Modern Windows Attacks and Defense Lab
This is the lab configuration for the Modern Windows Attacks and Defense class that Sean Metcalf (@pyrotek3) and I teach. It leverages Azure Resource Manager Templates and Desired State Config to spin up the lab.
Lab Environment
The lab consists of the following servers:
DC01
- Windows 2012 R2
- Active Directory
- DNS
- File Sharing
TerminalServer
- Windows 2012 R2
- Remote Desktop Services
AdminDesktop
- Windows 2012 R2
UserDesktop
- Windows 2012 R2
Home
- Windows 2016
- RSAT
Pwnbox
- Ubuntu 16.04
- Metasploit
Deploying the Lab
IMPORTANT: This lab deployment was designed to work as part of the WAAD class and certain aspects of this deployment will not work out of the box as it depends on files that are not part of this repo. Issues and pull requests will not be supported.
Most of this lab is available here in the repo. There are two aspects that are not provided though, the CLASS and WAAD folders. These folders are deployed to each Windows box as part of the DSC bootstrap. You can edit the bootstrap PS1s to either remove these deployments or modify them to work with your own folders.