An Implementation of an Automatic System for the Innovation and Management of a Cybersecurity Laboratory for Concurrent Users
摘要
Technological advances have exacerbated cybercrime while simultaneously increasing the demand for cybersecurity professionals. However, the training of these professionals often lacks practical experience due to the limited availability of optimal environments for skill development. To address this challenge, this study proposes an affordable and replicable cybersecurity lab. To achieve this, we used technologies such as Node.js and React.js for the back-end and front-end, respectively. We also configured an Ubuntu server with an Apache HTTP Server, running VMware as the virtualization platform. We establish connectivity using a MikroTik RB750 router. Functional testing evaluated simultaneous access to vulnerable servers, VPN connections, and port scanning with NMAP. Vulnerable servers included Metasploitable2 and virtual machines running Windows 7 and Windows 10. In addition, we conducted tests to automate the generation and validation of encrypted credentials, allowing secure user access to the experimental environment via VPN. The results demonstrated that the lab functions correctly, suggesting that educators can effectively implement it in cybersecurity programs to enhance student training and learning.