List of VMs used in the lab

The list of the VMs that we are going to use in the lab is the next one:

• Windows Server 2019 (AD)
• Windows 10 (Simulating a worker)
• Ubuntu Server(Wazuh Server, SIEM)
• Ubuntu Server(Web Server)
• Kali Linux (Attacker Machine)

We want to simulate a company with a server (WS2019) and a user (W10), our SIEM (Ubuntu Server), a web server with a vulnerable website (Ubuntu Server) and an attacker (Kali Linux).

It might be useful to add an extra machine with pfSense for a firewall but I will keep it simple first and do it without it.

UPDATES

I’ve changed the W10 machine for a W11 machine as W10 support life is ending soon.

I’ve decided to add the pfSense machine and I’ve changed from Wazuh to Splunk to make it a more real-world scenario since I think it’s more widely used, will not remove the posts about Wazuh and might add a new one about Splunk installation.

I’ve also changed to a new machine and rebuilt everything so might see that the future posts have different machine names than the first tutorials.