This lab serves as a localized "Enterprise Sandbox" designed to simulate a corporate network environment. As an MBA in IT Management and CompTIA Security+ ce / EC-Council Certified Ethical Hacker (CEH), I utilize this environment to bridge the gap between technical vulnerability discovery and business-level risk mitigation.
The environment is hosted on Oracle VirtualBox, utilizing a segmented network topology to ensure safe testing and isolation from the host machine.
- π Kali Linux (Attacker Node) - Primary offensive security platform for penetration testing and vulnerability research.
- π¦ Parrot OS (Security/Dev) - Forensic and development environment for secure tool testing.
- πͺ Windows 11 (Hardened Target) - Enterprise endpoint for testing GPOs and security policy enforcement.
- π§ Ubuntu Server (Managed Endpoint) - Linux infrastructure simulator for auditing logs and firewall (UFW) configurations.
- Vulnerability Management: Running scans across the network to identify and document "High" and "Critical" risks.
- Policy Compliance: Benchmarking installations against NIST or CIS Benchmarks to ensure a hardened baseline.
- Governance & Risk Reporting: Translating technical scan data into Executive Risk Reports, simulating a vCISO board presentation.
- Network Hardening: Configuring internal firewalls and auditing Identity Access Management (IAM).
Dwan Edwards
MBA, IT Management | Security+ ce | Certified Ethical Hacker (CEH)