Skip to main content
SolarWinds MSP
  • Login
  • Support
  • Partnerships
    • Partnerships Overview
    • Solution Provider Program
    • Technology Alliance Program
    • Distributor Program
SolarWinds MSP
  • Products
    • SolarWinds N-central Automate what you need. Tackle complex networks. Try this remote monitoring and management solution built to help maximize efficiency and scale.
    • SolarWinds RMM Start fast. Grow at your own pace. Try this powerful but simple remote monitoring and management solution.
    • SolarWinds EDR Defend against ransomware, zero-day attacks, and evolving online threats with Endpoint Detection and Response
    • SolarWinds Backup Manage data protection for servers, workstations applications, documents and Microsoft 365 from one SaaS dashboard.
    • Mail Protection & Archiving Protect users from email threats and downtime.
    • Password Management Easily adopt and demonstrate best practice password and documentation management workflows.
      • Passportal Demo
    • PSA & Ticketing Manage ticketing, reporting, and billing to increase helpdesk efficiency.
    • Remote Support Help support customers and their devices with remote support tools designed to be fast and powerful.
  • Solutions

    I'm looking for...

    • Security Solutions
    • Monitoring Solutions
    • Efficiency Solutions
  • Resources
    • Blog
    • Webcasts & Events
    • Ask the N-central Experts
    • Daily Live Demos
    • RMM Foundations Training
    • Upcoming Events
    • Upcoming Webcasts
    • Resource Center
    • COVID-19 Resources
    • Resource Library
      • Case Studies
      • Product Information
      • eBooks
      • White Papers
      • Infographics
    • SolarWinds MSP Free Tools
    • GDPR Resource Center
    • Security Resource Center
    • MSP Institute Webinar Series
    • MSP Advice Project
  • About
    • Contact
    • Customer Success
    • Worldwide sales and support
    • Careers
    • Awards and Recognition
    • Get A Quote
    • Newsroom
      • Press Releases
      • In The News
      • Media Contacts
      • COVID-19 Response
    • Leadership Team
    • Legal
      • Cookie Policy
      • Privacy Notice
      • Software Services Agreement
      • Terms of Use
      • Backup Fair Use Policy
    • Security
      • SolarWinds Security Statement
      • Vendor Data Protection Requirements
    • Support
  • IT Departments
  • Contact Sales
    • Get A Quote
    • General Inquiry
  • TRY NOW
    • SolarWinds RMM
    • SolarWinds Backup
    • MSP Manager
    • SolarWinds Passportal
    • SolarWinds N-central
    • SolarWinds Mail Assure
    • SolarWinds Risk Intelligence
    • SolarWinds Take Control
  • Request a Quote
  • Try Now
    • SolarWinds RMM
    • SolarWinds N-central
    • SolarWinds Backup
    • MSP Manager
    • SolarWinds Mail Assure
    • SolarWinds Passportal
    • SolarWinds Risk Intelligence
    • SolarWinds Take Control
Request quote
Filter Blogs
  • Filter by:
  • MSP Business
    • Automation
    • Backup & Disaster Recovery
    • Security-series
    • Best Practices
    • Business
    • Business Growth
    • Business Risk
    • Cloud Computing
    • Customer Service
    • Cybersecurity
    • Cybersecurity Awareness Month
    • Data
    • GDPR
    • Internet of Things
    • IT Support
    • ITSM
    • LOGICcards
    • Machine Learning
    • Mail
    • Managed Services
    • Marketing
    • Mobile
    • Networking
    • Operations
    • Podcast
    • Product
    • PSA
    • Remote Management
    • Research & Trends
    • Risk Intelligence
    • Security
    • Security Vlog
    • Service Desk
    • Services & Support
    • The Head Nerds
    • Tips & Advice
    • Training
Home Blog MSP Business Hack Labs: The benefit of having your own
MSP Business

Hack Labs: The benefit of having your own

By Nick Cavalancia
23 March, 2016

Like every IT Pro out there, you know with technology changing daily, it’s a constant game of catch-up. New platforms, applications, security technologies all coming out at a rampant pace. But, your boss has you laser focused on only a subset that they believe will benefit the organization.

What about those of you concerned with security, who want to test out either the latest hacking tools to better understand your enemy, or advances in solutions designed to protect your company’s network – because we all know reading about it just isn’t the same as getting your hands dirty, right?

So how are you supposed to gain first-hand knowledge of the latest tech (good and evil) and put it to the test if you are never given the time and resources?

The answer lies in taking matters into your own hands and building yourself a Hack Lab. Some call it a Home Lab, but doesn’t it sound cooler if you call it a Hack Lab? It does, right? I’m calling it a Hack Lab.

If you’ve never had one, you probably have a few questions. I’ll do my best to proactively guess and answer them here.

Why Do I Need a Hack Lab?

hacklabThere are quite a few reasons for building one. For some of you, it’s more for personal use – could be for helping you with that next certification, learning about a new technology or application in lieu of formal technical education. For others, it’s more along the lines of the reasons I started this article with – you need an environment with which to play with the latest tech to better familiarize yourself. If you don’t have a Hack Lab at work, and, say, you’re in charge of your company’s virtual infrastructure, you’re still somewhat responsible for checking container technology to see if it’s a viable option for the company. Same goes for network security – you still need to be the master of every method and tool your enemy may use.

Sure, sure – your company is supposed to pay for all this and have it available to you, but I know from my many years in the corporate world, it’s tough to add a line in the IT budget entitled “equipment to play with.”

So, like countless others, you may need to go this one alone and just build one yourself.

What Equipment Needs to be a Part of my Hack Lab?

equipmentGreat question. The simple answer – it depends. If you’re in that “I want to educate myself” bucket, you need those components that make up the environment you need to learn about. If you are interested in micro-segmentation with VMware NSX, then you just need a copy of ESXi and a few guest OSes and you can be off to the races. But if you’re looking to do pen testing, you might need a switch, or some other physical networking component. No two Hack Labs are exactly the same. But there are some common components you’ll find in most labs:

  • Virtualization – Most labs require flexibility so you aren’t stuck working within a single network scenario. Plus, this keeps your hardware costs lower, since none of us is rolling in dough. As for a hypervisor vendor – labs run the gambit – ESXi, Hyper-V, Oracle, XenServer, you name it. Go with what you’re comfortable with, but make sure any host hardware is on the corresponding virtualization vendor’s HCL.
  • Backups – This is a network you’re building… and we all know cardinal rule #1. Back it up. It’s recommended that you backup to separate storage so that you aren’t toying with space dedicated to VMs to backup those same VMs.
  • Networking – Some of you may actually want/need/require some physical routers, firewalls, switches, etc. To keep costs down, I’d suggest taking a look on ebay for used older equipment – it won’t be state-of-the-art fast, but it will get the job done.
  • Software – You’re going to need Operating Systems, enterprise server applications, client apps, tools, etc. And none of that is free. Evaluation media does a nice job of giving you the full feature set (you’re just going to need to reinstall every so often). Another option is older versions sold on eBay. Sure, there may be some legal issues (and I’m not one to sweep that under the rug), but do keep in mind, you’re not using any of this for production, just testing. For example, an old copy of Windows Server 2003 could very well be sufficient to host whatever application you need to test. Yes, it’s no longer supported, but you’re not looking for support anyway.
  • Power – having some level of power redundancy (so you don’t corrupt any part of the environment) is necessary. Choosing a solid, but inexpensive, UPS should be part of your plan.

Remember, this list completely depends on what you want to do. Some labs are designed around wanting to replicate a specific physical network configuration, while others just need to run a copy of Exchange 2016 and Active Directory. Also, this list isn’t exhaustive by any means. I’m simply trying to point those of you that are new to setting up a VM Hack Lab in the right direction.

Examples of Hack Labs run from as simple as a few laptops, to those with moderate effort put into them, to those that delve a bit too far into the realm of a hardware collector.

How do I Set Up the Lab?

I’m assuming you’ve got the hardware part down pretty well, so this is more about setting up and configuring any virtualization you may need. In trying to answer this, please do keep in mind, each one of you have a different objective, an opinion on which hypervisor to use, a list of “must have” tools, etc. So I can’t put a step-by-step here. I did find a few great links on building a Hack Lab for free, along with a plethora of sites with instructions on how to get old versions of apps, etc. (but I’ll let you find those for yourselves…)

Getting Started

There are no Hack Lab police that will come if you don’t build something elaborate; build the network that meets your needs with what you can afford. Today it may just be two physical servers and a KVM switch, but tomorrow, it may be much, much more.

And remember… your Hack Lab is about a purpose, not a definition. Determine your purpose and the lab will begin to define itself.

Now get to work!

You might also like...
MSP Business

Operation Cloud Hopper-A wake-up call for MSPs and IT service providers

MSP Business

Are companies spending their IT Security Budget on the wrong things?

MSP Business

Using managed antivirus solutions in your MSP

MSP Business

The do's and don'ts of DIY pen testing

MSP Business

Do we go overboard with security?

MSP Business

Brute force attack mitigation 101

Want to stay up to date?

Get the latest MSP tips, tricks, and ideas sent to your inbox each week.

Loading form....

If the form does not load in a few seconds, it is probably because your browser is using Tracking Protection. This is either an Ad Blocker plug-in or your browser is in private mode. Please allow tracking on this page to request a subscription.

Note: Firefox users may see a shield icon to the left of the URL in the address bar. Click on this to disable tracking protection for this session/site

Recent Posts
  • What the Head Nerds Were Up to in 2020
  • RMM and PSA Tools: How to Make the Most of Both
  • How to Empower an IT Help Desk Team for Success
  • Six Tips That Will Make Managing Your MSP Company Easier
  • January 2021 Patch Tuesday: One Actively Exploited Vulnerability and a Few Likely to Be
Categories:
  • Security (230)
  • Tips & Advice (122)
  • Best Practices (94)
  • Managed Services (86)
  • Backup & Disaster Recovery (83)
  • The Head Nerds (75)
  • Business Growth (75)
  • IT Support (42)
  • Business (39)
  • Automation (37)
  • Cybersecurity (37)
  • Operations (34)
  • Mail (33)
  • Remote Management (28)
  • ITSM (25)
  • Cloud Computing (21)
  • Networking (21)
  • Data (21)
  • Marketing (14)
  • Product (11)
  • PSA (11)
  • Service Desk (5)
  • Services & Support (5)
  • Mobile (4)
  • Risk Intelligence (4)
  • Customer Service (3)
  • Internet of Things (3)
  • Research & Trends (2)
  • Training (2)
  • GDPR (2)
  • Business Risk (1)
  • LOGICcards (1)
Show moreless
SolarWinds MSP

Products
  • SolarWinds RMM
  • SolarWinds N-central
  • SolarWinds Backup
  • SolarWinds EDR
  • SolarWinds MSP Manager
  • SolarWinds Mail Assure
  • SolarWinds Risk Intelligence
  • SolarWinds Take Control
  • SolarWinds Passportal
  • All Products Use Cases
Solutions
  • Security Solutions
  • Monitoring Solutions
  • Efficiency Solutions
  • Identify which RMM solution is right for me
  • Drive Efficiency with Automation
  • Manage my MSP Business More Efficiently
  • Manage my IT Department More Efficiently
  • Layered Security
  • Cross-Platform Support
  • Data-Driven Insights
About
  • About Us
  • Careers
  • Newsroom
  • Leadership Team
  • Upcoming Events
  • Subscription Preferences
  • SolarWinds
  • SolarWinds Trust Center
  • COVID-19 Response
Support
  • SolarWinds RMM
  • Solarwinds N-central
  • SolarWinds Backup
  • SolarWinds Mail Assure
  • SolarWinds Take Control
  • SolarWinds MSP Manager
  • Solarwinds Risk Intelligence
  • Solarwinds Threat Monitor
  • SolarWinds Passportal
  • SolarWinds Take Control Downloads
  • Backup & Recovery Downloads
  • Service Status

Footer 2

  • Legal Documents
  • Privacy
  • California Privacy Rights
  • Security Information
  • Sitemap

© SolarWinds MSP Canada ULC and SolarWinds MSP UK Ltd.
All Rights Reserved.