...
Cybersecurity Labs: Home

Quality Control

In the last few posts, we created/imported VMs for our cybersecurity lab. Now, it’s time to check our cybersecurity lab and apply quality control. Quality control is a process by which entities review the quality of all factors involved in production. ISO 9000 defines quality control as “a part of quality management focused on fulfilling quality requirements”.

All the VMs must…

  • Have access to a shared folder on the host system
  • Be able to ping each other
  • NOT have access to the internet
  • NOT have access to non-lab workstations
Cybersecurity Lab

Testing Script

Windows
REM Windows
REM dsin-lap001
ping 192.168.1.10
REM dsin-dangerzone
ping 192.168.1.200
REM dz-dc
ping 192.168.56.201
REM dz-kali
ping 192.168.56.211
REM dz-metasploit
ping 192.168.56.212
REM dz-win10
ping 192.168.56.213
REM dns.google
ping 8.8.8.8
Linux
# Linux
ping -c3 192.168.1.10      #dsin-lap001
ping -c3 192.168.1.200     #dsin-dangerzone
ping -c3 192.168.56.201    #dz-dc
ping -c3 192.168.56.211    #dz-kali
ping -c3 192.168.56.212    #dz-metasploit
ping -c3 192.168.56.213    #dz-win10
ping -c3 8.8.8.8           #dns.google

Results

192.168.1.10 dsin-lap001
  • Result: PASS
192.168.1.200 dsin-dangerzone
  • Result: PASS
192.168.56.201 dz-dc
  • Result: PASS
192.168.56.211 dz-kali
  • Result: PASS
192.168.56.212 dz-metasploit
  • Result: PASS
Quality Control
192.168.56.213 dz-win10
  • Result: PASS

Exceptions

If you follow the scripts and the outputs, you will understand that I allowed a few exceptions. It’s a calculated risk considering the small setup we have here. We do not allow it in the PROD systems.

  • #jump-server can ping dns.google. The #jump-server is one of many roles that this system plays.
  • #virtual-server can ping dns.google. It’s necessary for the system updates on the physical server.

Best Practices

  • Weekly Backups
  • Weekly Update/Upgrade
  • Weekly Antivirus scan
devendrashirbad@dsin-dangerzone:~$ sudo it-support/job/system-upkeep.sh 
[sudo] password for devendrashirbad: 
[16:32:33] DO UPGRADE
Hit:1 http://in.archive.ubuntu.com/ubuntu noble InRelease
Get:2 http://in.archive.ubuntu.com/ubuntu noble-updates InRelease [126 kB]
Hit:3 http://security.ubuntu.com/ubuntu noble-security InRelease
Hit:4 http://in.archive.ubuntu.com/ubuntu noble-backports InRelease
Get:5 http://in.archive.ubuntu.com/ubuntu noble-updates/main amd64 Packages [215 kB]
Get:6 http://in.archive.ubuntu.com/ubuntu noble-updates/universe amd64 Packages [115 kB]
Fetched 456 kB in 2s (191 kB/s)
Reading package lists...
Reading package lists...
Building dependency tree...
Reading state information...
Calculating upgrade...
0 upgraded, 0 newly installed, 0 to remove and 0 not upgraded.
Reading package lists...
Building dependency tree...
Reading state information...
0 upgraded, 0 newly installed, 0 to remove and 0 not upgraded.
[16:32:40] DONE UPGRADE
[16:32:40] DO CLAMSCAN /home/devendrashirbad

----------- SCAN SUMMARY -----------
Known viruses: 8695604
Engine version: 1.0.5
Scanned directories: 577
Scanned files: 3032
Infected files: 0
Data scanned: 195.71 MB
Data read: 98463.90 MB (ratio 0.00:1)
Time: 40.401 sec (0 m 40 s)
Start Date: 2024:07:03 16:32:40
End Date:   2024:07:03 16:33:20
[16:33:20] DONE CLAMSCAN /home/devendrashirbad
[16:33:20] SKIPPED CLAMSCAN /home/devendrashirbad/z-archive
Execution Time: 47.51 seconds
Scroll to Top
Seraphinite AcceleratorOptimized by Seraphinite Accelerator
Turns on site high speed to be attractive for people and search engines.