Design and Implementation of OpenStack Hack-Lab
Mwaura, Gerald (2018)
Metropolia Ammattikorkeakoulu
2018
Creative Commons Attribution 3.0 Unported
Julkaisun pysyvä osoite on
https://urn.fi/URN:NBN:fi:amk-201804164755
https://urn.fi/URN:NBN:fi:amk-201804164755
Tiivistelmä
The goal of the thesis was to design and implement a cloud platform on which to run an open-source pen-testing lab. This would be done with minimal monetary investment and tools that are readily available. This is to stay in line with the primary objective of who the implementation if for and intended use.
The theoretical part discusses the enabling technology of cloud computing and virtualisation with a practical part at the end on the implementation of the lab. OpenStack was the preferred platform for reasons discussed in the thesis herein. OpenStack as an open-source software was found to be making good head way to becoming among the top software for cloud and data centres. The core projects behind OpenStack could be combined to develop an easy do it yourself security testing laboratory.
The lab will comprise of a combination of vulnerable images used to create servers held within self assigned networks. These networks can be configured in a way to offer challenge to penetration testers within the platform. The platform can hold multiple labs an advantage of using cloud services. This and other advantages allowed by using cloud services are the essential features this thesis basis itself on and will be discussed as part of the thesis.
The result of the project is a cloud platform based on OpenStack offering a security experience to any individual interested hacking in general. Service components will be added for administration and control of the components and any future expansion of the project.
The theoretical part discusses the enabling technology of cloud computing and virtualisation with a practical part at the end on the implementation of the lab. OpenStack was the preferred platform for reasons discussed in the thesis herein. OpenStack as an open-source software was found to be making good head way to becoming among the top software for cloud and data centres. The core projects behind OpenStack could be combined to develop an easy do it yourself security testing laboratory.
The lab will comprise of a combination of vulnerable images used to create servers held within self assigned networks. These networks can be configured in a way to offer challenge to penetration testers within the platform. The platform can hold multiple labs an advantage of using cloud services. This and other advantages allowed by using cloud services are the essential features this thesis basis itself on and will be discussed as part of the thesis.
The result of the project is a cloud platform based on OpenStack offering a security experience to any individual interested hacking in general. Service components will be added for administration and control of the components and any future expansion of the project.