PaulDotCom mailing list archives

What's in your Virtual Machine lab?

From: carlos_perez at darkoperator.com (Carlos Perez)
Date: Mon, 20 Jul 2009 09:42:22 -0400

In my case since I spent most of my time writing code for Meterepter my
lab has:
Internal Network

        PFsense Firewall VM
        Windows 2003 Domain Controller SP3
        Windows 2000 Memeber Server SP2
        Windows 2000 Memeber Server SP3
        Windows 2000 Memeber Server SP4
        Windows 2003 No patch
        Windows 2003 SP1
        Windows 2003 SP2
        Windows 2003 SP3
        Windows 2003 SP3 With Oracle 9i
        Windows 2003 SP3 With Oracle 10g
        Windows 2003 SP3 With Oracle 11g
        Windows 2003 SP3 With SQL 2005
        Windows 2003 SP3 With SQL 2008
        Windows 2003 Fully Patched
        Windows Vista SP1
        Windows Vista SP2
        Windows Vista SP1 no UAC
        Windows Vista SP2 no UAC
        Windows XP SP2
        Windows XP SP3
        Windows XP Fully Patched
        Windows 2008 SP1
        Windows 2008 SP2
        Windows 7 RC1
        BT4-Pre Internal Attack Machine

External Network
    BT4-Pre Internal external Machine
    Ubuntu 9.04 Dev Machine

All of this is almost a 1TB of VM's running under VMware in one Quad 8
GB VMware ESXi  Box, I'm able to bring up 8 of them. I have Meterpreter
as an executable on all machines both for user initialization or thru
the Scheduler service so as to get System priveles so I can test all of
my scripts as System and Administrative user. 
On a Mac at home under the latest Fusion I have a Leopard test VM not
fully patched.  

On Mon, 2009-07-20 at 15:25 +1000, Ali Emirlioglu wrote:

For my malware lab, I've got Windows XP unpatched, Debian 5.0 as BIND,
IRCd, etc. server, BackTrack4b for attacking and sniffing, and Windows
2003 unpatched to see if malware infects over virtual network. Very
simple build but has thought me a great deal and has helped with my
school projects immensely...
 
On my MBP, I've got OS X with VMWare fusion running Windows 7 in Unity
mode...

I plan to get into using DVL soon...

On Mon, Jul 20, 2009 at 2:53 PM, Michael Douglas <mick at pauldotcom.com>
wrote:

        I've got Xen running on my Ubuntu server at home.
        
        I have one "jumphost" guest with bridged networking that
        allows folks
        to VPN into it via OpenVPN
        
        I have the following guest OSs (I usually run only three or so
        at a time)
        - Win XP unpatched
        - Win XP SP 3 current
        - Debian
        - Ubuntu
        - DSL
        - TinyCore
        - CentOS
        - OpenSuse
        - BuggyBank
        - a debian box with matilldae
        - Moth
        - DVL
        
        
        At work, I have a beefy ESX server with just about every OS
        that we're
        going to run across.  It's a bit of a pain to keep all those
        guests
        happy.  ;)
        
        
        
        
        
        
        
        On Sun, Jul 19, 2009 at 8:44 PM, mattnels<mattnels at gmail.com>
        wrote:
        > Kyle,
        >
        >
        >
        > I use Citrix XenServer for my "permanent" infrastructure.
        I've found it to
        > be easier to build a solid virtual server that I can
        multiple systems on
        > without breaking a sweat.  I found "supported" hardware much
        easier fo find
        > for XenServer, as I built it from scratch with parts from a
        desktop I
        > replaced.    I have found I can run at least 4 virtual
        machines with my
        > Intel Quad Core and 8Gb Memory.   They aren't power houses
        by any means but
        > for testing they work great.
        >
        >
        >
        > On my desktop I run VirtualBox.
        >
        >
        >
        >
        >
        > From: pauldotcom-bounces at mail.pauldotcom.com
        > [mailto:pauldotcom-bounces at mail.pauldotcom.com] On Behalf Of
        Kyle Osborn
        > Sent: Sunday, July 19, 2009 5:22 PM
        > To: pauldotcom at mail.pauldotcom.com
        > Subject: [Pauldotcom] What's in your Virtual Machine lab?
        >
        >
        >
        > Looking to put something together myself, but I'm not sure
        what I should
        > grab.
        >
        > Wondering what everyone else uses (for vulnerability
        testing).
        >
        >
        >
        > Does everyone have machines such as, XP unpatched/SP1/2/3,
        Vista, 7?
        >
        > Linux distributions?  Should I stick in some older kernel,
        2.4.x, older
        > versions of the current 2.6.x kernel?
        >
        >
        >
        > What about software? Older version of IE and FireFox?
        >
        > Older versions of services? Apache, MySQL, fileshare
        services?
        >
        >
        >
        > What else should I be looking at?
        >
        >
        >
        >
        >
        > I realize I may not be taking full advantage of virtualizing
        and what it has
        > to offer, and seeing as how having a ton of computers (be it
        dual boot or
        > not) is not an option, what do you guys do?
        >
        >
        >
        >
        >
        > Kyle Osborn
        >
        >
        >
        
        
        > _______________________________________________
        > Pauldotcom mailing list
        > Pauldotcom at mail.pauldotcom.com
        >
        http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
        > Main Web Site: http://pauldotcom.com
        >
        _______________________________________________
        Pauldotcom mailing list
        Pauldotcom at mail.pauldotcom.com
        http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
        Main Web Site: http://pauldotcom.com
        



_______________________________________________
Pauldotcom mailing list
Pauldotcom at mail.pauldotcom.com
http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
Main Web Site: http://pauldotcom.com

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mail.pauldotcom.com/pipermail/pauldotcom/attachments/20090720/7bc483e7/attachment.htm 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 197 bytes
Desc: This is a digitally signed message part
Url : http://mail.pauldotcom.com/pipermail/pauldotcom/attachments/20090720/7bc483e7/attachment.pgp

Current thread:

What's in your Virtual Machine lab? Kyle Osborn (Jul 19)
- What's in your Virtual Machine lab? John Navarro (Jul 19)
- What's in your Virtual Machine lab? mattnels (Jul 19)
  - What's in your Virtual Machine lab? Michael Douglas (Jul 19)
    - What's in your Virtual Machine lab? Kyle Osborn (Jul 19)
    - What's in your Virtual Machine lab? Ali Emirlioglu (Jul 19)
    - What's in your Virtual Machine lab? Carlos Perez (Jul 20)
    - What's in your Virtual Machine lab? Michael Dickey (Jul 20)
    - What's in your Virtual Machine lab? Carlos Perez (Jul 20)
    - What's in your Virtual Machine lab? Raffi Jamgotchian (Jul 20)
    - What's in your Virtual Machine lab? Jack Daniel (Jul 20)
    - What's in your Virtual Machine lab? Nicholas B. (Jul 20)
- What's in your Virtual Machine lab? Jim Halfpenny (Jul 21)
  - What's in your Virtual Machine lab? Adrian Crenshaw (Jul 21)
    - What's in your Virtual Machine lab? christopher.riley at r-it.at (Jul 21)