Homelab project using Endpoint Detection and Response software to monitor a live attack on a Windows 11 virtual machine. Includes creating Detection & Response rules for an EDR, learning how to analyze telemetry from a Windows 11 machine to identify malicious traffic, scan for malicious files by YARA signature, analyze detections to see if they are false positives, and how to limit the rate of false positives by crafting better D&R rules.
Homelab using Nessus vulnerability scanner to run non-credentialed and credentialed scans on a Windows 11 virtual machine. Using Nessus to learn more about specific vulnerabilities, compare scan results when unpatched software is installed, and learning about the role that vulnerability management plays in an organization.
Using Security Onion in a homelab environment to simulate what a SOC Analyst would experience during an attack. Using a packet capture from a real world attack to recreate the same SIEM logs and alerts experienced by the SOC during the attack. Learning to analyze the packet captures and logs to identify data exfiltration. Learning how to properly document, communicate, and make recommendations as a SOC analyst.
Skills Developed in this Project Why You Should Learn How to Use Azure Microsoft Azure is the second largest cloud infrastructure provider by dollar amount with 25% of the market share as of the first quarter of 2024. that is only 6% behind AWS, and a whole 15% more than the 3rd largest cloud provider, Google Cloud (https://www.statista.com/statistics/967365/worldwide-cloud-infrastructure-services-market-share-vendor/). Learning how to use Azure will be useful for many IT roles. An increasing number of organizations Read more…
A Series of Posts Exploring the Features of Active Directory and Simulating Common IT Support Scenarios Skills Developed in This Project Series Part 1 Part 2 Part 3 Part 4 PDQ Deploy Enterprise and PDQ Inventory Enterprise Silently Installing Software on a Client Computer While It’s Being Used In the previous post covering Remote Desktop use, I mentioned how one of the main disadvantages of using Remote Desktop or screen sharing in a production environment Read more…
A Series of Posts Exploring the Features of Active Directory and Simulating Common IT Support Scenarios Skills Developed in This Project Series Part 1 Part 2 Part 3 Part 4 Remote Desktop Enable Remote Desktop The method I’m going to use here is through the Control Panel. The nice thing about learning how to access things through the Control Panel is that it applies the same for Windows 10 and Windows 11. I will be Read more…
A Series of Posts Exploring the Features of Active Directory and Simulating Common IT Support Scenarios Skills Developed in This Project Series Part 1 Part 2 Part 3 Part 4 Simulating Helping Someone Unlock Their Account Setting an Account Lockout Policy in Group Policy Manager A very common reason for a user to call support is because they are locked out of their account. There are various reasons this could happen, but for this example Read more…
A Series of Posts Exploring the Features of Active Directory and Simulating Common IT Support Scenarios Skills Developed in This Project Series Part 1 Part 2 Part 3 Part 4 Introduction to the Project Series This project series of 4 parts is meant to be done after reading “How to Create an Active Directory Practice Environment”. You will need to have an Active Directory practice environment set up before you can practice the skills discussed Read more…
For Use in Active Directory Projects and Learning How to Manage a Domain Controller Skills Developed in This Project Overview of the Project The primary purpose of this project is to learn the basics of how an Active Directory Domain Controller can be set up for use in further projects. It is a useful starting point for learning Active Directory and getting oriented within it. Following this project will be more Active Directory projects which Read more…
A quick and easy way to get much better privacy and security from Firefox by using Arkenfox’s user.js. Why Harden Firefox? There are several reasons for privacy and security. To start with some of the benefits for privacy, hardening Firefox will greatly reduce websites’ ability to track you across the internet. Most websites rely on giant companies to handle their data analytics, so even small websites share your browsing data with large companies like Google. Read more…