7MS #224: DIY $500 Pentesting Lab - Part 1
Today's episode is part 1 of a series all about setting up a virtual pentesting lab for about 500 bucks. We're kicking off the series with a segment on selecting hardware, getting ESXi installed to a USB drive and then getting all the components hooked up and powered on.
The config I went with was inspired by this post, and to keep the rig in the ~$500 sweet spot, here's my grocery list:
Samsung SM951 128GB M.2 NGFF PCIe Gen3 8Gb/s x4 Solid state drive SSD (2280), NVME ( MZVPV128HDGM-00000)
Crucial 16GB Single DDR4 2133 MT/s (PC4-17000) SODIMM 260-Pin Memory - CT16G4SFD8213
Samsung 850 EVO - 500GB - 2.5-Inch SATA III Internal SSD (MZ-75E500B/AM)
Hooking everything up:
Getting the hardware installed is pretty simple - you just need a Phillips screwdriver and that's about it! 4 screws on the bottom of the case zip open and then all the parts are plug-n-play/pray:
Create ESXi boot media:
I'm on a Mac, so I followed these instructions which I borrowed heavily from this GitHub project. Be very careful when formatting and imaging disks as you don't want to nuke the wrong drive!
Login to ESX console and enable SSH:
In the video version (below) I show how to turn SSH on for management, but all you really need to do is hit F2 from the console, go under Troubleshooting Options and choose Enable SSH.
At this point you should be ready for part 2 (continuing next week) to get your NUC network and storage config'd so you can start lighting up some pentest VMs!