Lab Setup

Allikas: Lambda

Lab Setup For IT Systems Hacking Attacks and Defence

General Tasks

  1. Get access to the lab network and to the BackTrack machine (1 for every student)
  2. Create yourself an account on https://cma.ex
  3. Accomplish the missions and tasks described in https://cma.ex

Access

  • The target systems will be located in EDF lab, not in the classroom. The machine you will use for the exercises is also located in the lab. As it is based on BackTrack, we will call it BackTrack. You just need remote access to this host.
  • There are 2 methods to access the BackTrack machine and further all the targets in the lab:
  1. use kubuntu 10.10 VM where the VPN configuration files are already existent. We call this machine Student VM
  2. install OpenVPN on your own laptop or home computer

Student VM

  1. Download Student VM image from http://cs.tud.ttu.ee/itx8063/
  2. Run the image. It has been prepared with VirtualBox
  3. There is user named "user" on that VM. The password is also "user".
  4. Start vpn connection: sudo openvpn /etc/openvpn/course-lab/course-lab.conf
    • There has been also defined an alias "vpn" for that command
    • The password for the VPN key has been provided in the classroom and in e-mail sent to cybertallinn list.
  5. Connect to you own BackTrack machine 192.168.133.x. See below which IP is meant for you.

Use OpenVPN configuration on your own machine

  1. Download: http://cs.tud.ttu.ee/itx8063/course-lab.tar.gz.des3
  2. Encrypt the configuration: openssl des3 -d -in course-lab.tar.gz.des3 -out course-lab.tar.gz
  3. Install openvpn to you machine and run the configuration provided
  4. The password for the key is the same as in Student VM - it has been provided in classroom and in the cybertallinn list

BackTrack in Lab

Each Student is provided a BackTrack machine in lab for accessing and attacking the target systems.

Student-BackTrack VM correspondence

Urmas - student1.ex - 192.168.133.1
Hannes - student2.ex - 192.168.133.2
Siim - student3.ex - 192.168.133.3
Anis - student4.ex - 192.168.133.4
Joao - student5.ex - 192.168.133.5
Mario-Markus - student6.ex - 192.168.133.6
Andres - student7.ex - 192.168.133.7
Cüneyt - student8.ex - 192.168.133.8
Roshan - student9.ex - 192.168.133.9
Igor - student10.ex - 192.168.133.10
José - student11.ex - 192.168.133.11
Rasmus - student12.ex - 192.168.133.12
Borislav - student13.ex - 192.168.133.13
Kaspar - student14.ex - 192.168.133.14
Margus - student15.ex - 192.168.133.15
Lauri - student16.ex - 192.168.133.16
Arnis - student17.ex - 192.168.133.17
Aleksandr - student18.ex - 192.168.133.18
Martti - student19.ex - 192.168.133.19
Andrea - student20.ex - 192.168.133.20
Veiko - student21.ex - 192.168.133.21
Uko - student22.ex - 192.168.133.22
Roland - student23.ex - 192.168.133.23
Märt - student24.ex - 192.168.133.24


Accessing BackTrack VM

Some ways how you can access the BackTrack machine in the lab from where you have to do the actual work.

  1. Command line access: ssh user@192.168.133.X
    • Default password is "user"
  1. X11 session redirected over SSH
    • ssh -X -C user@ 192.168.133.X
    • Now you can start programs with GUI e.g. konqueror &, firefox &. Note that it could be relatively slow.
  1. VNC for graphical user interface
    • Log into BackTrack VM over SSH and start vncserver: vncserver -geometry 1280x800
    • Obviously, the geometry specifies the screen size, adjust it according to your monitor
    • When executing vncserver first time, you will be asked for a password. This password just protects access to the display of your machine. Choose password that you prefer. The password file is /home/user/.vnc/passwd. If you would like to change the password, just remove that file and start vncserver again.
    • If you need to kill any vncserver instances: vncserver -kill :1. This kills X desktop number 1.
    • On Student VM or you own computer use vncviewer to access the display: vncviewer 192.168.133.X:1. Number 1 expresses the display number.

Course Management Application

  • Mission and task descriptions as well as scoreboard will be displayed over the web https://cma.ex/
    • This site is accessible only from the BackTrack machine
  • Register a new user account. Username will be displayed on the scoreboard - this can be something anonymous
  • First and Last Name will be used to track if you have participated in the lab - these have to be real.
  • NB! Please, do not hack the scoreboard! If you find any vulnerabilities, report them to the instructor.