Build a defense lab for FREE: Step-by-step Walkthrough | Learn with HTB (Episode 7)
Welcome to Learn with #HTB, a special series covering the fundamentals of fast-tracking your career path in defensive or offensive #cybersecurity.
In this episode, #BlueTeam expert Gio DelPrince (@CyberStudies ) walks you through setting up your own defensive lab. By the end, you’ll have an isolated lab, a ready-to-use Security Incident and Event Management (SIEM) platform, and sample data to practice with. Whether you're new to cybersecurity or a seasoned pro, this guide provides a solid foundation to build on.
First, we're going to create a lab that’s isolated from our home network using VMware’s Workstation Pro, allowing us to have internet connectivity on an as-needed basis but the idea is to have this “AiR-GaPpEd” as much as possible. Once that's up and running, we’ll download our SIEM and then leverage Splunk. We’re also going to set up a malware and forensic tool suite offering so you can dig into some alerts. Let's dive in!
0:00 Introduction
2:56 Security Incident & Event Management (SIEM) Lab Setup
22:36 Network Forensics Lab Setup
Grab your 20% discount on all HTB Labs annual subscriptions by using the code labsannual20off at checkout. Get started: https://www.hackthebox.com/
resources
VMware: https://blogs.vmware.com/workstation/2024/05/vmware-workstation-pro-now-available-free-for-personal-use.html
Ubuntu: https://ubuntu.com/download/desktop
Splunk: https://www.splunk.com/en_us/download.html
REMnux: https://docs.remnux.org/install-distro/get-virtual-appliance
Windows 11: https://www.microsoft.com/en-us/software-download/windows11
FlareVM: https://github.com/mandiant/flare-vm