Building Your Own Home Lab for Pentesting Practice
You can get a functional pentesting lab running on hardware you already own or can pick up used for under $400. The goal is isolation so you can break things without touching production systems or your daily laptop.
Hardware that actually handles multiple VMs
Start with at least 16 GB of RAM and a CPU with four cores. That lets you run a Kali attack box, a vulnerable target, and a SIEM or logging VM at the same time without constant swapping. An old Dell OptiPlex or Lenovo ThinkCentre from five years ago works fine.
Storage matters more than raw speed here. A 500 GB SSD gives you room for several VM images and packet captures. Add a second NIC if you want a separate management network so your lab traffic never leaks onto your home Wi-Fi.
- 16 GB RAM minimum, 32 GB if you run Windows targets
- Quad-core CPU or better
- SSD for the host OS
- Optional second Ethernet port or USB adapter
Getting the software stack up in one afternoon
Install Proxmox or plain Debian with KVM on the host. Both give you snapshots so you can revert a machine after it gets wrecked during an exercise. Create two virtual networks: one bridged for internet updates, one isolated for the actual targets.
Spin up these three machines first:
- Kali Linux attacker VM with 4 GB RAM
- Metasploitable 3 or DVWA as the first target
- Security Onion for traffic analysis
| Component | Example Use | RAM allocation |
|---|---|---|
| Kali attacker | Running nmap, Metasploit, Burp | 4 GB |
| Vulnerable server | Web app or AD testing | 2-4 GB |
| Logging box | Wireshark, ELK, Zeek | 4 GB |
Once the VMs are running, test basic connectivity with nmap from the attacker box. If scans complete without dropping packets, your lab is already useful for practicing enumeration and initial access. Add more targets like Hack The Box VMs or custom VulnHub images as you go.