Date post: | 08-Nov-2014 |
Category: |
Documents |
Upload: | mahmoud-eladawi |
View: | 102 times |
Download: | 6 times |
Version 1.443
EC-Council
LPT LAB SETUP GUIDE
Document overview This document provides background information for technical staff responsible for setting up a training room facility for the LPT course. This guide describes the requirements for the network equipment and computer stations that are installed and configured by the facilities personnel for the training courses.
Training room environment The training room environment consists primarily of the following equipment:
LPT Instructor Lab Setup Guide 2
Equipment Number (Class of 12 students)
Operating System
Minimum System Requirements
Student Workstations
12
Windows 2003 Server with latest Service Packs
Pentium-based PC with 10 GB free disk space, 256 MB RAM (512 MB preferred), 1 NIC (disable or unplug extras), 15-inch monitor and cards to drive at 800 x 600 (or at monitor’s native resolution) and configured at 256 colors, and compatible mouse
Instructor Station 1 Windows 2003 Server with latest Service Packs
Pentium-based PC with 10GB free disk space, 256 MB RAM (512 MB preferred), 1 NIC (disable or unplug extras), 15-inch monitor and cards to drive
EC-Council
at 800 x 600 (or at monitor’s native resolution) and configured at 256 colors, and compatible mouse, Wireless Card
Instructor Station 1 RedHat Linux 8, 9 or Fedora Pentium-based PC with 10GB free disk space, 256 MB RAM (512 MB preferred), 1 NIC (disable or unplug extras), 15-inch monitor and cards to drive at 800 x 600 (or at monitor’s native resolution) and configured at 256 colors, and compatible mouse
Victim Machine 1 Windows 2003 Server with latest Service Packs
Pentium-based PC with 10GB free disk space, 256 MB RAM(512 MB preferred) , 1 NIC (disable or unplug extras), 15-inch monitor and cards to drive at 800 x 600 (or at monitor’s native resolution) and configured at 256 colors, and compatible mouse
LPT Instructor Lab Setup Guide 3
EC-Council
Instructor’s computer The instructor’s computer must:
Be installed with Windows 2003 Server with latest SP (Standard or Enterprise Edition) Be installed with SQL Server 2000 with latest SP Be running Microsoft Internet Information Server (IIS) Be running IP protocol. Contain all testing tools from the LPT Lab Files CD-ROM resident on the hard drive in LPT tools folder at the
Desktop (The lab files CD-ROMs are available from LPT courseware kit) Contain all Windows 2003 source files in c:\i386 Have PowerPoint, Word and Excel installed (Microsoft Office 2000, XP or 2003 version) Have Adobe Acrobat, WinZip installed (both can be found in Miscellaneous directory in LPT Lab files CD-ROM) Install VMWare or Microsoft Virtual PC with Windows 2003 Server with latest SP Install Wireless card (USB or PCI) Have an Overhead Projector connected Have a CD-ROM as part of its hardware Set Windows Explorer to show all files and file types and extensions. The use of Ghost images is recommended to reduce setup time if computer failure occurs. If using Ghost, the
Instructor’s computer should have an 8 GB hard drive that consists of a 4 GB FAT partition for WINNT and at least one other partition on which to store images of the computers.
Student workstations Student workstations must:
Be installed with Windows 2003 Server with latest SP (Standard or Enterprise Edition) Be installed with IIS Contain all testing tools from the CD-ROM resident on the hard drive in LPT tools folder at the Desktop (The lab
files CD-ROMs are available from LPT courseware kit) Contain all Windows 2003 source files in c:\i386
LPT Instructor Lab Setup Guide 4
Set Windows Explorer to show all files and file types.
EC-Council
Have Adobe Acrobat, WinZip installed (both can be found in Miscellaneous directory in LPT Lab files CD-ROM) Install VMWare or Microsoft Virtual PC with Windows 2003 Server with latest SP (Standard or Enterprise Edition) Install Matrix screen saver located in LPT Lab files CD-ROM\Miscellaneous directory – set the time to 15
minutes. Download the LPT desktop wallpaper from http://www.eccouncil.org/classroom/lpt-background.jpg and set up the
downloaded image as Windows background wallpaper.
Victim workstation Victim workstation must:
Be installed with Windows 2003 Server (Standard or Enterprise Edition) with latest SP Be installed with SQL Server 2000 with latest SP Be installed with IIS Be running SNMP services Contain all testing tools from the CD-ROM resident on the hard drive in LPT tools folder at the Desktop Contain all Windows 2003 source files in c:\i386 Set Windows Explorer to show all files and file types. Install and configure SPEARS SHOP website (see later part of this guide)
Room environment
The room must contain a whiteboard measuring a minimum of 1 yard by 2-3 yards in length (1 meter by 2-3 meters).
The room should contain an easel and large tablet. The room must be equipped with legible black and blue felt tip pens (CHISEL-Point, not fine-tip).
LPT Instructor Lab Setup Guide 5
EC-Council
Firewall and IDS You must have a hardware firewall like Cisco PIX connected to the network. You can use software IDS like SNORT or hardware IDS. You can plug the Firewall and IDS directly to the switch and you don’t have to create MZ and DMZ zones. The Firewall and IDS are required for exercises in the classroom. Classroom configuration
LPT Instructor Lab Setup Guide 6
The configuration of this classroom is modular. Computers can be added or removed by either row or column, depending on the needs of the particular class. The following is a sample room setup that provides optimal support. This setup allows for ease of access to "troublespots" by the instructor, and allows students to break into functional small and larger teams.
EC-Council
LPT Instructor Lab Setup Guide 7
Victim Red Hat Instructor
Projector
Sample Classroom
Setup
Student PCs Student PCs
EC-Council
LPT Instructor Lab Setup Guide 8
LPT Classroom Setup
Victim MachineWindows 2003
Red Hat Fedora Linux
Instructor PCWindows 2003
HUB
Wireless Access Points
Firewall
INTERNET
Students MachinesWindows 2003 IP Addresses: 10.0.0.X/24
EC-Council
Set up the machines based on the classroom setup diagram. The lab exercises for the students are instructor led and they are based on the testing tools in the trainer slides. The instructor is encouraged to demonstrate and guide the students on the usage of the penetration testing tools against the Victim’s computer. Do not encourage live penetration testing on the Internet using these tools in the classroom. Please feel free to include your own exercises.
VMware Installation
1. Install VMWare Workstation software on student and instructor machines. Evaluation trial copy of VMWare is located at CD-ROM\Miscellaneous directory
2. You will need to register with VMWare at http://www.vmware.com to obtain the serial number. 3. Create a new Virtual Machine and install Windows 2003 Server with latest SP (Label it as Windows 2003). 4. Configure VMWare Windows 2003 Virtual Machine’s Network settings to use Bridged – Connected directly to
the Network. 5. Create a second Virtual Machine in VMWare and label it as Linux. 6. Configure VMWare Linux Virtual Machine’s Network settings to use Bridged – Connected directly to the
Network. 7. Configure Linux Virtual Machine’s CD-ROM settings to use iso image and point it to knoppix.iso file. You can
download the knoppix.iso at http://www.eccouncil.org/classroom/lpt-knoppix.iso. Alternatively you can convert the KNOPPIX (Back Track) CD-ROM to iso image using third party tools.
8. Create Snapshot of Windows Virtual Machine in VMWare. Students will be able to restore the virtual PC state after completing exercises.
9. Test the network by pinging the VMWare’s Windows Virtual PC from the host computer and vice versa. 10. Students can target the attacks on VMWare’s virtual PC as victim.
You can also use Microsoft Virtual PC instead of VMware. Evaluation copy of Virtual PC can be downloaded from http://www.microsoft.com/virtualpc
LPT Instructor Lab Setup Guide 9
EC-Council
VMware / Virtual PC with Windows 2003 Server Installed
LPT Instructor Lab Setup Guide 10
EC-Council
Configure the network to use Bridged – Connected directly to the physical network.
LPT Instructor Lab Setup Guide 11
EC-Council
Linux Virtual Machine – point to lpt-Knoppix.iso in CD-ROM settings.
LPT Instructor Lab Setup Guide 12
EC-Council
VMware setup with 2 virtual machines – Linux KNOPPIX
LPT Instructor Lab Setup Guide 13
EC-Council
Training Duration and Breakdown of Topics Number of recommended days required for LPT training: 3 days (8:00 – 4:00) class Topics Breakdown: Day 1
Module 1: Penetration Testing Methodologies Module 2: Customers and Legal Agreements Module 3: Penetration Testing Planning and Scheduling Module 4: Information Gathering Module 5: Vulnerability Analysis Module 6: External Penetration Testing
Day 2
Module 7: Internal Network Penetration Testing Module 8: Routers Penetration Testing Module 9: Firewalls Penetration Testing Module 10: Intrusion Detection System Penetration Testing Module 11: Wireless Networks Penetration Testing Module 12: Denial of Service Penetration Testing Module 13: Password Cracking Penetration Testing
Day 3
Module 14: Social Engineering Penetration Testing Module 15: Stolen Laptop, PDAs and Cellphones Penetration Testing Module 16: Application Penetration Testing Module 17: Physical Security Penetration Testing Module 18: Penetration Testing Report Analysis Module 19: Penetration Testing Report and Documentation Writing Module 20: Penetration Testing Deliverables and Conclusion
LPT Instructor Lab Setup Guide 14
Module 21: Ethics and Conduct of a Licensed Penetration Tester
EC-Council
Network topology The training room must be physically isolated from any production network. Students must be able to access the Internet from their PCs. All computers are connected as one isolated network and domain. The common protocol is IP. All computers should have dynamic IP addresses using DHCP server. Configure the DHCP server scope to 10.0.0.0/24 IP addresses. This reduces potential problems when booting from Knoppix - Linux bootable CD-ROM. NICs can be 10Mbit or 100Mbit (100Mbit is recommended). Hub is required instead of a switch (needed for demonstrating tools in Sniffer modules) Cables must be bundled and tied out of pathways and work areas, and of sufficient length as not to be under stress. Computer names Assign computer names to student machines like LPTSTUDENT1, LPTSTUDENT2, LPTSTUDENT3 and so on. Instructor machine should be named as INSTRUCTOR and victim machine as SPEARS Instructor acceptance Before the training class is scheduled to begin, the instructor will visit the training facility to inspect and accept the setup. The technical contact (System Administrator) for the facility must be available to answer questions and correct any setup issues. Both the instructor and the facility technical contact will ensure completion of the following checklists before the training setup is deemed acceptable. Firewall Settings
LPT Instructor Lab Setup Guide 15
Do not block any ports while accessing the Internet through the firewall. You should be able to ping servers on the Internet
EC-Council
Install and Configure SPEARS SHOP Website on the Victim Machine Students will be targeting this website during various lab exercises Miscellaneous
Copy spears folder located at LPT Labs CD-ROM\Miscellaneous directory to c:\ Grant permission for c:\spears folder and its subdirectories to IUSR_COMPTERNAME user account in
Directory Properties Permissions Open IIS Manager Select default website right click properties
LPT Instructor Lab Setup Guide 16
Select home directory tab
EC-Council
Type c:\spears in localpath and click OK
LPT Instructor Lab Setup Guide 17
Select Web Server Extensions and allow permission for ASP pages
EC-Council
Open Internet Explorer and navigate to http://localhost You should see Spears Shop Website
LPT Instructor Lab Setup Guide 18
EC-Council
LPT Instructor Lab Setup Guide 19
EC-Council
Checklists - Check the following on all PCs
LPT Instructor Lab Setup Guide 20
Tick Here List
Open Network Neighborhood. Verify that all classroom computers are visible in Network Neighborhood.
Verify that the Windows OS source files are on the computer in c:\i386.
Verify that the hacking tools are on the computer in LPT tools folder at the Desktop.
Verify that Internet access is available.
Visit http://www.eccouncil.org and view the page to check Internet access.
Open Command Prompt and type nslookup certifiedhacker.com and look for connection to the server.
Verify Microsoft PowerPoint, Word, Excel are installed.
Verify Acrobat and Winzip are installed.
Verify that the Instructor computer can image through the overhead projector.
Verify each computer has 2 GB or more free disk space.
Verify Windows Explorer is set to show all files and file type including hidden files and extensions.
Verify if you can successfully boot using Windows 2003 and KNOPPIX Linux in Vmware/Virtual PC.
Cable Wiring organized and labeled.
EC-Council
Student Workstations and chair placement satisfactory.
Placement of LCD (overhead) projector appropriate.
Whiteboard and dry erase markers and eraser are available.
Instructor station properly organized and oriented.
Computers are labeled with client number.
EC-Council courseware’s (Official EC-Council LPT Box) available for students.
Write down the facility’s technical contact person’s hand phone number. Contact him in case of network problem.
Verify the configuration of LPT wallpaper on the desktop – black background with LPT logo at the center.
Test the “Matrix” screen saver.
Test if you can connect to SPEARS SHOP website by typing http://<Victim PC’s IP address>
Assistance:
LPT Instructor Lab Setup Guide 21
If you have problems or require assistance in setting up the Lab for your LPT class, please e-mail [email protected] (You will receive a reply within 24 hours)