CEH Lab 12

Large or small setup

• ECcouncil has a new lab setup for version 12
• This setup is much more costly in terms of local machine requirements (700GB/ 12CPUs / 32GB RAM)
• I will build an AWS version in the future; it will cost $.30 to $.75 per hour plus storage costs.
• The older version that we use in class will work fine for exam purposes with one addition (later see CEH11+ATT&CK)

But... I want the new shinny

• So let's work it out
• Read the list of files for download & configurations: https://docs.google.com/spreadsheets/d/1Gj84MNV-BHKRG9jj0lHQPy6JddMQ0yVQsKb-P7376NM/
• Do installs and your own administration; it will teach you how others do short cuts. You can hack shortcuts.

Rules

1. No support from me on your lab installs
2. No whining "someone who annoyingly complains or frets about labs, especially in a high-pitched voice"
3. Software: do not steal it - buy it or use AWS when it is ready.
4. Download everything first (links in sheet above); 42 GBytes so expect long waits.
5. Free Microsoft machines expire in 180 days; set a timer, rebuild as practice, document everything.
6. Give back, when you learn something that makes this better email me.
7. Give back, when someone needs help, say yes and refer to #2
8. Be organized or pay double later

ONLY INTEL Apple OR Windows machines with INTEL or AMD 64 bit

• NO M processors See rule #2

VIC-WIN-11 VM Install notes

1. watch 12 minute video https://vimeo.com/741929176

• Standard ISO install & Change settings
• 4096 RAM
• 64 GB Drive
• 2 CPU
• Private / connected

2. Editing the vmx file https://kb.vmware.com/s/article/86207?lang=en_US&queryTerm=install%20windows%202022%20in%20fusion

• Before starting the GUI installation process.

• Edit the vmx file for the newly created VM and add

• managedVM.autoAddVTPM = "software"

• To see vmx file on MAC right click show package

3. After editing & saving the vmx file, you need to restart Fusion/Workstation/Player.
4. After restarting, start the Guest VM and let the installation process continue.
5. GUI install starts

• When you get to lets connect

• I do not have

• Continue with limited setup

• Name & password: this infrastructure setup account is not to be hacked.

6. Turn off windows updates

• https://www.minitool.com/data-recovery/how-to-stop-windows-11-update.html

• type services.msc

• Disable the following

• Windows Update & set recovery 1st fail to take no action

7. Disable Windows Firewall Windows 11

• Launch the Windows Settings.

• Click on Privacy & security -> Windows Security.

• Now select Open Windows Security.

• Click on Firewall & network protection > Public network.

• Select Public Network. ( repeat for all networks)

• Under the Microsoft Defender Firewall, click on the toggle-off button for all interfaces.

8. Enable Remote Desktop on Windows 11

• Open Control Panel.

• Click on System and Security.

• Under the “System” section, click the Allow remote access option. ...

• Under the “Remote Desktop” section, select the Allow remote connections to this computer option. ...

• Click the Apply & OK button.

VIC-NIX-UBN-20 VM Install notes

1. Watch 4 minute video https://vimeo.com/743766459
2. Use the Easy install set display name and account name in lower case
3. Edit the configuration.

• Standard ISO install & Change settings
• 2048 RAM
• 30 GB Drive
• 2 CPU
• Private / connected

4. After restarting the installation process will continue on its own.
5. Login to test
6. Shutdown

VIC-MOB-DRD-9r2 Android VM Install notes

1. Use the vmdk or vdi https://www.osboxes.org/android-x86/ or the IOS from the file list ONLY 64 BIT
2. Copy file into VIC-MOB-DRD-9r2 directory and choose make a copy (leave original in place until you get a successful boot test)
3. Make a new machine edit the configuration

• KERNEL = Other Linux 4.x kernel 64bit
• 2048 RAM
• 30 GB Drive
• 2 CPU
• SHARED / NAT / connected
• Display use 3d graphics, use high performance, shared 768MB

4. There is no real installation process.
5. Login to test
6. Shutdown
7. Delete vmdk/vdi file

VIC-WIN-2k12r2 Install notes

1. Use the vmdk & Change settings

• 8192 RAM
• 60 GB Drive
• 2 CPU
• Private / connected

2. Starts at Boot with install questions

• user name is fixed / password is not

• login

3. Turn off windows updates

• open command prompt

• type services.msc

• Disable the following

• Windows Update & set recovery 1st fail to take no action

4. Disable Windows Firewall

• https://www.faqforge.com/windows/turn-off-firewall-windows-server-2012-r2/

• Click on Firewall & network protection > Public network.

• Select Public Network. ( repeat for all networks)

• Under the Microsoft Defender Firewall, click on the toggle-off button for all interfaces.

5. Enable Remote Desktop

• Logon to Windows Server as a local administrator

• Open Server Manager from Start Screen.

• In the left pane of Server Manager, click Local Server.

• In the Properties section of the right pane see the status of Remote Desktop, which is disabled by default.

• Click on the status to change it to Enabled.

• The Systems Properties dialog opens on the Remote tab.

• Under Remote Desktop in the Systems Properties dialog, select Allow remote connections to this computer and click OK.

• Click Select users

• Type Guest and check

• Click the Apply & OK button.

6. Install another browser

• Change the vmware network to shared or NAT to get internet access

7. Update powershell version to 5.1

• open browser

• Search for Windows Management Framework 5.1

• Download Win8.1andW2K12R2-kb3191564-x64.msu

• Install & Reboot

• open powershell and verify the version

8. Shutdown

SOON other Install notes