logo

Pentesting Lab

Build and Learn Cybersecurity Skills

Using Docker        Visit the lab here

This Pentesting Lab is a safe environment designed to learn and practice ethical hacking. It utilizes Docker containers, Python scripts, Flask web applications, and HTTP protocols to simulate real-world vulnerabilities for hands-on cybersecurity training.

Since I don’t have time to create the virtual machines for the project, I will use community-contributed machines and integrate them into the project. To manage them more easily, I created a simple web page with an HTTP server to control the machines from there. I started with a basic version that shows the machine’s name and description.

  • 1

    First Prototype: Sept 2024
    This is the first prototype of the project. It includes a simple web interface where I can manage community-provided virtual machines. The initial version allows basic functionality, displaying the name and description of each machine. This setup serves as the foundation for a more advanced system, making it easier to control and integrate various machines into the project.

  • 2

    Second Prototype: First week of Oct 2024

    After receiving some advice from colleagues and friends, I took on the task of integrating the status of the machines, allowing the color to change based on their current state. I also added a link for walkthroughs and set up the page to refresh the machine status every 5 seconds. These improvements make the interface more dynamic and user-friendly, offering real-time updates and easy access to relevant resources.

  • 3

    Fixing Second Prototype: Terminal and Functions - October 2024

    After many trials and errors in getting the script to properly handle turning the machines on and off, I initially to open a terminal and prompt for a password. However, for now, I’ve removed the password request to simplify the process. I plan to make it more secure later. Additionally, I fixed the proper deletion of containers and ensured that the links in the PDFs for the writeups are now functional. These updates improve both usability and reliability of the system.

  • 4

    Working on the Third Prototype

    hola