20,199,327 2019-2020-2 "network attack and defense practice," the second week of work

Others 2020-03-12 11:30:12 views: null

ready

Intellectual preparation

Learning teacher to upload files to set up the environment.

Running on a VMware virtual machine software operating system network connection in three ways:

  1. Bridge mode (Bridge): In bridge mode, VMware simulate a virtual network card to the customer system, the main
    system for client systems is the equivalent of a bridge. The system seems to have their own customer card as
    their own directly connected to the network, which means that the client system directly visible to the outside;

  2. Network address translation (NAT): In this mode, the client system can not connect to the network their own, but must
    address translation for the client transceiver system network of all incoming and outgoing data packets via the host system. In this way,
    the client system is not visible to the outside.

  3. Host mode (Host-Only): In this manner, the main system simulates a virtual switch, all of the guest
    user by the system out of the network switches. In this way, if the primary system is connected with a public network IP
    Internet, the system that the customer can only use private IP.

Download ready

  1. VMware workstation download, has been subjected to a pre-;

  2. VM_Win2kServer_SP0_target.rar;

  3. VM_WinXPattacker.rar;

  4. SEEDUbuntu9_August_2010.tar;

  5. roo-1.4.hw-20090425114542.iso;

2 to 5 above Baidu sharing cloud from the teacher.

Set up

Network Topology FIG.

Virtual machine configuration

  • Virtual network configuration editor

  • Import other virtual machines

Other similar conduct.

  • problem

Due to their own understanding of the problem, no good during the editing process, after the completion of all installation problems later, unable to ping each virtual machine, honey can not access the page because described later. Therefore, re-examine and configure

  • Weight distribution

The emphasis changed the IP address itself

Installation configuration Honeywall

Installation Process

  1. In VMware File -> New Virtual Machine

  2. Select Custom Installation

  3. Hardware Compatibility election 6.5-7.x

  4. Install the operating system later

  5. The client operating system is Linux, and earlier version Centos5

  6. Virtual machine name and location of the custom

  7. The default number of processors can be

  8. 512MB memory instead

  9. Network connections using NAT

  10. LSI LOGIC

  11. Create a new virtual hard disk

  12. The maximum disk size 8G, stored as a single file

  13. Add two network cards, the adapter 2 is set to host only mode, the adapter 3 is set to NAT, specify the CD / DVD path is the path roo-1.4.hw-20090425114542.iso file

Configuration process

  1. Start Honeynet virtual machine, enter the following installation interface. Type the Enter key to start the installation, Honeywall software is installed, enter the login screen

  2. Login Honeywall, account name roo password honey, and acquire root privileges after entering the user's password will enter the configuration interface

  3. Select 4 Honeywall Configuration configure

  4. Select Defaults configuration

  5. Reselection 4 HoneyWall Configuration, follow the steps below

6. Select 5 LAN Broadcast Address

7. Select 6 LAN CIDR Prefix

8. return to the main selection screen 4 HoneyWall Configuration, and select 2 Remote Management

9. Select 1 Management IP Address

10. Select 2 Management Netmask

11. Select 3 Management Gateway

12. Select 7 Manager, is provided to manage Honeywall remote control terminal IP range, fill in CIDR format, there may be multiple IP network segments, separated by spaces

13.Sebek server configuration, return to the main selection interface selection 4 HoneyWall Configuration 11 Sebek

14. The target port selection is 1101, Sebek packet processing option to select the Drop

practice

  • Remote Access Access https://192.168.200.8 192.168.200.2 on this virtual machine, and change passwords

  • Attack on a virtual machine honeypot host ping IP

  • Listen for ICMP ping packets through the external network interface and the network port on Honeywall

problem solved

  • Linux in access to the machine's IP address ifconfig statement;

  • Address different bands of the virtual machine can not be cross-ping, the others Solution Reference blog, link to https://blog.csdn.net/ChengTong007/article/details/81777656;

  • Upon entering the honeypot, for the first time directly into the menu, then problems arise when a check is entered by the statement;

    cd /usr/sbin
    ./menu

to sum up

This very practical hands-on work, to own some of the basics meter network has been used, at the time of the self can not go, see the Sun Qilong students learning process and explain this very grateful. Through this practice we have a more flexible application of basic knowledge networks to enhance their practical ability.

Guess you like

Origin www.cnblogs.com/waxxx/p/12467143.html
Recommended
Face Wall Intelligence releases the Eurux-8x22B open source large model - it can be called the "science champion"
Kaiyuan Daily | Google supports Hongmeng to take over; open source Rabbit R1; Android phones supported by Docker; Microsoft’s anxiety and ambition; Haier Electric shuts down the open platform
Ranking
Jianzhi offer interview questions 68-II. The nearest common ancestor of a binary tree (recursive)
jQuery Mobile development 1-UI components
Summary of Kotlin function knowledge
[ZZ] The Naked Truth About Anisotropic Filtering
Diagnosis: record a recovery of abnormal CRASH storage caused the database to be unable to be opened normally
Redis introduction and Linux installation Redis
Experiment 2 Introduction to switches
glances open source command-line system monitoring tools introduced
Use of selector
vue3 handwriting a carousel picture
Daily
More
2024-05-06(6)
2024-05-05(0)
2024-05-04(18)
2024-05-03(8)
2024-05-02(0)
2024-05-01(4)
2024-04-30(36)
2024-04-29(5)
2024-04-28(12)
2024-04-27(29)

Code World

© 2018 codetd.com