CYBERSECURITY JOB HUNTING GUIDE
Ways to create a home lab
Overview
Author: Stefan Waldvogel
You have options: Docker, VM or cloud.
Virtual labs need a lot of hardware, but you can adjust the required machine. This article describes the following options:
Minimum way with Docker:
If you have a weak machine with two cores, you cannot run a hypervisor with two VMs, because each VM needs at least one full core. You need a Kali, a victim, and your host --> 3 cores. The good news is, you can still build your home lab with Docker.
Do you want to know how to install Docker?
docs.docker.com/docker-for-windows/install/ (Read the manual)
www.youtube.com/watch?v=eZpLjKv9xvA (Watch a video)
You can pull a Docker container with a command like this:
docker pull kalilinux/kali-rolling (for Kali Linux)
docker pull tleemcjr/metasploitable2 (for metasploitable2)
You get a shell with (metasploitable2): docker run --name container-name -it tleemcjr/metasploitable2:latest sh -c "/bin/services.sh && bash"
You find more in the store:
hub.docker.com/search?q=&type=image&category=os
--> Docker is great, but it has some limitations.
With Azure (or other cloud services)
If you have a very weak machine, you can use cloud machines to build your lab. Use the free credits. This way is great because you learn precious skills if you study for it.
In general, cloud knowledge is free. You can learn Azure or AWS via their platforms or watch videos on YouTube.
This path is the path with the most work because you must understand the cloud-first. It is still worth it because there are more jobs in the cloud than in Cybersecurity. If you can combine both, it will give you a huge advantage over others.
The way via a hypervisor and VMs
Most people might choose this path because it is a cheap way to set up a lab, and you do not need to learn a lot of additional skills. The first thing you have to do is picking a hypervisor. A hypervisor emulates hardware and software and you can run VMs with it. Some options are:
- Minimum way with Docker (minimal hardware requirements)
- Way with Azure (you need your host, can be very weak)
- Route with a hypervisor and VMs (little hardware requirements to a very potent machine)
- Real hardware
Minimum way with Docker:
If you have a weak machine with two cores, you cannot run a hypervisor with two VMs, because each VM needs at least one full core. You need a Kali, a victim, and your host --> 3 cores. The good news is, you can still build your home lab with Docker.
Do you want to know how to install Docker?
docs.docker.com/docker-for-windows/install/ (Read the manual)
www.youtube.com/watch?v=eZpLjKv9xvA (Watch a video)
You can pull a Docker container with a command like this:
docker pull kalilinux/kali-rolling (for Kali Linux)
docker pull tleemcjr/metasploitable2 (for metasploitable2)
You get a shell with (metasploitable2): docker run --name container-name -it tleemcjr/metasploitable2:latest sh -c "/bin/services.sh && bash"
You find more in the store:
hub.docker.com/search?q=&type=image&category=os
--> Docker is great, but it has some limitations.
With Azure (or other cloud services)
If you have a very weak machine, you can use cloud machines to build your lab. Use the free credits. This way is great because you learn precious skills if you study for it.
In general, cloud knowledge is free. You can learn Azure or AWS via their platforms or watch videos on YouTube.
This path is the path with the most work because you must understand the cloud-first. It is still worth it because there are more jobs in the cloud than in Cybersecurity. If you can combine both, it will give you a huge advantage over others.
The way via a hypervisor and VMs
Most people might choose this path because it is a cheap way to set up a lab, and you do not need to learn a lot of additional skills. The first thing you have to do is picking a hypervisor. A hypervisor emulates hardware and software and you can run VMs with it. Some options are:
- Oracle VirtualBox - you can do snapshots and copies, sometimes building a network is painful (machines get the same IP), complex VMs with Docker do not run correctly
- VMWare Workstation Player - more stable, but you cannot take snapshots or give network names
- Microsoft HyperV - If you have a Windows 10 edu or a Win 10 pro, it is built in
- QEMU/KVM - only available on Linux machines, very stable, very complex, fast, and more powerful compared to all others -> 100% free
What hardware is necessary for VMs?
The barely minimum is a machine with 4 cores and 6 GB RAM.
If you want to buy a new "cheap" PC for your lab, Ryzen 5 3600/Core i5-10400F are 6/12 core processors and pick at least 16GB RAM. The GPU does not matter unless you are a gamer. You can build or buy a new machine under $650 (AMD). Much cheaper are refurbished systems on eBay.
-> The most critical features are affordable cores.
One step higher:
Ryzen 7 3700X/Core i7 10700K. These are 8/16 core processors, and an entire system is maybe $900.
Next steps:
Ryzen 9 3900X (12/24cores), 32GB RAM, GTX 1650, 2TB = $1350 --> if you love gaming, consider a better GPU.
Ryzen 9 3950X (16/32cores), 32GB RAM, GTX 1650, 2TB = $1550 --> if you love gaming, consider a better GPU.
If you prefer a laptop, I recommend one with an AMD 4800H / 5800H processor. It is an 8/16 core processor, and with 16 GB RAM, the price is about $1200. I use an Asus TUF A15 with an AMD 4800H, 2TB M2 drive, GTX 1650TI, and 64 GB RAM. If you buy a cheap version and upgrade it manually, it is about $1750. If you buy a pre-build system with these specs, often you have to spend about $2200 for the same system.
Right now (April 2021), AMD processors give you way more power and cores for the bucks.
Real hardware
Building a lab with real hardware is possible and not expensive. Companies like DELL have "second-hand/refurbished" stores (servers are cheap), or you can just buy refurbished PC/servers on eBay. Getting a server with 6/12 cores and 16GB RAM for $350 is not a problem.
The barely minimum is a machine with 4 cores and 6 GB RAM.
If you want to buy a new "cheap" PC for your lab, Ryzen 5 3600/Core i5-10400F are 6/12 core processors and pick at least 16GB RAM. The GPU does not matter unless you are a gamer. You can build or buy a new machine under $650 (AMD). Much cheaper are refurbished systems on eBay.
-> The most critical features are affordable cores.
One step higher:
Ryzen 7 3700X/Core i7 10700K. These are 8/16 core processors, and an entire system is maybe $900.
Next steps:
Ryzen 9 3900X (12/24cores), 32GB RAM, GTX 1650, 2TB = $1350 --> if you love gaming, consider a better GPU.
Ryzen 9 3950X (16/32cores), 32GB RAM, GTX 1650, 2TB = $1550 --> if you love gaming, consider a better GPU.
If you prefer a laptop, I recommend one with an AMD 4800H / 5800H processor. It is an 8/16 core processor, and with 16 GB RAM, the price is about $1200. I use an Asus TUF A15 with an AMD 4800H, 2TB M2 drive, GTX 1650TI, and 64 GB RAM. If you buy a cheap version and upgrade it manually, it is about $1750. If you buy a pre-build system with these specs, often you have to spend about $2200 for the same system.
Right now (April 2021), AMD processors give you way more power and cores for the bucks.
Real hardware
Building a lab with real hardware is possible and not expensive. Companies like DELL have "second-hand/refurbished" stores (servers are cheap), or you can just buy refurbished PC/servers on eBay. Getting a server with 6/12 cores and 16GB RAM for $350 is not a problem.
© 2021. This work is licensed under a CC BY-SA 4.0 license