Ready to Start Your Career?
January 1, 2016
How To Set Up Pentesterlab
January 1, 2016
January 1, 2016
Hi, I was going through the part 12 - environment setup of web application pentesting course and I tried to setup the web for pentesters lab from pentesterlab.com. I downloaded it, boot it with virtualbox but in the video the lecturer tells something about configuring the ip but I couldn't do it. As a result of it I couldn't connect to the web site from my kali virtual box. What am I supposed to do? How can I configure my IP and connect to it? \-- Edit --- Found a possible workaround, this may not be secure, wise, or the correct way--but it works. With the lab in its default state, I configured the network adapter through VMWare to Host Only, or Guest Only, which you can also do in VirtualBox. I then used the IP that was already present on the machine through ifconfig, and continued through the instruction. The IP points to the website now through my Kali machine and it's working. So basically, we skipped the IP changing step altogether. Hopefully this works for you as well. Good luck. (Disclaimer: I am not legally responsible if this somehow causes your pentest to spontaneously replicate and destroy the internet ?) In all seriousness though, this should be fine since the VM is restricted to only communicating with our host machine and other VMs on our private network. The lab is configured by default to have an IP in the private network range of 192.168.x.x so our tests shouldn't leave our network. Personally, I don't understand why we needed to configure a different address in the first place, but there's probably a good reason. Hopefully we'll hear back from someone who knows better than I do. --- Edit --- --- Original Post --- Same issue here. The VM is set up with the "From SQL Injection to Shell" from PentesterLab. For anyone else reading that would like to lend a hand, we're talking about the part from around 6:34-8:00 in this video: [https://www.cybrary.it/video/part-12-environment-setup/](https://www.cybrary.it/video/part-12-environment-setup/) The instructor guides us through setting up the lab by changing the IP through ifconfig. He doesn't clearly tell us where the IP we are supposed to set could be found or determined, just explains that we need it on our private network with the adapter set to VMNet1 (Host-Only). I tried setting the IP to what the adapter shows up as through my main Windows machine's ipconfig, and that was able to receive pings. However, the website does not appear through the Kali machine when typed into the browser. It seems we're missing some critical detail here. I'll report back if I figure it out. Same problem ; no solution :( does anyone have any recommendations for my current project. Im working on attacking systems trough attached VOIP phones or attached printers ?? can anyone recommend any phones or printers to add to my lab to get a start ? Visit the links Use a software like qemu with hypervisior https://www.cybrary.it/2016/03/s3ss10n-wednesday-build-your-own-pen-testing-lab/ https://community.rapid7.com/docs/DOC-2196 https://resources.infosecinstitute.com/building-your-own-pentesting-environment/ https://www.cybrary.it/0p3n/tutorial-for-setting-up-a-virtual-penetration-testing-lab-at-your-home/ https://www.hackingloops.com/kali-linux-virtualbox-pentest-lab/ http://securityxploded.com/setup-your-pentest-hacker-network.php https://www.vulnhub.com/lab/pentest/ https://www.udemy.com/build-your-own-cyber-lab-at-home/ https://www.udemy.com/learn-how-to-build-own-virtual-penetration-testing-lab/ http://www.infiniteskills.com/training/introduction-to-penetration-testing/setting-up-a-lab-vms.html
Build your Cybersecurity or IT Career
Accelerate in your role, earn new certifications, and develop cutting-edge skills using the fastest growing catalog in the industry