Endpoint Security Baseline Lab

Solution Overview

WWT's Endpoint Security Baseline Lab exists to provide a sandbox environment that can be used to evaluate security solutions across a wide variety of endpoints, including both Windows and Unix-based operating systems. There is also an attack machine, running Kali Linux, with which to test the efficacy of these tools using benign, non-weaponized malware. 

You will access the environment using a Windows-based jumpbox from which you can browse web consoles, open RDP/SSH sessions, etc. Refer to the topology diagram below.

Goals & Objectives

This self-directed, on-demand environment provides the foundation for exploring endpoint security solutions and evaluating their impact on endpoint performance and functionality. 

Learn about the benefits this solution provides:

  • Protection from known and unknown attacks
  • Clear alerts and prioritization of potential attacks
  • Easier investigation into security incidents
  • Faster mean time to resolution (MTTR)
  • Reduced overhead; no infrastructure required

Hardware & Software

This lab consists of the following hardware and software:


  • None


  • 1x Windows Jumphost (Windows Server 2016)
  • 1x Windows Domain Controller (Windows Server 2016)
  • 1x Windows File Server (Windows Server 2016)
  • 1x Generic Server (CentOS 7)
  • 3x Generic Client (Windows 7 Enterprise)
  • 1x Attack Host (Kali Linux 2020)