Listen to this Post

Introduction:
The leap from academic theory to real‑world security operations can be daunting, especially when you land that first internship at a company like Intact, where protecting sensitive customer data is paramount. While university courses build foundational knowledge, employers expect hands‑on familiarity with the very tools and commands used to defend networks, harden systems, and test for vulnerabilities. This article distills the essential technical skills—spanning Linux, Windows, cloud, and API security—that every aspiring security professional should practice in a home lab before their first day on the job.
Learning Objectives:
- Set up a safe, isolated virtual environment for penetration testing.
- Master reconnaissance and scanning techniques using Nmap.
- Perform basic security audits on Windows and Linux systems.
- Understand API security testing fundamentals with cURL and Postman.
- Identify and mitigate common cloud misconfigurations.
- Simulate and defend against SQL injection attacks.
- Gain confidence in using command‑line tools for daily security tasks.
You Should Know
1. Building a Virtual Pentesting Lab with VirtualBox
Before you ever touch a production network, you need a playground where you can break things safely. A virtual lab lets you simulate attacks and defenses without consequences.
Step‑by‑step guide:
- Install VirtualBox from virtualbox.org (Windows, Linux, macOS).
- Download attacker machine – Kali Linux (pre‑built VM or ISO).
- Download target machine – Metasploitable 2 (an intentionally vulnerable Linux VM).
4. Create a Host‑Only Network in VirtualBox:
- Go to File → Host Network Manager, create a new adapter (e.g.,
vboxnet0), enable DHCP.
- Configure both VMs to use the host‑only adapter.
- Start both VMs and verify connectivity by pinging each other’s IP addresses (e.g.,
ping 192.168.56.102).
This isolated environment allows you to practice every technique described below without legal or ethical risks.
2. Reconnaissance with Nmap: Essential Commands
Nmap is the Swiss Army knife of network discovery. Interns often use it to map out assets and identify open ports.
Step‑by‑step guide (run from Kali Linux):
- Ping sweep to discover live hosts:
`nmap -sP 192.168.56.0/24`
- TCP SYN stealth scan on a target:
`nmap -sS 192.168.56.102`
- Service version detection:
`nmap -sV 192.168.56.102`
- OS fingerprinting:
`nmap -O 192.168.56.102`
- Aggressive scan with scripts:
`nmap -A 192.168.56.102`
Explanation: These commands help you understand what services are running, their versions, and potential vulnerabilities—information critical for any security assessment.
3. Windows Security Audits Using Command Line
Even in a cloud‑first world, many corporate networks still run Windows. Knowing how to audit a Windows machine from the command line is a must.
Step‑by‑step guide (run in Windows Command Prompt or PowerShell as Administrator):
– List active network connections:
`netstat -an` (shows all listening ports and established connections).
– Display running processes:
`tasklist` or in PowerShell `Get-Process`.
- Check for unauthorized services:
`wmic service get name,state,startmode`
- View audit policies:
`auditpol /get /category:`
- Enable PowerShell logging for later analysis:
Set-ItemProperty -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\PowerShell\ScriptBlockLogging" -Name EnableScriptBlockLogging -Value 1
These commands help spot anomalies like unexpected open ports or suspicious processes, a common task during incident response internships.
4. Linux System Hardening Commands
Linux servers power most cloud environments. Hardening them is a fundamental responsibility.
Step‑by‑step guide (run on a Linux target, e.g., Ubuntu):
– Secure file permissions:
`chmod 600 ~/.ssh/authorized_keys` (only owner can read/write).
- Disable root login via SSH: Edit `/etc/ssh/sshd_config` and set
PermitRootLogin no, then restart SSH:sudo systemctl restart sshd. - Check for world‑writable files:
`find / -type f -perm -o+w 2>/dev/null`
- Set up a simple firewall with iptables (allow only SSH, HTTP, HTTPS):
iptables -P INPUT DROP iptables -A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT iptables -A INPUT -p tcp --dport 22 -j ACCEPT iptables -A INPUT -p tcp --dport 80 -j ACCEPT iptables -A INPUT -p tcp --dport 443 -j ACCEPT iptables-save > /etc/iptables/rules.v4
- Enable automatic security updates:
`sudo dpkg-reconfigure –priority=low unattended-upgrades`
Practicing these commands on your lab VMs builds muscle memory for real‑world server administration.
5. API Security Testing with cURL and Postman
APIs are the backbone of modern applications, and misconfigured endpoints can leak sensitive data. Interns often assist in API security reviews.
Step‑by‑step guide:
1. Use cURL to test HTTP methods:
– `curl -X GET https://api.example.com/users`
– `curl -X POST https://api.example.com/users -d ‘{“name”:”test”}’ -H “Content-Type: application/json”`
– Check for unintended methods: `curl -X OPTIONS https://api.example.com/users`
2. Test for improper authorization:
– Access an endpoint without a token: `curl -H “Authorization: Bearer invalid” https://api.example.com/admin`
3. Use Postman to automate and save requests:
- Import an OpenAPI spec.
- Set up environment variables for tokens.
- Run the collection with the Collection Runner to detect 4xx/5xx errors.
These techniques reveal common API flaws like broken object‑level authorization (BOLA) and mass assignment.
6. Cloud Security Basics: AWS S3 Bucket Permissions
Misconfigured S3 buckets have been the source of countless data breaches. Interns should know how to audit them.
Step‑by‑step guide (AWS CLI installed and configured):
- List all buckets:
`aws s3 ls`
- Check bucket permissions via CLI:
`aws s3api get-bucket-acl –bucket your-bucket-name`
- View bucket policy:
`aws s3api get-bucket-policy –bucket your-bucket-name`
- Test for public access:
`aws s3api get-bucket-policy-status –bucket your-bucket-name`
- Block public access (if not needed):
`aws s3api put-public-access-block –bucket your-bucket-name –public-access-block-configuration BlockPublicAcls=true,IgnorePublicAcls=true,BlockPublicPolicy=true,RestrictPublicBuckets=true`
Automate these checks with scripts to ensure continuous compliance.
7. Exploiting and Mitigating a Simple SQL Injection
SQL injection remains a top critical risk. Understanding both attack and defense is key.
Step‑by‑step guide:
- Find a vulnerable parameter (e.g., a search field on your Metasploitable web app).
- Use sqlmap to automate discovery (Kali Linux):
`sqlmap -u “http://192.168.56.102/dvwa/vulnerabilities/sqli/?id=1&Submit=Submit” –cookie=”security=low” –dbs` - Manual test with a single quote to break the query.
- Mitigation in code (example in PHP using prepared statements):
$stmt = $conn->prepare("SELECT FROM users WHERE id = ?"); $stmt->bind_param("i", $id); $stmt->execute(); - Use Web Application Firewalls (WAF) like ModSecurity to block malicious patterns.
Practicing this cycle on a lab like DVWA (Damn Vulnerable Web Application) teaches you how to spot and fix injection points.
What Undercode Say:
- Key Takeaway 1: Internship experiences provide invaluable mentorship and context, but technical readiness comes from deliberate, hands‑on practice in a lab environment.
- Key Takeaway 2: The cybersecurity field is tool‑agnostic; mastering the underlying commands and concepts—like those shown above—makes you adaptable to any organization’s stack.
- Analysis: As insurance giants like Intact increasingly rely on cloud and API ecosystems, they need interns who can hit the ground running. The combination of soft skills (communication, curiosity) and hard skills (command‑line fluency, security testing) creates a well‑rounded professional. Starting early with a home lab not only builds competence but also demonstrates initiative to recruiters.
Prediction:
Within the next five years, cybersecurity internships will shift heavily toward AI‑augmented security operations and DevSecOps practices. Automated scanning tools will handle routine checks, but human experts will still be needed to interpret results, fix misconfigurations, and respond to novel threats. Interns who are comfortable with both traditional command‑line tools and modern cloud‑native security frameworks (like CSPM, CIEM) will be in highest demand.
▶️ Related Video (80% Match):
🎯Let’s Practice For Free:
IT/Security Reporter URL:
Reported By: Himanshurana007 Intact – Hackers Feeds
Extra Hub: Undercode MoN
Basic Verification: Pass ✅


