Embedded Files
This section demonstrates how security operations are supported through continuous monitoring, alert analysis, and incident response readiness.
Home SOC Diagrams
Home SOC Diagrams
Network Architecture Diagram (Home SOC)
This network map shows a segmented environment with firewall protection, VLAN-based separation, core services, and secure VPN access designed using defense-in-depth principles.
Virtualization Platform (VirtualBox) Diagram
This virtualization diagram shows a VirtualBox-based environment running multiple security and server VMs with segmented virtual networking, snapshot recovery, and optimized resource allocation to support monitoring, testing, and incident response scenarios.
This visibility matrix maps security controls and monitoring coverage across network and host layers, showing where logs and events are collected and analyzed by SIEM tools. It helps identify detection gaps and supports alert tuning, correlation, and defense-in-depth validation.
This security controls diagram illustrates layered preventive, detective, and corrective measures across endpoints, networks, and services, including hardening, segmentation, access control, encryption, and SIEM monitoring. It demonstrates how integrated controls reduce risk and support effective detection and incident response.
System Hardening & configuration
System Hardening & configuration
System hardening strengthens operating systems by reducing attack surfaces through secure configurations, access controls, encryption, and patch management. In my Home SOC, these measures are applied across Windows and macOS endpoints to improve confidentiality, integrity, and availability while supporting effective monitoring and response.
Step-By-Step to Harden Mac
Keep Software Updated: Regularly install macOS and application updates to patch security vulnerabilities. Updates are managed through System Settings → General → Software Update, with Automatic Updates enabled to ensure timely, hands-off patching.
Enable FileVault: Encrypt the entire disk to protect data at rest. FileVault is enabled through System Settings → Privacy & Security → FileVault, with a recovery key securely configured or linked to iCloud.
Enable Firewall: Block unauthorized incoming network connections by enabling the system firewall through System Settings → Network → Firewall.
Use Standard User Accounts & Disable Automatic Login: Perform daily activities using a standard user account and reserve administrative access for system-level changes. Automatic login is disabled through System Settings → Users & Groups to ensure authentication is required at startup.
Step-By-Step to Harden Windows
Keep Software Up to Date: Maintain system security by installing Windows updates through Settings → Windows Update → Check for updates, with Get the latest updates as soon as they’re available enabled for automated patching.
Enable Windows Security: Ensure core protections are active by verifying Virus & threat protection, Firewall & network protection, App & browser control, and Account protection are enabled through Settings → Privacy & Security → Windows Security.
Enable User Account Control (UAC): Strengthen privilege management by setting UAC to the highest level through Control Panel → User Accounts → Change User Account Control settings, ensuring prompts occur before administrative changes are made.
Use Strong Passwords: Enforce complex, unique passwords for all accounts by applying Windows password policies to meet strength and security requirements.
Enable BitLocker: Protect data at rest by enabling full-disk encryption on system drives, securely storing the recovery key separate from the encrypted device.
Configure Regular Backups: Use Windows Backup to perform regular data backups, ensuring recovery capability and operational continuity following security incidents.
Security Principles: CIA & AAA
Security Principles: CIA & AAA
Step-By-Step CIA/AAA
This section demonstrates how access controls enforce confidentiality, integrity, availability, and accountability across user accounts and file systems.
Step 1 — User Setup (Authentication)
Step 1 — User Setup (Authentication)
Windows 11
Navigate to Settings → Accounts → Other users
Select Add account
Choose I don’t have this person’s sign-in information
Select Add a user without a Microsoft account
Create two local users:
userA
userB
Assign passwords appropriate for controlled testing
Linux (Ubuntu / Parrot / Kali)
Create local users using:
sudo adduser userA
sudo adduser userB
This step establishes distinct identities to validate authentication controls across operating systems.
Step 2 — Create a Protected Folder (Confidentiality)
Step 2 — Create a Protected Folder (Confidentiality)
Windows 11
Navigate to Documents
Right-click → New → Folder and name it ConfidentialFolder
Right-click the folder → Properties → Security
Select Edit to modify permissions
Remove all users except userA and Administrators
Assign:
userA: Full Control
userB: No access
Linux
Create a protected directory:
mkdir /home/userA/confidential
sudo chown userA:userA /home/userA/confidential
sudo chmod 700 /home/userA/confidential
This step enforces confidentiality by restricting access to authorized users only.
Step 3 — Validate Confidentiality
Step 3 — Validate Confidentiality
Test as userA
Log in as userA
Access the ConfidentialFolder
Create a test file:
Windows: Right-click → New → Text Document
Linux:
touch /home/userA/confidential/test.txt
Test as userB
Log in as userB
Attempt to access ConfidentialFolder
Expected Result:
Access is denied for userB, confirming that confidentiality controls are properly enforced.
Step 4 — Validate Integrity (Controlled Modification)
Step 4 — Validate Integrity (Controlled Modification)
Windows 11
Log in as userA
Create a file inside ConfidentialFolder named important.txt
Log in as userB
Attempt to edit or delete important.txt
Expected Result:
Modification attempts by userB are blocked, confirming integrity protections through permission enforcement.
Linux
Modify file permissions:
sudo chmod 644 /home/userA/confidential/test.txt
Result:
userA: Can modify the file
userB: Read-only access (folder permissions still restrict access)
This step demonstrates integrity by allowing controlled modification while preventing unauthorized changes.
Step 5 — Validate Availability
Step 5 — Validate Availability
Log in as userA
Confirm that the protected folder and files are accessible without errors
Expected Result:
Authorized access remains available, demonstrating that security controls preserve system availability.
Step 6 AAA Breakdown
Step 6 — Validate AAA (Authentication, Authorization, Accounting)
Step 6 — Validate AAA (Authentication, Authorization, Accounting)
Authentication
Log in as different users (userA and userB) to confirm identity verification.
Authorization
Validate access controls on protected resources:
userA: Authorized access
userB: Access denied
Accounting
Review system logs to confirm user activity and access attempts.
Windows
Open Event Viewer → Windows Logs → Security
Filter for:
Logon events
Access denied events
Linux
Review authentication and privilege events:
sudo journalctl | grep sudo
sudo journalctl | grep su
This step confirms that user identities are authenticated, permissions are enforced, and activities are logged for accountability and audit visibility.
Virtualization & System Detection
Virtualization & System Detection
Step-By-Step Kali Linux Install
Kali Linux is a Debian based operating system used for adversary emulation, penetration testing, and digital forensics. In this environment, Kali is deployed within VirtualBox to safely simulate attacker activity such as network scanning and vulnerability discovery to support detection validation and defensive analysis.
Step 1 — Download the Kali Linux Virtual Image
Step 1 — Download the Kali Linux Virtual Image
Navigate to https://www.kali.org/get-kali/#kali-virtual-machines
Under Virtual Machines, select VirtualBox (64-bit)
Download the provided .7z archive (approximately 5 GB)
This image provides a preconfigured Kali Linux environment optimized for secure virtualization and controlled adversary simulation.
Step 2 — Adjust Virtual Machine Settings (Optional)
Step 2 — Adjust Virtual Machine Settings (Optional)
Select the Kali Linux VM and open Settings
Under System → Processor, assign at least 2 CPUs
Under Display → Video Memory, increase allocation to 4096 MB
Under Network, select:
Bridged Adapter for internet access, or
Host-Only Adapter for isolated attack simulation
These settings improve performance and allow controlled network access based on the intended use case.
Step 3 — Import the Virtual Machine
Step 3 — Import the Virtual Machine
Open VirtualBox
Select File → Import Appliance
Browse to the extracted .vbox file and select Next
Complete the import process (approximately 2–5 minutes)
This completes the deployment of the Kali Linux virtual machine within the secured virtualization environment.
Step 4 — Start and Log In
Step 4 — Start and Log In
Select Start to boot the Kali Linux virtual machine
Complete the initial startup prompts
Log in using the default credentials:
Username: kali
Password: kali
Once logged in, update the system:
sudo apt update && sudo apt upgrade -y
This ensures the system is fully updated and ready for controlled adversary simulation and analysis.
Step-By-Step Windows 11 Pro Install
This section covers the installation and initial configuration of Windows 11 Pro as a core workstation within my Home SOC, including system updates, security settings, and essential tools to support monitoring, analysis, and secure daily operations.
Step 1 — Download the Windows 11 ISO
Step 1 — Download the Windows 11 ISO
Navigate to Microsoft’s official download page:
https://www.microsoft.com/software-download/windows11Scroll to Download Windows 11 Disk Image (ISO)
Select Windows 11 (Pro edition) and click Download
Choose the appropriate language and select 64-bit Download
Save the ISO file to a secure location (e.g., Downloads)
This ISO is used to deploy a secure Windows 11 Pro workstation within the Home SOC environment.
Step 2 — Create the Virtual Machine
Open VirtualBox and select New
Enter the name Windows 11 Pro
Set Type to Microsoft Windows
Set Version to Windows 11 (64-bit)
Click Next to continue configuration
This creates the virtual workstation for secure deployment within the Home SOC environment.
Step 3 — Assign Memory and CPU Resources
Step 3 — Assign Memory and CPU Resources
Allocate at least 4096 MB (4 GB) of RAM
Assign a minimum of 2 CPUs, if available
Click Next to continue
These resource settings ensure stable performance for monitoring, analysis, and daily security operations.
Step 4 — Create the Virtual Hard Disk
Step 4 — Create the Virtual Hard Disk
Select Create a virtual hard disk now and click Create
Choose VDI (VirtualBox Disk Image)
Select Dynamically allocated
Set the disk size to 80 GB or larger
Click Create to finalize
This provides sufficient storage for the operating system, security tools, and monitoring data.
Step 5 — Mount the Windows 11 ISO
Step 5 — Mount the Windows 11 ISO
Select the newly created virtual machine and open Settings
Navigate to Storage
Under Controller IDE, select the empty disk icon
Click Choose a disk file and select the Windows 11 ISO
Click OK to save the configuration
This mounts the installation media required to deploy Windows 11 Pro in the virtual environment.
Step 6 — Install Windows 11 Pro
Step 6 — Install Windows 11 Pro
Select Start to boot the virtual machine
When Windows Setup appears:
Choose the preferred language and select Next
Click Install Now
Select I don’t have a product key, then choose Windows 11 Pro
Accept the license terms and select Custom Install
Choose the unallocated disk space and click Next
Allow the installation to complete and the system to reboot
This completes the deployment of the Windows 11 Pro virtual workstation for secure operations.
Step 7 — Complete Initial Setup
Step 7 — Complete Initial Setup
Select the appropriate region and keyboard layout
Choose Set up for personal use (or organization when testing Active Directory)
Create a local user account and strong password
Adjust optional privacy and telemetry settings as required
Complete setup to access the Windows 11 desktop
The system is now ready for security configuration and monitoring within the Home SOC environment.
Step 8 — Verify Configuration and Create Snapshot
Step 8 — Verify Configuration and Create Snapshot
Verify network connectivity and display scaling
Install updates through Settings → Windows Update
Create a VirtualBox snapshot to preserve a clean baseline:
Machine → Take Snapshot
Name the snapshot “Fresh Install”
This snapshot provides a reliable rollback point for future configuration changes or incident recovery.
Step-By-Step Ubuntu Installation
This guide covers deploying Ubuntu in VirtualBox to support Linux administration, security monitoring, and server operations within the LakeTown Digital Fortress Home SOC.
This guide covers deploying Ubuntu in VirtualBox to support Linux administration, security monitoring, and server operations within the LakeTown Digital Fortress Home SOC.
Step 1 — Download the Ubuntu ISO
Step 1 — Download the Ubuntu ISO
Navigate to the official Ubuntu download page:
https://ubuntu.com/download/desktopSelect the latest Ubuntu Desktop LTS release (e.g., Ubuntu 24.04 LTS)
Download and save the .iso file to a secure location
This ISO is used to deploy a stable Linux system for security monitoring and server operations.
Step 2 — Create the Ubuntu Virtual Machine
Step 2 — Create the Ubuntu Virtual Machine
Open VirtualBox and select New
Enter the name Ubuntu-VM
Set Type to Linux
Set Version to Ubuntu (64-bit)
Click Next to continue
This creates the Linux virtual machine for deployment within the Home SOC environment.
Step 3 — Mount the Ubuntu ISO
Step 3 — Mount the Ubuntu ISO
Select the newly created virtual machine and open Settings
Navigate to Storage
Under Controller IDE, select the Empty disk icon
Click Choose a disk file and select the Ubuntu ISO
Click OK to save the configuration
This mounts the installation media required to deploy Ubuntu in the virtual environment.
Step 4 — Allocate Memory and CPU Resources
Step 4 — Allocate Memory and CPU Resources
Allocate at least 4096 MB (4 GB) of RAM
Assign 2 CPUs, if available
Click Next to continue
These allocations ensure stable performance for Linux administration and security monitoring tasks.
Step 5 — Install Ubuntu
Step 5 — Install Ubuntu
Select Start to boot the virtual machine
Choose Try or Install Ubuntu
Select the preferred language, then click Install Ubuntu
Choose Normal Installation and enable options for updates and third-party software
Select Erase disk and install Ubuntu (applies only to the virtual disk)
Click Install Now and confirm
Set the region and time zone
Create the user account:
Name: Lakeyneshia Townsend
Computer name: laketown
Username: laketown
Password: Create a strong password
Allow installation to complete and select Restart Now
This completes the Ubuntu deployment for Linux administration and security monitoring within the Home SOC environment.
Step 6 — Update and Upgrade Ubuntu
Step 6 — Update and Upgrade Ubuntu
Log in to the system
Open the terminal (Ctrl + Alt + T)
Run the following commands:
sudo apt update
sudo apt upgrade -y
Reboot the system after updates complete:
sudo reboot
This ensures the system is fully patched and ready for secure operations within the Home SOC environment.
Step 7 — Install Guest Additions (Optional)
Step 7 — Install Guest Additions (Optional)
From the VirtualBox menu, select Devices → Insert Guest Additions CD Image
In Ubuntu, open the mounted CD and run the installer:
sudo bash /media/$USER/VBox_GAs*/VBoxLinuxAdditions.run
Reboot the virtual machine after installation completes
Guest Additions improve display performance, clipboard integration, and overall usability for secure operations within the Home SOC environment.
Step-By-Step Parrot Security Install
This section covers the deployment of Parrot Security OS as a lightweight adversary and assessment platform within my Home SOC. Parrot provides integrated tools for security testing and forensics, supporting controlled attack simulation and validation of detection and defensive controls.
Step 1: Download Parrot OS
Go to the following webpage https://parrotsec.org/download/
Select Category: Virtual
Select Edition: Home
Select Architecture: AMD 64
Step 2 — Create the Parrot OS Virtual Machine
Step 2 — Create the Parrot OS Virtual Machine
Open VirtualBox and select New
Name the virtual machine Parrot Security
Set Type to Linux
Set Version to Debian (64-bit)
Allocate 4096 MB (4 GB) of RAM
Create a new virtual hard disk with at least 20 GB of storage
This prepares the Parrot OS virtual machine for secure deployment within the Home SOC environment.
Step 3 — Configure Virtual Machine Settings
Step 3 — Configure Virtual Machine Settings
Open the virtual machine Settings
Navigate to Storage and attach the Parrot OS ISO
Go to Display and set the Graphics Controller to VBoxSVGA
These settings ensure proper installation and stable display performance for Parrot OS within the Home SOC environment.
Step 4 — Install Parrot OS
Step 4 — Install Parrot OS
Start the virtual machine
Select Try/Install
Launch the installer (Install Parrot)
Choose Erase Disk (applies only to the virtual disk)
Create a username and strong password
Click Install and allow the process to complete
Restart the virtual machine after installation finishes
This completes the Parrot OS deployment for controlled adversary simulation within the Home SOC environment.
Step 5 — Update and Upgrade Parrot OS
Step 5 — Update and Upgrade Parrot OS
Open the terminal
Run the following command:
sudo apt update && sudo apt full-upgrade -y
This ensures Parrot OS is fully patched and ready for secure operations within the Home SOC environment.
Page updated
Report abuse