Technological advances have exacerbated cybercrime while simultaneously increasing the demand for cybersecurity professionals. However, the training of these professionals often lacks practical experience due to the limited availability of optimal environments for skill development. To address this challenge, this study proposes an affordable and replicable cybersecurity lab. To achieve this, we used technologies such as Node.js and React.js for the back-end and front-end, respectively. We also configured an Ubuntu server with an Apache HTTP Server, running VMware as the virtualization platform. We establish connectivity using a MikroTik RB750 router. Functional testing evaluated simultaneous access to vulnerable servers, VPN connections, and port scanning with NMAP. Vulnerable servers included Metasploitable2 and virtual machines running Windows 7 and Windows 10. In addition, we conducted tests to automate the generation and validation of encrypted credentials, allowing secure user access to the experimental environment via VPN. The results demonstrated that the lab functions correctly, suggesting that educators can effectively implement it in cybersecurity programs to enhance student training and learning.

错误:搜索内容不能为空,请输入英文关键词
错误:关键词超出字数限制,请精简
高级检索

An Implementation of an Automatic System for the Innovation and Management of a Cybersecurity Laboratory for Concurrent Users

  • Luis Jaramillo,
  • Carlos Romero,
  • Walter Fuertes,
  • Adrián Iza

摘要

Technological advances have exacerbated cybercrime while simultaneously increasing the demand for cybersecurity professionals. However, the training of these professionals often lacks practical experience due to the limited availability of optimal environments for skill development. To address this challenge, this study proposes an affordable and replicable cybersecurity lab. To achieve this, we used technologies such as Node.js and React.js for the back-end and front-end, respectively. We also configured an Ubuntu server with an Apache HTTP Server, running VMware as the virtualization platform. We establish connectivity using a MikroTik RB750 router. Functional testing evaluated simultaneous access to vulnerable servers, VPN connections, and port scanning with NMAP. Vulnerable servers included Metasploitable2 and virtual machines running Windows 7 and Windows 10. In addition, we conducted tests to automate the generation and validation of encrypted credentials, allowing secure user access to the experimental environment via VPN. The results demonstrated that the lab functions correctly, suggesting that educators can effectively implement it in cybersecurity programs to enhance student training and learning.