An ideal home lab is remotely-accessible, security hardened and tested, and wholly relies on an open-source technology stack. In this workshop, you will get hands-on training on using open source technology–from hypervisor to web app–to self-host your own home lab.
The workshop will combine lecture and hands-on practice to teach students the following concepts and technical topics:
- Designing a secure network architecture
- Using virtualization to create and manage virtual machines and software-defined networks
- Configuring a firewall and enabling DNS sinkholing to prevent C2 over DNS
- Using Docker and Docker Compose to host web applications and services
- Integrating Single Sign On for both internal and external web applications using OIDC and SAML 2.0
- Serving a TLS certificate authority using OpenSSL and Step CA for client certificates
- Serving an SSH certificate authority using Step CA
- Mandating OSI Layer 6 mutual cryptographic authentication over TLS with soft certificates and smart cards
- Using Nmap to test and provably verify network security assumptions
Participants will come out of this workshop with the hands-on experience, knowledge and resources to successfully self-host their own secure Linux-based home lab.
To join this workshop, participants must bring a laptop with an Ethernet port, or an Ethernet adapter. Optionally, participants may bring a Yubikey 5 or another PIV smart card to get hands-on experience with configuring smart cards for mTLS. Participants should be comfortable in the Linux command line and have a familiarity with IPv4 concepts.
