Build a Cloud Red Team / Blue Team Cybersecurity Homelab - Crash Course

☁ Build a Cloud Cybersecurity Red Team / Blue Team Homelab. Download the step-by-step notes (no email required): https://bit.ly/3LFqK6I ⏰ Timestamps: 00:00 – Project Introduction 1:49 – Network Topology & Project Overview 5:55 – Option 1: Provision with Terraform 18:09 – Option 2: Provision with AWS Console UI 33:57 – Log Into Attacker Box (Configure RDP) 39:04 – Log Into Security Tools Box 40:33 – Log into Windows Box 43:19 – Download & Configure Splunk 48:36 – Download & Configure Universal Forwarder 54:37 – Download & Configure Nessus 🔧 Terraform GitHub Project: https://github.com/collinsmc23/cloud-cybersecurity-homelab/tree/main 🔗 Linked Mention: Microsoft Remote Desktop for macOS: https://apps.apple.com/us/app/microsoft-remote-desktop/id1295203466?mt=12 WSL Ubuntu 22.04: https://apps.microsoft.com/store/detail/ubuntu-22042-lts/9PN20MSR04DW Create AWS Account: https://aws.amazon.com/resources/create-account/ Download Terraform: https://developer.hashicorp.com/terraform/downloads Download AWS CLI: https://docs.aws.amazon.com/cli/latest/userguide/getting-started-install.html Download Git: https://git-scm.com/downloads Splunk Enterprise (Free Trial) Download Page: https://www.splunk.com/en_us/download/splunk-enterprise Splunk Universal Forwarder Download Page: https://www.splunk.com/en_us/download/universal-forwarder/ Tenable Nessus Download Page: https://www.tenable.com/downloads/nessus 💻 Commands & Configurations: Bash Script For Kali XRDP Installation: #!/bin/sh echo "[i] Updating and upgrading Kali (this will take a while)" apt-get update apt-get full-upgrade -y echo "[i] Installing Xfce4 & xrdp (this will take a while as well)" apt-get install -y kali-desktop-xfce xorg xrdp echo "[i] Configuring xrdp to listen to port 3389 (but not starting the service)" sed -i 's/port=3389/port=3389/g' /etc/xrdp/xrdp.ini Splunk: Splunk Enterprise Download: sudo dpkg -i splunk-deb /opt/splunk/bin sudo ./splunk start Inputs.conf file path location: C:\Program Files\SplunkUniversalForwarder\etc\system\local Inputs.conf Configuration: [WinEventLog://Security] index = win-security disabled = 0 Restart Universal Forwarder: cd C:\Program Files\SplunkUniversalForwarder\bin splunk.exe restart Tenable Nesuss: dpkg -i "Nessus-[version number]-debian6_amd64.deb" sudo systemctl start nessusd.service 🐕 Follow Me: Twitter: https://twitter.com/collinsinfosec Instagram: https://www.instagram.com/_collinsinfosec/ Cybercademy Discord Server: https://discord.gg/bWymWhCv9p 🤔 Have questions, concerns, comments?: Email me: grant@cybercademy.org 🎧 Gear: Laptop (Lenovo X1 Carbon Ultrabook 6th Gen): https://amzn.to/2O0UfAM​​​​​ Monitors (Dell D Series 31.5” D3218HN): https://amzn.to/2EXlgRF​​​​​ Keyboard (Velocifire VM01): https://amzn.to/2TEswfd​​​​​ Headphones (Audio Technica ATH-M40x): https://amzn.to/2F4Tvq6​​​​​ Work Monitors (Dell U4919DW UltraSharp 49 Curved Monitor): https://amzn.to/3yQmDhM Desk (FLEXISPOT EW8 Comhar Electric Standing Desk): https://amzn.to/3S9OxvG 💻 Cybersecurity PC Build Parts [Processor] Intel Core i7-13700K 3.4 GHz 16-Core Processor: https://amzn.to/3OlTTUK [Graphics Card] Asus DUAL OC GeForce RTX 3060 Ti 8 GB Video Card: https://amzn.to/3OE0bkd [AIO Cooler] Corsair iCUE H100i RGB ELITE 65.57 CFM Liquid CPU Cooler: https://amzn.to/3DEUUT9 [Motherboard] MSI PRO Z690-A WIFI DDR4 ATX LGA1700 Motherboard: https://amzn.to/3Ol9La8 [RAM](2x) Corsair Vengeance LPX 64 GB (2 x 32 GB) DDR4-3200 CL16 Memory: https://amzn.to/3OlsgeM [HDD] Seagate IronWolf NAS 8 TB 3.5" 7200 RPM Internal Hard Drive: https://amzn.to/3DFdc6K [SSD] Samsung 980 Pro 2 TB M.2-2280 PCIe 4.0 X4 NVME Solid State Drive: https://amzn.to/3KpTnnQ [Case] Corsair 5000D AIRFLOW ATX Mid Tower Case: https://amzn.to/44Rjaxf [Power Supply] Corsair RM850x (2021) 850 W 80+ Gold Certified Fully Modular ATX Power Supply: https://amzn.to/478wC1r [Fans] Corsair iCUE SP120 RGB ELITE 47.7 CFM 120 mm Fans 3-Pack: https://amzn.to/44R4myD