OnSite Box Hardware

I’m defining an onsite box as some hardware that can be shipped to the client for them to plug in. The box makes an outbound connection so doesn’t need any special firewall rules.

Requirements and benefits:

small & light; this needs to be shipped with minimal expense.
powerful; this box will need to run ESXi + windows 10 vm + Kali linux vm
wifi; to do a wireless audit
ideally no screen or keyboard as that will encourage random people to try to login.

We opted for a used Intel NUC i5-7th gen, 16gb ram, +Optaine because it has been well tested with VmWare
Other options:
Intel NUC 8th gen + has thunderbolt ports, more versitile
used Lenovo M93 Tiny
Dell OptiPlex 3060 Micro PC
Lenovo ThinkCentre M720q Tiny
HP ProDesk mini
Raspberry Pi 4 8gb +usb3 SSD; cheaper but less powerful, runs VmWare, Windows 11, Kali

Black/Grey/White:
I like to set a time frame to see how much I can learn with no credentials (blackbox) and after a certain time I get access to a domain credential, if i don’t have one already.

Tests to run:
responder

wifi
https://null-byte.wonderhowto.com/how-to/hack-wi-fi-cracking-wpa2-passwords-using-new-pmkid-hashcat-attack-0189379/

https://null-byte.wonderhowto.com/how-to/gpu-accelerate-cracking-passwords-with-hashcat-0132103/

What works:

RasPi 4 + Windows 11 + Zoho remote assist client; First connect takes a really long time, be patient

What to test next:

RasPi 4 + Kali Linux + Wireguard

What DOESN’T work:

RasPi 4 + Kali Linux + Fortinet VPN client; no ARM support on their Linux Software, won’t install

RasPi 4 + Windows 11 + Fortinet VPN client; Installs, starts, won’t connect



sduncan