Preview Mode Links will not work in preview mode

7 Minute Security


Jan 20, 2023

Today's episode is brought to us by our friends at Blumira!

Today we kick off a series all about building your own vulnerable pentest lab from scratch, specifically:

  • Spinning up a domain controller with a few lines of PowerShell
  • Installing Active Directory Domain Services
  • Setting up an intentionally cruddy password policy
  • Baking in the MS14-025 vulnerability

P.S. if you're looking for a more automated/push-button solution to get up and going with a lab to play in, check out some of these options:

https://github.com/Orange-Cyberdefense/GOAD
https://automatedlab.org/en/latest/
https://github.com/microsoft/MSLab
https://github.com/davidprowe/BadBlood
https://github.com/cliffe/secgen
https://github.com/WazeHell/vulnerable-AD