Cybersecurity Lab Environment in EVE NG

download the free eve community edition, client pack, and router and switch images; unzip and organize them for use with vmware workstation pro.

Install VMware Workstation Pro to build a lab in EVE NG, register the license, enable virtualization in BIOS, configure VMnet adapters, and troubleshoot common network setup issues.

Install and configure EVE-NG in VMware Workstation by importing the Community Edition image, setting up adapters (net, host-only, bridge), enabling virtualization, and updating the system with apt-get update and upgrade.

Install the EVE-NG client pack to include putty, ultra vnc, and wireshark, required when running devices such as routers and switches, on Windows, Linux, or mac OS.

Learn to name EVE-NG Qemu images correctly: keep folder names lowercase and use standard inner image names such as hda and virt0a/virt0b to avoid boot errors.

Upload iOS router images to EVE NG by extracting files with 7-zip, transferring ftp, applying permission fixes, and verifying access by logging in and confirming router availability in the lab.

Upload IOU and Linux switches in eve ng, manage licenses and permissions, distinguish layer 2 and layer 3 switches, adjust icons, and enable ip routing on interfaces.

Learn to configure EVE-NG clouds and bridges, connect virtual devices via management cloud and cloud zero/one/two, assign DHCP IP ranges, and verify connectivity with show ip interface brief.

learn how to set up a buggy web app (bWAPP) in eve-ng by converting vmware vmdk images to qcow2 with qemu-img, then deploy and test vulnerabilities.

Configure and troubleshoot Metasploit lab images in EVE NG, fix database name, apply persistent changes across new images using ID, node ID, and MSF admin credentials.

Configure a vulnerable web application in the EVE NG lab by downloading a broken web application VM, converting it to vmdk, deploying it, and validating its OWASP vulnerabilities.

Learn to set up a php auction site lab in eve ng by converting php debian images to vmdk, creating linux/php directories, and configuring root access for Kali machines.

Set up Kali Linux in the EVE NG lab by downloading the VMDK image, converting it for VMware or VirtualBox, and upgrading to install missing tools.

Install big box linux in eve-ng by downloading the vmdk from SourceForge, converting it to qcow2, and applying fixed permissions. Use the ready linux big box for cyber security labs.

Set up Parrot OS in EVE NG by downloading the security edition ISO, installing in a VM, converting VMDK to QCOW2, and uploading for lab use.

Build a cyberattacks lab in eve-ng by importing routers, switches, Linux and Windows servers, Kali attacker, vulnerable apps, and configuring ip, mac, dhcp within a complete topology.

Configure two web servers, tiny core linux and windows xp, in cybersecurity lab, by assigning 192.168.1.6 and 192.168.1.7, setting gateway and dns, saving permanent config, and validating via a browser.

Configure vulnerable servers in the EVE NG lab by setting static IPs for Kali Linux, a buggy web app, and a metasploit image; verify connectivity and restart networking.

Configure the edge router to obtain an auto ip via cloud, set the lan mac, and enable a dhcp server for the 192.168.1.0/24 network, with nat overload.

Learn active reconnaissance in a cyber lab, mapping networks, identifying alive hosts, open ports, OS and web services with tools like nmap in Kali Linux.

Demonstrates a mac flooding attack that fills the switch's mac address table with fake addresses, turning it into a hub and enabling traffic capture for a DoS scenario.

Explore a ping of death denial-of-service test in a lab using two PCs and Kali Linux, sending oversized fragmented packets captured with Wireshark to observe impact.

explore icmp flooding, a dos attack using echo requests and spoofed sources to overwhelm a target, with traffic captured via wireshark and hej ping three.

Demonstrates a syn flooding attack against a server by sending numerous spoofed syn packets, exploiting the tcp three-way handshake to create half-open connections and deny service.

Explore how a smurf attack uses ICMP broadcast floods and spoofed source IPs to overwhelm a victim and trigger a distributed denial-of-service across a network.

Explains land attack, a denial-of-service technique that uses identical source and destination IPs to loop traffic, overwhelm a Windows XP server, and take the service offline.

Demonstrates the slow loris attack, a dos method that floods a target with incomplete http requests to exhaust open connections and disable services, using Metasploit in Kali Linux.

Explore how arp spoofing and arp poisoning enable a man-in-the-middle by spoofing mac addresses, turning a Linux box into a router to intercept traffic.

Examine a DHCP starvation attack that floods a DHCP server with Discover, Request, and Acknowledgement messages, depleting IP bindings, using Kali Linux tools like Yersinia and DHCP starvation commands.

Demonstrates combining a DHCP starvation attack with a rogue DHCP server to route client traffic through the attacker, enabling man-in-the-middle traffic capture and forwarding via a spoofed gateway 192.168.1.8.

Demonstrates password attack techniques, focusing on dictionary and brute force attacks using Hydra against Telnet, SSH, and FTP, with rockyou word lists.

Explore phishing attacks that deceive users to harvest credentials and financial data, and learn to use the social engineering toolkit in Kali Linux to clone websites and redirect victims.

Explore sql injection attack techniques and the risks of insecure input fields that allow attackers to query databases, retrieve user information, and bypass authentication in web applications.

Explains command injection and command execution via insecure input in a web interface, showing how attackers run Linux commands to reveal user identities, processes, and directory information.

Demonstrate how DNS spoofing, or DNS poisoning, redirects users from legitimate domains to a fake site by spoofing the DNS server in a lab with Kali Linux and Apache.