In this chapter, we will cover the following topics:

• Lab architecture and considerations
• Installing VirtualBox
• Installing Kali on VirtualBox
• Using Kali Linux from bootable media
• Upgrading Kali Linux
• Understanding the advanced customization and optimization of Kali
• Installing Windows machines
• Installing Metasploitable
• Installing OWASP-BWA
• Understanding hack me and other online resources

In order to set the stage for the rest of this book and to help you reproduce the recipes and their output, I strongly recommend that you create a test environment where you can run various tools that are included with Kali Linux. In this chapter, we will be focusing on building our testing environment based on free or low-cost applications to minimize cost.

Starting with installing the virtualization platform, VirtualBox, we will walk through a few common installation techniques for Kali Linux; you will also learn how to update and maintain your installation.

In this section, we will discuss our lab design and provide some information that you can use to expand it in the future.

As we begin to set up our lab, we want to take some time to discuss the lab setup and some of the considerations that we will take when using the lab. Some of these considerations are designed to make the lab more effective, while others are used for the protection of the networks our lab is connected to. We also want you to be in a position to easily expand or grow this network with other test machines as you master the Kali recipes that follow.

In this section, we will be discussing general topics as opposed to specific recipes.

Today, there are many different hypervisors that will allow you to run multiple virtual machines on a single physical machine. For our specific purposes, we have chosen to show you how to setup the initial lab in VirtualBox due to several compelling factors. It's free to use, has multi-platform support, and it's able to run within your main operating system. However, as we progress past the first chapter, we will be switching to VMware ESXi. This will not affect recipes in any way between using VirtualBox and VMware ESXi. Our main reason for switching is the amount of compute resources that are available to us in our dedicated lab. We have the ability to run many virtual machines at once, and we will have the ability to insert firewalls and other security devices between our Kali instance and our testing hosts, as needed. We also have the flexibility to create more complex environments.

If, for any reason, you are looking to build a larger test network or have a different hypervisor of choice that better suits your purposes, feel free to use it, as we will assume you will be able to translate our instructions between the different hypervisors.

In our lab, we are going to be using two networks within VirtualBox: a NAT network and a host-only network. Our Kali box will be connected to both the networks, so it can communicate with devices on the internet, download updates, and get software packages as needed. Our target machines will only be connected to the host-only network. The host-only network can only talk within the host and among other devices connected to the host-only network. It cannot communicate through your Ethernet or wireless networks. This setup is extremely critical to our testing environment, as we do not ever want to expose our testing hosts to the outside world, as they are very vulnerable and will be hacked rather quickly.

To further protect the networks that your lab is connected to, we would actually suggest disconnecting the virtual adapter of the Kali virtual machine that connects to the NAT network, unless specifically required for the recipe operation. This way, your network is protected from accidental exposures to any attacks you may be sourcing from Kali.

One of the many questions frequently asked is why we soften machines or use machines that have vulnerabilities. The fact is that a properly patched, properly configured, and properly hardened machine is quite difficult to get into. Penetration testing is not trying to get through to hardened devices but looking specifically for those devices that have vulnerabilities. In a typical engagement, you may find only one or two machines that have vulnerabilities. You can then use these machines to gain a foothold into an environment to compromise other more hardened machines. If you start doing regular engagements as a penetration tester, you will be surprised by just how many machines you may be able to find that have vulnerabilities. This is especially true with the proliferation of low cost Internet of Things (IoT) devices such as internet connected cameras, thermostats, automation systems, and monitoring. These devices often run Linux-type embedded operating systems and are rarely patched and often overlooked. More importantly, they are often riddled with bugs and vulnerabilities that we can use for our purposes.

To set the foundation for our lab, we will be using VirtualBox as a virtual hardware platform to host our images. This recipe will outline the steps necessary to do so. In the event that you wish to use an alternate virtualization platform, the same general principles will apply.

When it comes to learning a new set of skills or sharpening the ones you already have, the importance of a testing environment cannot be overstated. It is imperative that you have the means to test against systems in a known state so that you can validate the results of your tests.

One method of saving resources, both physical hardware and computing resources, is to utilize a virtual environment where your testing devices reside. One very popular example of a virtualization platform is Oracle's VirtualBox—a purpose build virtualization environment designed for use with x86 platforms that can host many virtual machines on one physical computer. This allows for the sharing of resources such as disk, RAM, CPU, and so on. Additionally, because VirtualBox supports importing and exporting virtual appliances, resources can be easily moved, shared, and so on.

To prepare for the use of VirtualBox for the remainder of this book, we will need to ensure that we have enough resources on our server to be able to run several of the virtual guests at the same time. The following chart highlights the amount of resources that each of our intended guest systems will require:

In this section, we will build out an environment that will allow you to perform security testing without the need for physical hardware:

1. Ensure that you have the following resources free on your host machine to support the system combinations mentioned in preceding list. In totality, you will need the following in addition to the resources needed by VirtualBox itself:
   • 5 CPU
   • 1500+ GB free disk space
   • 16 GB free memory
2. Download the appropriate version of VirtualBox for your lab environment from www.virtualbox.org.

3. Once you have downloaded the installer, locate it, and start the installation. As the application begins the installation, you will see the following dialog boxes. As of the time of writing this book, the version available was 5.1.8. When you are greeted with the dialog box seen in the following figure, select Next:

4. When given the option at the first Custom Setup screen, as seen in the following figure, leave the default options in place, and select Next:

5. At the second Custom Setup screen, as seen in the following figure, review the options and determine which are appropriate to your preferences, and select Next:

6. After the basic configuration options have been decided, the setup will now begin to make changes to the host computer. One such step is the installation of the dedicated virtual network adapters that allow VirtualBox to provide different options in regard to how your systems use networking. During the installation of these drivers, you may experience a brief loss of connectivity; so when prompted, acknowledge this fact by selecting Yes.
7. Once ready to kick off the installation, select Install from the next dialog box, and wait until the installation process is complete.

8. Once the installation is complete, you will be given the option to finish, or finish and then start VirtualBox.

9. Once you start VirtualBox, you will need to confirm the settings for network connectivity. You are going to want to find the Preferences item under the VirtualBox menu heading; now, select it. Then, select the network option along the top, and you will be presented with the following window:

10. By default, NatNetwork should already be created for you. However, if one is not displayed, click on the + button on the top right to add one.

11. Once added, review the setup of the network by clicking on the wrench icon, on the lower-right part, and you will be presented with the following dialog box. You can modify the IP subnet as needed. Ensure that Enable Network is selected, and click on OK to continue:

12. Create our test network. Select Host-only Networks. By default, no network is created, so click on the + icon in the upper right-hand corner to create the vboxnet0 network:

13. Ensure that the vboxnet0 interface is highlighted, and click on the wrench icon in the lower-right part of the screen. An IPv4 address will already be populated for you. If you are putting this into an existing lab network, or if this range is used in other places in your existing environment, feel free to designate a different network if necessary, as this will be your dirty network for testing purposes:

14. Let's review and modify the DHCP Server section by selecting it. The defaults should be fine, but you can adjust them as you feel appropriate.

15. Once these steps have been completed, your VirtualBox environment is ready for the next section.

In this section, we will download and install the virtual compute environment, VirtualBox, to build the base of our test lab. We configured the basic network configurations and set up DHCP to help with dynamic host networking.

In this section, we will install Kali Linux into a virtual host in the VirtualBox environment, as we described in the previous section.

Kali Linux (Kali) is based on the Debian operating system; and it is a self-contained environment that includes hundreds of tools that can be used for security auditing and testing purposes. It provides a platform, which you can use to build your penetration testing skills. It is one of the most widely used platforms for this purpose.

Kali comes in a variety of different flavors – we will be using the full Kali install using the Gnome windows manager, inside an Oracle VirtualBox environment. However, Kali can be installed on any hypervisor; it can be non-destructively run from a USB or CD drive, on Raspberry Pi's, or other similar single board computers. It supports installation on both the Intel and Arm processors.

When you first go to the Kali website and look at the downloads section (www.kali.org/downloads), it may be a bit overwhelming with all the options at first, so let's run through some of them, so you understand the differences.

With reference to the following image, you will note that the top two entries, the Kali 64 bit and the Kali 32 bit, are the default full install of the operating system using the Gnome windows manager.

The next two entries denoted by lightare a minimal install of Kali with the Gnome Windows manager for some space constrained systems. You can use this along with manually installing only the needed tools for your specific purposes.

The next four entries denoted with e17, Mate, Xfce, and LXDE are full installs of the Kali operating system, each using a different graphical windows manager for its desktop interface. If you happen to have an older device, consider running Kali with the XFCE interface, as it requires less resources than Gnome. I would only suggest these if you are familiar with them, and opt not to use the default Gnome windows manager or have a specific purpose to do so such as resource constraints.

The last two entries, armhf and armel, are for those two flavors of the arm architecture with armhf supporting the older ARMv4 instruction set, and the armel supporting the new version 7 instruction set.

Please also note that the sha256 value is displayed. This allows you to validate that you have downloaded an unaltered version of the image:

If you scroll down the page a bit more, you will see the section that allows you to download pre-prepared images that can automatically run without going through the setup process; in addition, it supports various hypervisors, or, in the case of ARM, has images and scripts for popular arm-based computers, such as Raspberry Pi's or other popular arm-based devices.

Before installing Kali Linux, we need to ensure the minimum requirements are met:

• Your computer is connected to the internet
• You have a minimum of 4 GB of RAM (8 GB is recommended)
• You have a minimum of 25 GB hard drive space available (80 GB is recommended for Chapter 3, Vulnerability Analysis)
• VirtualBox installation is complete and currently running
• Download the appropriate Kali disk image from https://www.kali.org/downloads/

For our purposes, we will be using the Kali 64 bit version. Please refer to the recipe introduction for more details about these options.

Let's begin the process of installing Kali:

1. Click on New in the upper left-hand corner of the screen:

2. Name your virtual machine Kali Linux, select type as Linux, and select the version as Linux 2.6 / 3.x / 4.x (64-bit). Press the Continue button when complete:

3. Memory size: You will be presented with a slider for memory size, with the ability to manually enter a value: in the box type in 4096. The 4 GB of memory will provide a smooth and responsive Kali install. Click on Continue.
4. Hard disk: select Create a virtual hard disk now and press on Create.

5. Hard disk file type: take the default file type of VDI (VirtualBox Disk Image). Select Continue.

6. Regarding the storage on physical hard disk, leave the default of Dynamically allocated and click on Continue.

7. File location and size: leave the name and location with the default, and either move the slider or enter 25.00 GB directly into the box. Click on Create.

8. Click on Kali Linux to highlight it; then click on Settings:

9. From here, we will select the Storage option. Originally under Controller: IDE it will say Empty. Click to highlight Empty. Click on the circular disk icon to the right of IDE Secondary Master. An option dialog will be brought up, and select Choose Virtual Optical Disk File. This will bring up a file manager dialog, which will allow you to find and select the Kali image you downloaded previously. Once completed, your screen should look similar to the following:

10. Click on Network and verify that Adapter 1 shows attached to NAT Network with the name NatNetwork:

11. Click on Adapter 2 and for Attached to select Host-only Adapter with the Name as vboxnet0, then click on OK:

12. We are brought back to the main manager screen. Let's click on Kali Linux to highlight it, and then click on Start:

13. We will now be brought to the main Kali installation screen. Let's click on Graphical install:

14. Select an appropriate language; for our use, we will select English and click on Continue:

15. Select the proper keymap for your region. For our purposes, we will select American English. Then, click on Continue. The VM will then start by loading installer components. This should only take a moment or two based on the performance of your device. It will also detect and connect to your network automatically.
16. You will be brought to a screen where you must enter the hostname. Let's simply call our install Kali and click on Continue:

17. The next screen will ask for your domain name. We will leave this blank, and simply click on Continue.
18. Our next screen will ask us to enter a root password. Select a strong password. Enter it for a second time to validate it, and click on Continue. The install will continue through some further steps.
19. Once completed, you will be brought to a configure clock screen. Select the appropriate time zone; for our purposes, we will select Eastern, then click on Continue:

20. Partitioning disks: for simplicity, we will select Guided - use entire disk, and click on Continue:

21. You will be brought to a partition disks screen for confirmation. Click on the disk to highlight it, and click on Continue:

22. Select All files in one partition (recommended for new users) and click on Continue:

23. Select Finish partitioning and write changes to disk. Click on Continue:

24. Click on Yes to write changes to disk. Click on Continue:

25. Upon the completion of the install, you will be asked whether you want to use a Network Mirror for your package manager. Select Yes and click on Continue.

26. You will be asked to enter a proxy server if needed. Please enter any required information (for most installs, you will leave this blank). Click on Continue. Kali will continue to install packages.
27. Select Yes to install the GRUB boot loader and click on Continue.
28. Select the single drive listed to highlight it, and then click on Continue. This will finish the installation:

29. After a short time, you will be brought back to the Finish the Installation screen. This will ask to boot your computer to ensure that you have removed the installation media. Under most circumstances, VirtualBox or other hypervisors will honor the disk eject command issued when Kali finishes installation, but we need to be sure. At this point in time, do nothing:

30. Move the installation windows to the side to expose the main VirtualBox manager screen. Click on to highlight the Kali Linux VM. Click on Settings, and next click on Storage. If under Controller: IDE, you do not see Empty, click on the install media shown to highlight it. Click on the icon at the far right that looks like a disk, and select Remove Disk from Virtual Drive. Click on OK:

31. Go back to the Kali Installation screen, and now click on Continue. It will finish a couple items up, and reboot the virtual machine bringing you to the login screen:

As you will see in the pages that follow, there are a tremendous number of uses for Kali Linux, and for these uses, it is not always practical to dedicate a device to one particular use case, as this would be a tremendous waste of resources. To address this, you can use the Kali Linux installation ISO downloaded in the previous section as a live CD as well; or you can maintain persistence with a live USB drive with persistence (with or without Linux Unified Key Setup encryption).

We will show you how to create the Live USB (no persistence, no history maintained).

Additional options such as live USB with persistence, live USB with encrypted persistence, and custom rolled Kali Linux ISO (which can be incorporated into the bootable USB options) can be found on the Kali Linux documentation wiki at http://docs.kali.org under the section called 02. Kali Linux Live.

In order to be able to complete this section successfully, you will need the following:

• USB Drive (8 GB or larger)
• USB disk imager (Win32DiskImager)

Let's begin the process of creating a bootable Kali Linux USB device:

1. Starting with the Kali Linux ISO file we downloaded in the earlier recipe, installing VirtualBox, we will use Win32DiskImager (https://sourceforge.net/projects/win32diskimager/) to create a bootable USB using the ISO. Download and install Win32DiskImager.
2. Once installed, launch Win32DiskImager.

3. Win32DiskImager will use IMG files, but we will tell it to use an ISO file as the source. From the application screen, click on the File Open button, and when presented with the File Open box, change the file filter to *.* in the lower right, and navigate to the Kali Linux ISO file.
4. Select the drive letter of your USB device, and click on Write:

5. Once the image has been written to the USB drive, you will be able to boot from this device on machines that support the USB bootable media. In this configuration, you now have a bootable USB drive that will from which the Kali Linux operating system will boot, as if it were installed onto the local disk. Across reboots, you will lose any documents you may have created. If you choose it, you can create an additional partition on the USB drive that will be persistent, and keep files and documents you may wish to keep. The step-by-step instructions on how to extend this functionality can be found on the Kali Linux documentation wiki at http://docs.kali.org under 02. Kali Linux Live.

Now that we have a base install of Kali, let's run through any updates and upgrades required. This is something you want to do periodically with the system, to make sure you are using the most up-to-date information.

Before you start, ensure the following prerequisites:

• Your computer is connected to the internet
• Your installation of Kali is running
• You are logged in as root

To bring an existing Kali Linux installation up to date, you will do the following:

1. From the main Kali desktop, let's click on the terminal icon in the upper-left part of the screen:

2. From the Command Prompt, type this:

 apt-get update

3. Once complete, we will actually upgrade the system by entering the following at the Command Prompt:

 apt-get upgrade

4. After a minute or two, you will get a screen explaining what will be upgraded and what needs to be installed for the upgrades to occur. When ready to continue, type Y and press Enter:

5. Once complete, we will reboot the system to ensure we have a fresh running environment. To continue, type this:

 shutdown -r now

During the upgrade, you may get prompted for a couple of items such as following:

You may get paused at an apt-listchanges: news section, and you will be presented with a : sign at the bottom; you can use your arrow keys to read the notice, and then just press q to quit and continue.

You can set up the system to change the mac automatically per boot. For our testing purposes, it's not required; however, if you are doing this in a live environment, you may want to configure it. Select No:

You maybe asked to restart services automatically to ease upgrades; select Yes:

Now that we have our Kali Linux virtual machine installed and updated, let's do a bit of customization.

Before you start, ensure the following prerequisites:

• Your computer is connected to the internet
• Your installation of Kali is running
• You are logged in as root

There are several customization and advanced settings that we can perform.

To update the Linux kernel, you will do the following:

1. Open a terminal window by selecting its icon on the left tool bar, and enter the following:

       apt-get dist-upgrade

2. Follow the prompts to complete the installation, and reboot the virtual machine when complete.

To remove unneeded packages, we will do the following:

1. Open a terminal window by selecting its icon on the left tool bar, and enter the following:

 apt autoremove 
 exit

During the use of this book, you may find yourself leaving your system to run commands or in between sections. During this time, the screen may lock and force you to login in more frequently than you would prefer. To change this behavior, do the following:

1. In the upper right-hand corner of the screen, click on the down arrow, which will provide various pieces of information about the current state of the computer. In the lower left-hand corner of that box, click on the settings icon:

2. From the All Settings screen, click on the purple privacy icon in the first row to display the privacy dialog box, then select the Screen Lock entry:

3. Adjust the settings as desired; in the following example I have set the timer to 1 hour:

4. Finish by clicking on the Xs at the top until you are back at the main screen.

Since only one interface can be on at a time, we will set up networking as follows:

1. In the upper right-hand corner of the screen, click on the down arrow, which will provide various pieces of information about the current state of the computer. In the lower left-hand corner of that box, click on the settings icon:

2. Next to one of the interfaces, select the arrow icon, which will expose another level of menus. Click on Wired Settings:

3. Select Add Profile from the bottom:

4. From the New Profile window, select Identity on the left; and for Name, enter Host-Only Network:

5. In the left column, click on IPv4 and scroll all the way to the bottom and put a check in the box labeled Use this connection only for resources on its network, and then click on Add:

6. Assign eth1 to the host-only network that we just created by clicking on eth1 to highlight it. Click on host-only network. Verify that eth0 is assigned to the wired connection network by clicking on eth1. You should now be able to have both interfaces enabled simultaneously:

Kali Linux makes it easy to manage network connections using network manager. This is how you will connect and disconnect network interfaces:

1. In the upper right-hand corner of the screen, click on the down arrow, which will provide various pieces of information about the current state of the computer:

2. You will see entries for both your eth0 and eth1 interfaces. If you have followed our guide, the eth0 network is connected to the NAT network and allows access to the internet and networks outside of your virtual machine. The eth1 interface is the host-only network, which connects to your test machine. You can toggle these on and off as required.

Creating a lab environment where we can safely perform security testing is key to being able to develop a repeatable set of skills. In this section, we will cover the installation and configuration of Windows desktop machines, as well as an active directory server.

As the Microsoft Windows operating system is the most commonly employed operating system, we will be looking to test the windows platform with Kali Linux in our lab.

To complete this section, you will need the following:

1. Installation media for Windows 7 and Windows server 2008. Due to licensing restrictions, we are unable to provide installation media for Microsoft software products.

2. A virtual machine platform such as VirtualBox which we configured in previous steps.

3. Starting from your VirtualBox interface, select the New button from the upper-left corner to create a new virtual host for Windows to be installed into. You will need to use a system template that matches the version of Windows you are going to be installing:

4. Since this machine will be for testing only, assign it 1 or 2 gigabytes of memory, and use the default values for all of the remaining options by clicking on Next until you reach the end of the configuration section.
5. Once the initial virtual host has been configured, you will need to go back into the settings to tell the virtual host to boot from the installation media. Right-click on the virtual system that you just created and go to settings. Once in the settings dialog window, select Storage from the menu on the left, highlight the topmost controller device, click on the Add Storage Attachment button, and select Add Optical Drive.
6. From the next dialog box, select Use Existing when asked whether you would like to leave the storage option empty. When prompted, navigate to your Windows installation media, and click on Open; then complete the configuration session by clicking on OK.
7. Start your new virtual machine by clicking on the parentheses start button.
8. From this point, you will follow the default operating system installation process specific to the version of Windows you have selected. When given the option of installing additional services, use only the default options selected.

9. During installation, we will name our systems something easy to remember. We will name the desktop clients Windows Desktop 1 and Windows Desktop 2, and the server AD Server.
10. When prompted to configure the Windows update services, ensure that you do not enable the automatic installation of Windows updates:

11. Once you have completed the installation of Windows 7, reboot the machine, and login when presented with the login screen.
12. Once logged in, change the machine name to Win7_Desktop_1, and reboot.
13. Go into the virtual host settings, and ensure that the network adapter is assigned to the host-only network that we created earlier in this section.
14. Now that the machine has been properly configured, we will clone it to create a second instance of Windows 7 desktop.

15. To create a clone of the Windows desktop machine, you will need to power it up using the Start option. Once started, do not log into the machine; but rather from the desktop view, from the top menu bar, select Machine | Take Snapshot... to start the snapshot creation process:

16. In the next screen, you will be given the opportunity to name and provide details about the purpose of this snapshot. Since it is likely that we will be returning to this state frequently, name it Initial Installation, and in the description, indicate that this is a clean Windows build, and that the snapshot was taken before AD domain membership:

17. VirtualBox will now generate a snapshot. Depending on the system, this may take several minutes. Once complete, power down the system using the power buttons on the lower-right part of the login screen – do not login at this time.
18. Now that the initial host has been set up, we will need to create the clone of this device. To do so, right-click on Windows 7 Desktop 1, and select Clone... from the dropdown menu:

19. When prompted, name this Windows Desktop 2, and select the option to reinitialize the MAC address of all available cards. Click on Next.
20. When given the option to do so, select Full Clone as the clone type, and click on Next.
21. Since we will be creating a new snapshot of this system in a subsequent step, choose the option for Current Machine State as the options for snapshots, and click on Next. This will start the cloning process, which may take several minutes.
22. Once completed, we will start this host as well as we did with the first Windows 7 Desktop 1, but this time, we will log in when prompted to do so.
23. Once logged in, you will need to change the name of the machine to Win7_Desktop_2. Allow the machine to reboot.
24. Once back at the login screen, create a snapshot as we described earlier.
25. We will now install the Windows 2008 server in the same manner we did the Windows 7 desktops, ensuring that the device is assigned to the host-only network that we created in a previous section.
26. With all the default options chosen, install Windows 2008, and log in for the first time. The first time you log in, you will be presented with the Initial Configuration Tasks tool. From this tool, configure only the following:

27. Reboot the server after these options are set, and log in. The Initial Configuration Tasks wizard will open again. Scroll down to the section named Add Roles; here we will add the DNS and DHCP roles to this server.

28. Select all the default options, except the following:

29. Once all the preceding has been completed, reboot the server, and log into each of the desktops to make sure that they get an IP address from the AD server and that you can ping each host by their IP addresses. We will configure DNS in a later step.
30. After you have confirmed that network connectivity between your hosts is working properly, close all open windows, and create a snapshot as we have done in the past.
31. With the desktop machines created and functioning, you will need to enable basic services on the AD server. After logging into the server, you will be presented with the Initial Configuration Tasks wizard again. Once presented, scroll down to Customize this Server section, and click on Add Role.
32. In the section called Select Server Roles, select and install the following:
    
    • File services
    • Remote desktop services
    • Web server (IIS)

33. As you progress, you will need to select certain options for each of the roles added previously:
    1. Remote desktop services:
       • Select only Remote Desktop Session Host and click on Next
       • Select Do Note Require Network Level Authentication
       • Select Configure Later to defer the licensing of the remote desktop until a later date (120 days max)
       • Permitted user groups: Leave administrators in place and continue
    2. Leave all the remaining options as the default and continue. Reboot when prompted to do so, and log in once more; you will automatically return to the Add Roles wizard. Confirm that the installation was successful.
34. Return to the Add Role wizard, and select this time to install Active Directory Domain Services. Click on Install AD DS Anyway (not recommended) when presented with the dialog box confirming installation on a domain controller, and accept any dependencies that maybe required. Continue through the installation process with the remaining default options. When complete, select Close.
35. In the left menu, select Active Directory Domain Services; and in the right pane, select Run the Active Directory Domain Services Installation Wizard (dcpromo.exe). As you go through the wizard, select the default options, except for the following:
    • Choose a deployment configuration: Create new domain in a new forest
    • FQDN of the forest root domain: kalicookbook.local
    • Forest functional model: Windows server 2008 R2
    • Once prompted, reboot. Confirm there are no errors
36. You will now need to log into each of the Windows 7 desktops and join them to the kalicookbook.local domain.
37. Log into each machine and ensure that Windows updates are disabled. Make sure the Windows firewall is also disabled.
38. Create snapshots of each to give us a foundation to work from as we progress through this book. Snapshots will allow us to go back to pre-determined points in time.

Metasploitable is a key component of our testing environment. It is based on the Ubuntu Linux operating system and is made specifically exploitable for penetration testing purposes. This VM should never be exposed directly to the internet, and, for our purposes, we will use the host-only network to bind to.

Before you start, ensure the following prerequisites:

• The VirtualBox hypervisor is running
• The Kali Linux VM is shut down
• You download the Metasploitable image from https://sourceforge.net/projects/metasploitable/files/Metasploitable2/
• Take note that the default username, and the password is msfadmin for both

The installation of Metasploitable is done in the following manner:

1. Start by unzipping the Metasploitable ZIP (at the time of publication this was metasploitable-linux-2.0.0.zip) file that you previously downloaded.
2. Change the directory name that was extracted to metasploitable.
3. Find where your main VirtualBox storage is.
4. Windows default: c:\users\<username>\virtualBox VMs
5. Mac default: /users/<username>/VirtualBox VMs

6. In this directory, create a new folder called Virtual Disks. This will make the following path:

...\VirtualBox VMs\Virtual Disks.

7. Move the metasploitable directory that was created when you unzipped the file earlier under the \Virtual Disks\ directory you created.
8. Open the VirtualBox manager application, and select New from the top-left corner. To quicken the installation if we are not in expert mode, let's select it by clicking on Expert Mode at the bottom.

9. Let's name our VM Metasploitable. Select Type as Linux and Version as Linux 2.6 / 3.x / 4.x (64-bit), enter 2048 for the memory size.
10. Select Use an existing virtual hard disk file, and click on the file icon on the right; and browse for the metasploitable.vmdk file under the directory from the prior step; then click on Create.
11. We will now be brought back to the main VM VirtualBox manager screen. Click on the Metasploitable VM to highlight it, and then click on Settings.

12. Click on Network and, for Adapter 1, select the Host-only Adapter and the Name as vboxnet0; lastly, click on OK:

13. You will now be brought back to the main VirtualBox manager screen. Click on Metasplotable to highlight it and click on Start.
14. Once the VM is started, you will be brought to the main login screen:

The Open Web Application Security Project (OWASP), is a global community that focuses on security awareness and the development of secure applications. While this may be thought of as a single application or platform, OWASP is actually a collection of projects that can focus on any number of aspects of applications security. For this recipe, we will focus on the OWASP Broken Web Application (BWA) project to provide us with a standardized platform for the testing of our tools in later chapters.

To install the OWASP-BWA image, we will need to do the following:

• Download the latest version of OWASP-BWA in compressed form from https://sourceforge.net/projects/owaspbwa/
• Have VirtualBox installed and configured

To install OWASP-BWA into our VirtualBox environment, we will do the following:

1. Unzip the ZIP file containing the OWASP-BWA files into a location you will reference in the next few steps.
2. From the console of VirtualBox, on the upper left, we will select the New icon to begin the creation of a new virtual machine.

3. We will name our new virtual machine OWASP-BWA, and define it as a 64 bit Ubuntu Linux system:
   
   Creating a virtual machine for OWASP-BWA
4. Leave the default memory allocation as 1024 MB, and click Next.
5. You will now select Use existing virtual hard disk and navigate to the directory where you unpacked OWASP-BWA. From that directory, select the following and click Create:

6. Once you have created the virtual machine, we will need to make sure that the correct network interface has been designated. Right-click on on our new host on the left, and select Settings. Navigate to Network and ensure that the Adapter 1 is attached to the Host-only Adapter, and that the other adapters are not enabled:

7. Once complete, start the new virtual machine and ensure that it boots properly.

8. Once fully booted, login as root with the password owaspbwa.
9. Ensure that you are receiving an IP address from DHCP by issuing ifconfig eth0 from the command line.

10. Open a web browser, and navigate it to the IP address of the OWASP-BWA guest. Ensure that you are able to see the different projects within OWASP-BWA. If you are able to see the following web page, you have successfully configured OWASP-BWA:

There are several other resources that can be accessed either online or installed in VirtualBox that you can use to hone your penetration testing skills. The following list contains few resources you may want to explore as a supplement to the exercises in this book:

The preceding resources will be installed on a variety of different methods that are beyond the scope of this book. But I will quickly mention some of the deployment options:

• Virtual machines that, can be installed in VirtualBox
• Scripts that can be run on standard Linux machines to build applications and make them specifically vulnerable to attacks
• Resources that you may attack over the internet
• Complete self contained hacking environments