Here’s What I want to Acheive
- Be As secure as possible (I am in InfoSec, so I better practice what I preach)
- Try out and learn new technology, such as but not limited to the following
- Docker
- WebauthN
- Oath
- SAML
- Use cheap / free tools to try and keep ongoing costs down
- Replicate the infrastructure and visibility of a corporate network
The aim of what I am trying to do is get experience in building up my network to be as secure as possible, with proper segmentation and firewalling, proper authentication to all services with SSO. As well as device and network visibility I have got some basic network monitoring, but end goal is to deploy a SIEM and have EVERYTHING hitting that.
I found some great resources on locking stuff down, especially windows hosts using GPO (from @swiftonsecurity) which I have started doing in some of my labs, as well as tuning the windows event logs to provide useful information to the SIEM. I am planning on migrating to a full unifi network at some point in the near future. It might be one device per month as the budget allows, its almost Christmas present time which is always a hit to the budget.