California Cyberhub Support Portal

Windows 7 Advanced VM Image

Fourth Image from SCA Series; Windows 7

This image is the final image in the "Summer Career Academy" training series that was held at SoCalCCCC's Cypress College in 2015. This image has been set to advanced, covering most of the possible areas a team should secure during the competition. This image, as the rest can also be used as a set for a team that wants to practice their Windows skills.

The image is in a zipped file; please extract the complete contents of the zipped file before running the image on VMware Workstation Player. There is no password to extract the contents. Students should log in as "SCA;" there is a readme text file and a scoring engine shortcut on the desktop.

  • Users:

    • Network Operators: Samsung and Programmers

    • Power Users: Bachelorettes, GummyBears

    • Users: JFA and JA

    • SCA: Part of Power Users, Password Cyb3rP@tri0t>

    • Administrator: Admin Group; Password Cyb3rP@tri0t , password does not expire

  • Uninstall Easy Checkers, Super Mario, TeamViewer, WakeOnLan, WinSCP, Adobe Flash 15, Firefox 20

  • Host File Clean

  • Remote Desktop set to Don’t Allow

  • Bad files:

    • c:\windows\notavirus.jpeg

    • c:\users\sca\downloads\badstuff.jpeg

    • c:\users\sca\payload.exe

    • c:\program files\virus.bat.1148

  • Windows Update: Install automatically

  • Shares: AppPatch$

  • Firewall Ports Closed (Deny Incoming)

    • SSH - 22

    • SMTP - 25

    • POP3 - 110

    • SNMP - 161

    • LDAP - 389

  • Services (Disabled and Stopped)

    • ActiveX

    • Adobe Acrobat

    • Fax

    • HomeGroup Listener

    • HomeGroup Provider

    • IP helper

    • Remote Registry

    • Server

    • Teamviewer 10

  • Local Policy

    • Audit Policy (Success and Failure)

      • Audit Account Logon events

      • Audit Account Management

      • Audit Logon events

      • Audit Privilege use

      • Audit Process Tracking

      • Audit Policy Change

    • Security Options

      • Rename Administrator: CyberPatriot

      • Rename Guest: Administrator

      • Do not display last user name

      • Require CTRL+ALT+DELETE

      • Force system to shut down only when logged in

      • Clear virtual memory pagefile

      • Restrict CD/floppy access to locally logged on user

    • User Rights Assignment

      • Log on locally: All users listed

      • Access computer from network: samsung and programmers

      • change system time: administrators

      • deny logon: guests

  • Account Policies

    • Password Policy

      • History: 5

      • Maximum Password age: 30

      • Minimum Password age: 1

      • Password Length: 7

      • Passwords Complex: yes

    • Account Lockout Policy

      • Lockout: 10

      • Threshold: 5

      • Reset: 5


SCA 4 IMAGE

Did you find it helpful? Yes No

Send feedback
Sorry we couldn't be helpful. Help us improve this article with your feedback.