vPenTest Agent Installation Guide

Overview

The vPenTest Agent is equivalent to a pentester’s laptop containing the tools and software necessary to perform internal testing such as internal pentests and IP Internet Protocol (IP) refers to a set of guidelines that dictate how data is formatted and transmitted over the internet or a local network. It plays a crucial role in identifying devices on a network through unique addresses. There are two primary types of IP addresses: External IP, which is visible on the internet, and Internal IP, which is used within a local network. Estimator. The agent software is installed on a full instance of Ubuntu 22.04 on a device of your choice. The agent is essentially a docker host used to pull a custom Kali Linux container to perform testing.

What do I need?

1. A host to run Ubuntu 22.04 as the OS An Operating System (OS) is a type of software that oversees computer hardware and software resources, offering crucial services for running computer programs. It serves as a bridge between users and the computer hardware, facilitating the execution of applications and managing system resources like memory, processing power, and storage. Examples of operating systems include Ubuntu, Windows, and macOS, which can operate on various platforms such as mini-PCs, virtual machines, or cloud servers. (mini-pc, virtual machine, cloud server, etc)

2. An Agent UUID A UUID (Universally Unique Identifier) is a 128-bit number designed to uniquely identify information in computer systems. Within the vPenTest framework, an Agent UUID is created for each agent to aid in its registration and management. This UUID guarantees that each agent is uniquely identifiable, enabling efficient tracking and operation during internal penetration tests. from vPenTest .

3. The installation command:

   1. curl -L https://app.vpentest.io/getting_started.sh | bash
   

Minimum requirements for the host

• CPU A CPU (Central Processing Unit) is the main component of a computer responsible for executing most of the system's processing tasks. It runs instructions from programs, managing operations like calculations, data processing, and control functions. CPUs are defined by their cores, which indicate the number of tasks they can handle at the same time; for example, a CPU with 2 cores can process two tasks concurrently./Cores: 2 cores

• Memory: 8 GB GB, or gigabyte, is a unit of digital information storage frequently used to measure data capacity in computers and other devices. One gigabyte equals roughly 1 billion bytes or 1024 megabytes. When it comes to storage, it's crucial to ensure that devices have enough gigabytes available, such as at least 55 GB of usable space for optimal performance.

• Hard disk space: 80 GB, (minimum 55 GB usable)

• Network: 1gbps wired ethernet

• Internet connection: 10mbps

• Virtual networks for virtual machines: Bridged mode (hypervisor NAT will cause issues)

• Unrestricted outbound 443 connectivity to our AWS AWS, or Amazon Web Services, is an extensive cloud computing platform offered by Amazon. It provides a variety of services, such as computing power, storage solutions, and networking capabilities, allowing users to develop and manage applications and services in the cloud. AWS supports multiple deployment models and is popular for its scalability, reliability, and flexibility in addressing diverse business requirements. endpoints. (SSL SSL (Secure Sockets Layer) is a standard security protocol that creates an encrypted connection between a web server and a browser. This encryption ensures that all data transmitted remains confidential and intact. SSL certificates are used to verify the website's identity and secure the data exchanged, preventing eavesdropping and tampering., DPI, content filtering, etc will cause issues with connectivity)

TL TLS, or Transport Layer Security, is a cryptographic protocol aimed at ensuring secure communication over a computer network. It is commonly used to protect connections between web browsers and servers, maintaining data privacy and integrity. As the successor to SSL (Secure Sockets Layer), TLS is crucial for safeguarding sensitive information during transmission.;DR Disaster Recovery (DR) involves strategies and processes designed to restore critical systems and data after a disruptive event. This includes planning for both Disaster Recovery as-a-Service (DRaaS), which offers cloud-based recovery solutions, and traditional recovery methods. The goal of DR is to minimize downtime and data loss, enabling organizations to quickly resume operations after incidents such as natural disasters or cyberattacks.

Perform the following steps:

1. Download the Ubuntu 22.04 server ISO An ISO is a file format that holds a complete image of a disc, such as a CD, DVD, or Blu-ray. It is commonly used for distributing software, including operating systems like Ubuntu Server. The ISO file contains all the data and file system structure of the original disc, enabling users to create bootable media or install software directly from the image..

2. Get your Agent UUID from vPenTest.

3. Pick a host to run Ubuntu 22.04

4. Boot to the ISO, go through the installation steps, and configure the pre-installation settings.

   IMPORTANT   Everything is default, except it’s important to clear the option to set up this disk as an LVM LVM, or Logical Volume Manager, is a disk storage management system that offers flexible disk space allocation. It allows users to dynamically create, resize, and manage disk partitions (logical volumes), rather than being restricted to fixed partitions. This flexibility is especially beneficial in environments with frequently changing storage needs, as it simplifies the management of disk space across multiple physical disks. group.

5. On the screen that asks you to select which software to install, just press Enter as the vPenTest Agent will install the prerequisites for you.

6. Setup your username and password. Vonahi will never ask for these credentials.

7. Log into Ubuntu, open terminal, switch to root and run the following:

   1. sudo su

   2. cd

   3. apt update && apt upgrade -y

   4. curl -L https://app.vpentest.io/getting_started.sh | bash

8. Register the agent using the UUID from vPentest.

Detailed installation steps

Choose a host to run Ubuntu 22.04.

• Desktop\Laptop\Mini-PC

• Virtual Machine (VMware, Hyper-V, other hypervisors that can run a full VM A Virtual Machine (VM) is a software-based imitation of a physical computer that runs an operating system and applications just like a real machine. VMs function on a host system, using its resources such as CPU, memory, and storage. They enable users to run multiple operating systems simultaneously on a single physical machine, offering flexibility for testing, development, and resource management.)

• Cloud Compute Instance

IMPORTANT  Using Ubuntu instance as a container will not work for our agent software because it causes a docker-in-docker scenario.

Installing the host operating system, Ubuntu 22.04

1. Navigate to Ubuntu Server 22.04 download page.

2. Download the ISO file for Ubuntu Server 22.04 LTS LTS, or Long Term Support, refers to specific software versions, especially operating systems like Ubuntu, that receive updates and support for an extended period, usually five years. This provides stability and security for users who prefer infrequent upgrades. For instance, Ubuntu 20.04 LTS will be supported until April 2030, making it a dependable option for production environments..

3. Boot to the ISO and install Ubuntu 22.04 on the chosen host.

Installing Ubuntu

1. Boot the ISO to your device of choice and press Enter to install Ubuntu Server.
   
2. Select your language.
   
3. Skip updating the installer if you’re prompted.
   
4. Select your keyboard layout.
   
5. Type of install: Leave the default, Ubuntu Server. Do not select “minimized.”
   
6. Network connections: DHCP DHCP, or Dynamic Host Configuration Protocol, is a network management protocol that automates the configuration of devices on IP networks. It enables devices to automatically receive IP addresses and other network configuration parameters, allowing them to communicate on the network without manual setup. DHCP can assign dynamic IP addresses, which may change over time, or it can be set up to provide static IP addresses for specific devices. or you can set a static IP.
   
7. Configure proxy: Do not use proxy.
   
8. Configure Ubuntu archive mirror: Leave default.
   
9. Guided storage configuration: Clear the Set up this disk as an LVM group option.
   
10. Storage configuration: Review and verify you have close to 80 GB of disk space total and 55 GB minimum that's usable.
    
    
11. Click Continue to format the disk.
    
    
12. Set up your account profile.

    NOTE  This is strictly for you, and we will not have records of your username/password.



13. SSH Setup: Skip this step and do not install openssh.
    
    
14. Featured Server Snaps: Skip and do not install any additional snaps or features.
    
    
15. This will take a few minutes, and then the Reboot Now option will be available once the installation completes.
    
16. Reboot once the installation completes. If you get the error message Failed unmounting /cdrom, press Enter to progress the reboot.
    
17. Once Ubuntu boots, you will see the login screen followed with some cloud-init data. Press Enter to get to the login prompt.
    

Installing the vPenTest Agent software

The agent software installation will take five to ten minutes depending on internet bandwidth.

NOTE  If you created the Agent UUID in the portal, you could run the single install command that includes the UUID and skip the steps below to register the agent.

1. Log into Ubuntu using the username and password created during installation. Then run the following commands:

   1. sudo su

   2. cd

   3. apt update && apt upgrade -y

   4. curl -L https://app.vpentest.io/getting_started.sh | bash

2. The installation is successful when you’re prompted to input the UUID.

3. Go to app.vpentest.io and click New Agent to create a UUID to use to register the agent with the Company Profile.

4. Input the UUID into the terminal window and register your agent.

5. Reboot the host and you should now see the agent show Online in app.vpentest.io.

The agent is now ready to be used for scheduling internal pentests.