Penetration Testing mailing list archives

[PEN-TEST] RES: [PEN-TEST] Educational laboratory setup

From: Antonio Montes <montes () LAC INPE BR>
Date: Thu, 14 Dec 2000 16:34:27 -0200

Hi!

We have a course lab just like the one you're proposing. The students love
it :-) Since the lab runs for twelve weeks, we have split the students in
three groups and each group administer the lab's internal network for a
period of four weeks while the other two try to attack the network. The
last week of the period is dedicated to the elaboration of a report for
each group. The internal network has machines running Solaris, Linux and NT
and has to offer various services, such as ftp, telnet, http, smtp, pop,
etc. Students from the attacking groups have nonprivileged accounts in the
machines of the internal network. For the next course, we plan to have just
one attacking group, the other one will be in charge of the NIDS (Snort).
The students have found it too time consuming to administer the network and
monitor the NIDS (don't we all? :-).
Good luck.

Antonio
-----------------------------------------------
Dr. Antonio Montes
Network and Systems Security Group
National Institute for Space Research
S.J.Campos, SP - Brazil
Tel. 55 12 345-6538 Fax. 55 12 345-6375

----- Mensagem original -----
De:             Markus Peuhkuri [SMTP:puhuri () TCT HUT FI]
Enviada em:             Quinta-feira, 14 de Dezembro de 2000 12:26
Para:           PEN-TEST () SECURITYFOCUS COM
Assunto:                [PEN-TEST] Educational laboratory setup

We have a new course for next term about communication security issues
(undergraduate M.Sc.).  One part of the course is to do some
laboratory work on both attacking and protecting the network and
information stored there.

As there is not very much time allocated for these tasks, it should be
well prepared to be meaningful.

We are planning to have attacking hosts outside, a firewall, NIDS, a
router network and end system hosts with possible back doors and
trojans.  It is also possible that some groups have possibility to put
a sniffer on network.  There is also varying amount of information
available about what is happening and what is in network.

I'll like to know about similar courses, if you have any experiences
or insight.

--
Markus Peuhkuri        ! internet: Markus.Peuhkuri () hut fi
HUT/Telecomm. Tech.    ! http://www.iki.fi/puhuri/

Current thread:

[PEN-TEST] RES: [PEN-TEST] Educational laboratory setup Antonio Montes (Dec 15)