.org/download.html
Module 4-Enumeration
SuperScan 4
o https://en.softonic.com/download/superscan/windows/post-download
Hyena x64 v12.5 or later
o https://www.systemtools.com/cgi-bin/download.pl?Hyena_en_x64
NetBIOS Enumerator
o http://prdownloads.sourceforge.net/nbtenum/nbt_enum_offr_bin2003.03.
01-14_22.zip?download
SoftPerfect Network Scanner
o https://www.softperfect.com/download/files/netscan_setup.exe
Module 7-Sniffing
IDServe
o https://www.grc.com/id/idserve.htm
tables-vista-free.zip
o http://sourceforge.net/projects/ophcrack/files/tables/Vista%20free/tables_
vista_free.zip/download
Pwdump7x
o http://www.tarasco.org/security/pwdump_7/pwdump7.zip
L0phtCrack 7
o http://www.l0phtcrack.com/download.html
Ophcrack 3.8.0 or later for Windows
o https://sourceforge.net/projects/ophcrack/files/ophcrack/3.8.0/ophcrack-3.8.0-
bin.zip/download
Spytech Spy Agent 10.x or later Standard Edition Free Trial
o https://www.majorgeeks.com/mg/get/spytech_spyagent,1.html
SNOW
o http://www.darkside.com.au/snow/snow.zip
QuickStego 1.2.1
o https://www.majorgeeks.com/mg/getmirror/quickstego,1.html
Additional Hardware
The following additional hardware is required for some of the activities. If you don’t have this hardware,
you can watch the respective activity videos without performing the tasks yourself.
Older Android phone, version 4.4 (KitKat) to 6.0.1 (Marshmallow). The phone does NOT need a
SIM card or cellular plan. It just needs to be Wi-Fi capable.
Wi-Fi capable mobile device such as a phone, tablet, or laptop. The Android phone (above) can
also be used.
Wi-Fi router such as a Linksys WRT54-G or similar. Must support both WEP and WPA.
External Wi-Fi network adapter such as an Alfa AWUS036NHA Wireless B/G/N USB (or similar).
Device must be capable of running Aircrack-ng suite in promiscuous mode on Kali Linux.
USB thumb drive, formatted with the FAT32 file system, with at least 50 KB of free space.
Install Software
1. Perform a default installation of the following:
Note: Alternatively, you can use a different virtualization product such as VMWare Workstation
Professional or Oracle Virtual Box. If you
IP Adressing
Depending on your virtualization product, the subnet ID for your lab network might be
different from what is used in the video demonstrations.
The default subnet ID for VMware Workstation 15 Player is 192.168.75.0/24.
If yours is different, make a note of it and accommodate for the difference as you perform
the activities.
Alternatively, you can edit the configuration in the virtualization product to conform to this
setup guide. Please see your virtualization product manufacturer’s guide for the procedure.
Uninstall Hyper-V
IF you have Hyper-V installed, you will need to uninstall it.
End Result
You have a Windows Server 2016 Standard (Desktop Experience) guest VM installed with these features:
60 GB HD (dynamically allocated)
2048 MB (2 GB) RAM
User = Administrator
Password = Pa$$w0rd
Name = Server2016
Ethernet0 IP Address = 192.168.75.16 (Your subnet ID might be different)
Subnet Mask = 255.255.255.0
Default Gateway = 192.168.75.2 (Your subnet ID might be different)
Preferred DNS = 8.8.8.8
IE Enhanced Security Configuration = Off
Roles and Features:
o SNMP Service (including SNMP WMI Provider)
READ ONLY
Community string = public
Accept SNMP packets from any host
o Web Server IIS
o FTP Server (including FTP Service)
Installed Software:
o Chrome Browser
o MailEnable Email Server with two mailboxes
o Thunderbird Email client that uses MailEnable as its server
o VMware Tools
Firewall off
Password Policy:
o No password complexity
o No maximum password age (set to 0)
o No minimum password length (set to 0)
o No password history
User accounts / passwords:
o Bwalya / letmein
o Joe / apple
o Moo / password
Install the Operating System
1. Locate the ISO you downloaded. A downloaded evaluation ISO will be named something like
Windows_Server_2016_Datacenter_EVAL_en-us_14393_refresh.ISO.
2. Open VMware Workstation 15 Player.
3. Click Create a New Virtual Machine.
4. On the Welcome to the New Virtual Machine Wizard page, click the I will install the operating
system later radio button and click Next.
5. On the Select a Guest Operating System page, ensure that the Microsoft Windows radio button
is selected, and that Windows Server 2016 is selected from the dropdown list, then click Next.
6. On the Name the Virtual Machine page, ensure that the Virtual machine name is Windows
Server 2016. Accept the Location default and click Next.
7. On the Specify Disk Capacity page, accept the Maximum disk size default and select the Store
virtual disk as a single file radio button. Click Next.
8. Click Finish.
9. Click Edit virtual machine settings.
10. On the Hardware tab, select CD/DVD (SATA).
11. In the Connection settings, click the Use ISO image file: radio button.
12. Click the Browse button.
13. Browse to and select the ISO, then click Open.
14. Click OK.
15. Click Play virtual machine.
16. If a popup dialog box regarding Removable Devices appears, click OK.
17. When prompted to press any key to boot from CD or DVD, quickly click inside the window and
then press the spacebar. If you miss it and see an “unsuccessful” message, press Ctrl+Alt to
release your mouse, then at the top of the VM window press the Ctrl+Alt+Del button and
try again.
18. On the Windows Setup page, accept the default and click Next.
19. Click Install Now.
20. On the Select the operating system you want to install page, select Windows Server 2016
Standard Evaluation (Desktop Experience) and click Next.
21. On the license page, click the I accept the license terms checkbox and click Next.
22. On the Which type of installation do you want? page, click Custom: Install Windows only
(advanced).
23. Click Next. Allow the install to proceed.
24. On the Customize settings page, ensure that Administrator is entered for User name, then enter
and re-enter Pa$$w0rd (that’s a zero, not a capital O) for the password and click Finish.
25. When you see the login screen, at the top of the VM click the button.
26. At the Administrator login prompt, enter Pa$$w0rd and press Enter.
27. Verify that you can log in, and that after a moment the Server Manager Dashboard opens.
1. Locate the MailEnable installer you downloaded. It will be named something like
standard1019.exe.
2. Double-click the installer.
3. Click OK.
4. Click Next.
5. On the Get Installation Settings page, in the Name: text box enter your name. In the Company:
text box, enter example.com.
6. Click Next UNTIL you reach the Get Postoffice Details page (about 6 times).
7. On the Get Postoffice Details page, in the Post Office Name: text box change the text to
example.com, in the Password: text box, change the default to 1Password and click Next.
8. Click Next.
9. On the SMTP Connector Configuration page, in the Domain Name: text box enter
example.com, accept the other defaults, and click Next.
10. Click Next and allow the installation to continue.
11. On the Select WebMail Web Root page, ensure that the Configure web mail as an IIS Virtual
Directory checkbox is selected, and that the Web Server: dropdown box shows (Default Web
site) Default Web Site and then click Next.
12. Click Next again.
13. Click Finish.
14. If a browser page opens, close it.
Set Up Mailboxes
1. On Server 2016, click Start.
2. Locate the M section, and expand MailEnable.
3. Click MailEnable.
4. In the MailEnableAdmin console, on the left pane, under MailEnable Management, expand
Messaging Manager Messaging Manager Post Offices example.com
5. Double-click Mailboxes.
6. Verify that you see the Postmaster mailbox.
1. Locate and launch the Thunderbird installer that you downloaded. It will be named something
like Thunderbird Setup 60.3.0.exe.
2. If prompted by User Account Control, click Yes.
3. If prompted to install the file, click Run.
4. On the Welcome page click Next.
5. Click Next again.
6. Click Install.
7. Click Finish.
8. If you see a System Integration popup dialog box, click Skip Integration.
9. If applicable, on the Welcome to Thunderbird page, select Skip this and use my existing email
button. (NOTE: Not all versions of Thunderbird include this page)
10. On the Mail Account Setup page, enter your name, the email address you created in
MailEnable, and the password you set for the mailbox in MailEnable.
Disable the Firewall, Windows Updates, and Windows Defender Realtime Protection
1. Click the Start button and enter Command Prompt.
2. Right-click Command Prompt Run as administrator. When prompted by User Account
Control, click Yes.
3. Type these two commands. Press Enter after each:
4. Enter sconfig
5. Enter 5
6. Enter M
7. When the Update Settings popup window appears, click OK.
8. Close the command prompt.
8. Click Create.
9. Using the same method, create two more users / passwords (NOTE: You can substitute your
own names as desired, but keep the same passwords).
joe / apple
moo / password
Configure SNMP
1. In Computer Management, on the left pane, expand Services and Applications.
2. Select Services.
3. In the middle pane, scroll down to find SNMP Service and double-click it.
4. Click the Security tab.
5. Under Accepted community names, click the Add… button.
6. In the Community Name: text field, enter public and click Add.
7. Click the Accept SNMP packets from any host radio button.
8. Click OK.
9. Close Computer Management.
2. If necessary, launch Server Manager by clicking its icon in the lower left.
3. Using the same method you used when setting up Server 2016, change the Computer name to
Server2012R2
11. Scroll down a bit to find and check the Web Server (IIS) checkbox, click Next, click Add Features,
then click Next again.
12. On the Select features page, check the following checkboxes (you will have to scroll down to see
all of them):
Group Policy Management
SMTP Server
SNMP Service
SNMP WMI Provider
13. Click Next
14. Continue the installation. On the Select role services page, scroll down and also check the
following checkboxes:
FTP Server
FTP Service
15. Click Next 4 times.
16. Click Install.
17. When the installation is complete, click Close. If required, restart the server.
5. On the Deployment Configuration page, click the Add a new forest radio button.
6. In the Root domain name: text box, enter example.com
7. Click Next.
8. On the Domain Controller Options page, in the Password: and Confirm password: text boxes,
enter P@ssw0rd
9. Click Next four times, ignoring any warnings, then click Install
10. Allow the installation to complete. The server will reboot automatically.
11. Log into Server2012R2 as EXAMPLE\Administrator with the password of P@ssw0rd
6. Click Next.
7. On the next page, set Joe’s password to Pa22word
8. Unckeck the User must change password at next logon checkbox
9. Click Next.
10. Click Finish.
11. In the Users container, verify that you see Joe Smith.
12. Similarly, create the following users and passwords . Make sure that they do NOT need to
change their password at next logon:
Add Joe, Sally, and Moo to the Domain Admins and Administrators Groups
1. In Active Directory Users and Computers, in the Users container, locate and right-click Domain
AdminsProperties.
2. In the Domain Admins Properites sheet, click the Members tab.
3. In the Members tab, click the Add button.
4. In the Enter the object names to select text box, enter Joe and click OK.
5. Ensure that you see Joe Smith as a member.
6. Similarly, add Sally and Moo.
7. Verify that you see Joe, Moo, and Sally in the Members tab.
8. Click OK.
9. In the left pane under example.com, locate and click the Builtin container.
10. Locate and double-click the Administrators group.
11. Using the technique you just learned, add Joe, Moo, and Sally to Members.
12. Close Active Directory Users and Computers.
4. Enter sconfig
5. Enter 5
6. Enter M
7. When the Update Settings popup window appears, click OK.
8. Close the command prompt.
Configure SNMP
1. At the Desktop, in the lower left corner, click Start.
2. On the Start page, click the Administrative tools tile.
3. In Administrative Tools, scroll down and double-click Services.
4. In Services, scroll down, locate, and double-click SNMP Service.
5. In SNMP Service Properties, click the Security tab.
6. In the Security tab, under Accepted community names, click Add.
7. Change the Community rights: dropdown list to READ WRITE.
8. In the Community Name field, enter public and click Add.
9. In the Security tab, click the Accept SNMP packets from any host radio button.
10. Ensure that your settings look like the following and click OK.
11. Close Services.
12. Close Administrative Tools.
1. On the desktop, move your mouse to the lowest left corner of the task bar to display and click
the Start thumbnail
2. On the Start page (with the app tiles), start typing Control Panel
3. When the Control Panel app appears, click it
4. Click System and Security
5. Under System, click See the name of this computer
6. Under Computer name, domain, and workgroup settings, click Change settings
7. In the System Properties dialog box, on the Computer Name tab, click the Change… button
8. Change the computer name to Windows8, click OK twice, and when prompted restart the VM.
3. Click OK.
4. Close the Control Panel.
Alternatively, on the left pane Favorites Launcher bar, click the terminal icon to open a
terminal, type thunderbird and press Enter. (Note: if you use this method, do not close the
terminal window until you are ready to close Thunderbird!)
6. Set up Thunderbird for the user Moo using the same method you used in Server2016.
Disk size 20 GB
2048 MB (2 GB) RAM
Hostname = Ubuntu
Username = ubuntu
Password = toor
Installed software:
o Thunderbird Email Client
2. On the desktop, in the upper left corner, click the Search your computer icon and
type terminal
3. When the terminal icon appears, click it.
4. In the terminal window, enter ifconfig
5. Identify the name of the Ethernet interface. It is probably ens33 or something similar.
6. Identify the IP address assigned to the Ethernet interface.
Install Thunderbird
1. Using the same procedure that you used in Kali, open and terminal and install and configure the
Thunderbird email client for the user Moo.
Troubleshooting
Here are some troubleshooting steps you can use if you encounter specific difficulties during setup.
Uninstalling Hyper-V
Microsoft Hyper-V is not compatible with other virtualization products such as VMware or VirtualBox.
Additionally, when you uninstall Hyper-V, it will still leave an artifact of itself in the computer’s boot
record which you will need to remove manually.
If you uninstall Hyper-V and you still get an error message when you try to launch VMware Workstation
Player, perform this task:
1. As you specify roles and features, if you are prompted “Do you need to specify an alternate
path?...” click the Specify an alternate source path link at the bottom of the page.
2. Leave the installation windows open. Temporarily navigate to the Task Bar and click the File
Explorer icon at the bottom. In the This PC popup window, identify the drive letter for the DVD
Drive. It is most likely D: Ensure that the ISO you connected to the VM (to install the server)
appears as a DVD.
Drag and Drop Between Host and Guests Does Not Work
If you installed VMware tools on your Guest VMs, you should be able to drag and drop between your
host and the Guest (at least Windows guests). If this does not work, then use any of these alternate
methods to move the files:
Use a USB Removable Drive to Move the Files
1. Plug a USB removable drive into your host.
2. If a popup message appears asking you to choose where you would like to connect the disk,
select Connect to the host and click OK.
3. Copy the necessary files for that activity from C:\Hacking onto the USB drive. If you have enough
space, copy the entire folder to the drive.
4. Switch to VMware Player for whichever VM needs the tools.
5. Click PlayerRemovable Devices<name of the disk>Connect (disconnect from host).
6. Click OK.
7. In the guest VM, in the File Explorer, check to make sure the drive appears.
8. Proceed to copy the files to the guest desktop.
5. In the Advanced Sharing dialog box, click the Share this folder checkbox.
6. Click the Permissions button
7. In the Group or user names box, ensure that Everyone appears and is selected.
8. In the Allow column, click the Full Control checkbox.
9. Click OK twice.
10. Click the Security tab
11. Click the Edit button
12. Click the Add button
13. In the Enter the object names to select text box, type everyone and press Enter.
14. Back in the Security tab, ensure that Everyone is selected.
15. In the Allow column, click Full control.
16. Click OK.
17. Click Close.
18. Open a command prompt and enter ipconfig
19. Scroll through the results and look for the Ethernet adapter VMware Network Adapter Vmnet8.
This is the interface the host uses to connect with the guests. Make note of the IP address.
20. Switch to the VM that needs the tools and log in.
21. Click StartRun
22. At the Run line, enter the IP address you discovered in Step 19 Precede it with \\. For example:
\\192.168.75.1
23. Click OK.
24. In the Windows Security popup dialog box, enter the username and password for your HOST.
25. Locate Hacking Tools share and double click it to open it.
Create an ISO from C:\Hacking and Use the ISO to Move the Files
1. On your host, download a copy of Folder2Iso from here:
http://www.trustfm.net/software/utilities/Folder2Iso.php?page=Download
Note: You will have to choose a site from which to actually download it. I chose Google Drive.
The direct link is:
https://drive.google.com/file/d/0B7nKMWPhyfl-SlVoWXprWkhHR2c/view
2. Double-click the installer. It is actually just a self-extracting archive that, by default, will unzip
the folder to wherever you downloaded the installer to.
3. Locate the Folder2iso folder, and double-click Folder2iso.exe
4. Click Select folder, then browse to and select C:\Hacking Tools.
5. Click Select Output, browse to your desktop, and name the ISO Hacking Tools and click Save.
6. Click Generate ISO. When finished, it will say “ISO Generated” at the bottom left.
7. Switch to VMware Player for the VM that needs the tools.
8. Click PlayerManageVirtual Machine Settings.
9. On the Hardware tab, click CD/DVD (SATA).
10. On the right side, under Connection, click Use ISO image file:
11. Click Browse…
12. Browse to and select Hacking Tools.iso and click Open.
13. Click OK.
14. In the VM, browse to ComputerDVD Drive (D:)
15. Open up the D: drive and copy the files to the VM desktop.
Congratulations! Your Ethical Hacking lab is set up and ready for use.