Windows User VM

I usually go with a Windows 10 VM with VMWare or Virtualbox. I have VMWare Workstation Pro but Player works just as well. You can go with either VMWare or Virtualbox, both work and it just comes down to personal preference on the application and what you're use to.

Obviously your setup may differ depending on your system specs. I typically go with 4GB(4096 MB) of RAM per VM, 2 processors and 2 cores per processor but I am running with 32GB of RAM and an Intel i7-10750H.

If you need to, you can start with 4 or 8GB of RAM and 2 processors and 2 core per processor, for the install so it goes faster then drop it down to 2 or 4GB of RAM and 2 processors and 1 core per processor for the victim machines.

Starting

We will as before, do a Typical install

Install the System later

Select the Windows OS.

Select a path and name the VM. For this I will be naming the VM after the User that I plan on using on this VM.

Select the size of the VM. This will NOT the overall size, this is just the max size of the VMs HDD space and will fill up as we add more to the VM that takes up space.

If this VM will be on a PC and not be used from an external HDD or moved around you can store it as a single file but if you plan on using this VM on other PC or from an external HDD it's a better idea to split it into multiple files.

Depending on your space, you can edit how much you want. I usually go the default 60GB.

Finally we can now customize our hardware. This is where we can customize the RAM, Processors, ISO files, Network Settings, etc. This is where we select our Windows Server ISO.

I recommend disabling the Printer, Sound Card, and under Display unchecking 'Accelerate 3D Graphics'.

I usually increase the RAM for the install so it goes quicker then drop it down after.

Windows 10

Start the VM and press any button to boot from the ISO.

Click INSTALL NOW, then accept the EULA and click next

Custom Install

Click Next

Let it install

After install and it reboots

Skip adding a second layout, unless you would like one

Click Domain Join instead when asked to Sign Into Microsoft

Enter the Username and Password. I recommend a basic password (Eg. Password1, Password 123, etc.) for the user(s) since this for testing purposes. Then for Security Questions, you can put whatever you want, I wouldn't use real world info as this is for a lab.

Turn off all settings

Choose Not Now

Let the install finish with post setup stuff

Now we have our desktop. Time to do some basic setup.

Install VMWare Tools, and Rename the PC, then Add it to the Domain if you are going that route.

In the Menu Bar of VMWare > VM > Install VMWare Tools

Inside the VM open File Explorer > This PC > Run the VMWare Tools installer

Then a basic click next on everything. Don't reboot when done since you'll want to reboot after you rename the PC as well.

Open Start Menu, type in Rename

Rename this PC

Reboot to apply changes and you're done! BUT if you want to add it to a domain, we continue on.

Now is when you will want to shut down the VM and adjust RAM and Processors if needed. Drop it for 2GB or 4GB of RAM and 1 or 2 processors.

Joining a Domain

You may want a second user machine as well but only if you're machine is capable of it. It's not required but it will help.

This process will be the same for both machines if setting up two.

First we need to get the IP of our Domain Controller. Command Prompt > ipconfig

We need to set the users machine DNS to our Domain Controllers IP.

On the Users machine: Start Menu > Setting Icon > Network & Internet > Change Adapter Options

Right click on the Ethernet Adapter > Properties > Double Click on Internet Protocol Version 4 (TCP/IPv4)

Change the DNS option to your Domain Controllers IP > OK

From here on the Users machine still: Star Menu > Domain > Access Work or School

Click connect then at the bottom of the window select "Join a local Active Directory Domain"

It'll ask for the domain name

Then should ask who do you want to join as. At first join as Admin.

Skip this step

Then Reboot. Once it's rebooted and at the login screen, select "Other User" In the bottom left.

Input the username and password of a user you created

After you have signed in with a user you created. Sing out and sign back in as the Administrator. You will need to add the domain before the Administrator name or it will try to log you in as the local admin.

We're going to add the user we logged in as, as an admin on this computer. Start Menu > Computer Management > Local Users and Groups > Groups > Administrators

Double Click on Administrators > Add > Type in user name > Check Names > Ok

Apply > Ok

All set! We now have a lab Environment with Ubuntu for an attack machine if needed, a Windows Domain Controller/Server and a User or Two. We can now install whatever tools or software we may want onto them.

I HIGHLY recommend creating a snapshot after you have this done and setup so that way you can always revert back to that snapshot if needed if something breaks or you just need to clean things up.