Still Alive! Updates & Project

Heyoo~ I know I haven’t been posting much but here is the update Been taking a bunch of certifications and a lot of courses in-between.

Certifications:

• LPI Linux Fundamentals
• CompTIA A+ Core 1 and 2.
• CompTIA Security +
• ITIL v4 Foundations

And I am currently working on CompTIA Network+. This is in preparation for my bachelor’s degree in Cybersecurity & Assurance at WGU Western Governors University – Online College

I am currently reading the series Dungeon Crawler Carl by Matt Dinniman and been introduced to the genre LitRPG and I am absolutely loving it.

Anyway… Now for the main content I wanted to publish today.

I have been thinking of a project, where I automate a lot of the setup for a new environment – yes, I know it’s already been done, but in this case, I want to make it my own using the tolls out there and learn from it.

This idea comes from my day job where I work with Microsoft security products and need to stay on top of how they work and having an environment that I can use as a sandbox is something I’m lacking; therefore, this project came to mind.

Here are my general outlines of what I want to do (and subject to change, of course): Spin up an environment with at least the following

• 1x Domain Controller
• 2x Clint PC running Windows 10/11
• 1x Kali/Parrot Linux VM
• 1x Sentinel Instance that will ingest multiple sources.
• 1x pfSense Firewall
• 1x SCCM Server – this is very optional, but I want to use it for co-management scenarios.
• 1x Web Server for web application

This allows me to set up my own Microsoft 365 environment and host it as a real-life environment, where I can automate tasks where my “users” will send emails and messages automatically, which I hope to achieve through Power Automate.

Ideally, this would all be tied together with Power Automate and Terraforming where I can build it so it’s being deployed automatically if when I break it and need to set it up as new. Now. Having the environment is great, but it’s nothing without data and emulated attacks, so as I’ve been playing way too much Diablo 4 Vessel of Hatred, I’ve also been watching and researching ways to do this. Some tools I have in mind are:

• Caldera
• Red Canary
• SecurityOnion
• Honeypot of my choice, nothing decided.
• Metasploit
• PurpleSharp
• Micro Emulation Plan: Active Directory Enumeration
• Automated Emulation with Caldera 5.0 Support!
• evilginx3
• Official Microsoft Defender for Endpoint Test scripts.
• DLP Test

These are just some general ideas I have, and I don’t know how I will approach it, but it’s been a fun little brainteaser and I’m looking forward to working on it.

Next Steps

In the next post I hope to have a diagram of the network and the setup itself.

I am also hoping to have some more information the hardware (besides Azure that is.) that will host the environment

That’s it for now! Until next time, remember to lab lab lab!