D1 - Creating a Logical Diagram

Explanation

Logical diagrams serve as a map or blueprint of a system, illustrating the components and how they connect and interact with each other.

These blueprints provide a clear view of how different components work together to create an IT system.

Utilize a Cloud Provider: Throughout this challenge, we will be using a cloud provider for our infrastructure.
Create a VPC: Set up a Virtual Private Cloud (VPC) along with the necessary network infrastructure.
Establish an Internet Gateway: Create an internet gateway to allow communication between the VPC and the internet.
Create Different Servers:
- Kibana & Elasticsearch Database Server: Use recommended vCPU and RAM from the official website. Elasticsearch is the database that contains the logs, while Kibana is the web GUI used to access and manage Elasticsearch.
- Fleet Management Server: Use recommended vCPU and RAM from the official website. The Fleet server centralizes the management and monitoring of Elastic Agents, which gather and send event logs to the Elasticsearch database.
- RDP Server (Windows): This server will be publicly accessible to attract RDP brute force attacks, used for creating logs, alerts, and tickets.
- SSH Server (Ubuntu): This server will also be publicly accessible to attract SSH brute force attacks, used for creating logs, alerts, and tickets.
- osTicket Server: Recommended configuration: 1 vCPU and 2 GB RAM. osTicket will be used for creating tickets based on alerts from the ELK stack.
- Command and Control Server: Use recommended vCPU and RAM from the official website. This server will be used for creating, hosting, and communicating with payloads.

Illustrate the relationships between the servers in your diagram.

In the upcoming days we will create this virtual environment and work with it throughout the program.