Jump to content


Active Members
  • Posts

  • Joined

  • Last visited

Posts posted by logicalconfusion

  1. @barry99705 Kali is too bloated.

    I found an old script on the Ubutnu forums that I think we can upgrade to make common Debian distros similar to Kali. Its from like 2011. I AM NOT THE AUTHOR!

    # System Configuration & Utilities
    apt-get -y install build-essential
    apt-get -y install linux-headers-`uname -r`
    apt-get -y install sysvconfig
    apt-get -y install bum         ## Boot-Up Manager
    apt-get -y install tofrodos    ## DOS utils
    apt-get -y install xinetd      ## why not.
    apt-get -y install unrar       ## RAR support
    apt-get -y install p7zip-full  ## 7-Zip support
    apt-get -y install fcrackzip   ## Zip cracking
    apt-get -y install ipcalc      ## handy
    apt-get -y install sharutils   ## uuencode / uudecode
    apt-get -y install xclip       ## piping is handy
    apt-get -y install ldap-utils
    apt-get -y install cabextract  ## damn microsoft and their fascist compression formats!
    apt-get -y install g++
    apt-get -y install ssh
    ## Network services
    apt-get -y install samba
    apt-get -y install nis
    apt-get -y install nfs
    apt-get -y install smbfs       ## samba utilities
    ## apt-get -y install tftpd    ## you need to modify the /etc/init.d file...
    # system monitoring
    apt-get -y install ntop        ##
    apt-get -y install sysstat     ## iostat,sar,mpstat
    apt-get -y install procinfo
    # Package Management
    #apt-get -y install apt-build
    #apt-get -y install apt-dpkg-ref
    #apt-get -y install apt-listbugs
    apt-get -y install apt-file
    #apt-get -y install apt-howto
    apt-get -y install apt-utils
    apt-get -y install apt-listchanges
    apt-get -y install dconf
    # Terminal Emulators
    apt-get -y install tn5250
    apt-get -y install screen
    # Filesystem Support
    apt-get -y install sshfs
    apt-get -y install ntfs-3g
    apt-get -y install ntfs-config
    apt-get -y install ntfsprogs
    apt-get -y install mkisofs
    # Gnome-Specific Configuration
    apt-get -y install gconf
    apt-get -y install gnomebaker
    apt-get -y install nautilus-open-terminal
    # apt-get -y install isakmpd
    apt-get -y install vpnc
    # Multimedia
    apt-get -y install amarok
    apt-get -y install xmms
    apt-get -y install xmms-skins
    apt-get -y install xmms-mp4
    apt-get -y install mpg123
    apt-get -y install totem-xine
    apt-get -y install ksnapshot
    apt-get -y install istanbul
    apt-get -y install recordmydesktop
    apt-get -y install gtk-recordmydesktop
    apt-get -y install xvidcap
    # Basics
    # Netcat & Tunnelling
    apt-get -y install netcat
    apt-get -y install sbd
    apt-get -y install cryptcat
    apt-get -y install socat
    apt-get -y install vtun
    apt-get -y install stunnel
    # Scanning Tools
    apt-get -y install nmap
    apt-get -y install nessusd
    apt-get -y install nessus
    apt-get -y install fping
    apt-get -y install hping2
    apt-get -y install hping3
    apt-get -y install scapy
    apt-get -y install snmp
    #apt-get -y install sing     #send icmp nasty garbage
    apt-get -y install traceroute
    apt-get -y install tcptraceroute
    apt-get -y install ike-scan ## ipsec vpn tool
    apt-get -y install nbtscan ## cifs info tool
    apt-get -y install sslscan
    # Passive Scanning Tools
    apt-get -y install p0f
    apt-get -y install pads
    # Sniffing Tools
    apt-get -y install wireshark
    apt-get -y install ettercap
    apt-get -y install ettercap-gtk
    apt-get -y install tcpdump
    apt-get -y install tcpflow
    apt-get -y install ssldump
    apt-get -y install nemesis   # packet injection
    apt-get -y install dsniff
    apt-get -y install etherape
    # Libraries
    apt-get -y install libssl        #Medusa
    apt-get -y install libssl-dev        #Medusa
    apt-get -y install libssh-2        #Medusa
    apt-get -y install python-pycurl    #wfuzz
    apt-get -y install libnet-dns-perl    #fierce.pl
    apt-get -y install libsnmp-perl        #??
    apt-get -y install libcrypt-ssleay-perl #HEAD,GET,POST, libwhisker
    apt-get -y install libnet-ssleay-perl   # ""     ""
    apt-get -y install ncurses-dev        # kismet-newcore
    apt-get -y install libpcap-dev        # kismet-newcore
    # Cracking Tools
    apt-get -y install john
    apt-get -y install medusa
    ## apt-get -y install hydra? ## not really that useful..
    # Wireless Tools
    ##apt-get -y install kismet ## disabled because of kismet-ng
    apt-get -y install aircrack
    apt-get -y install aircrack-ng
    # App Layer Tools
    apt-get -y install wget
    apt-get -y install curl
    apt-get -y install nikto
    ## Scripting
    apt-get -y install ruby
    apt-get -y install python
    apt-get -y install perl
    apt-get -y install perl-doc
    apt-get -y install gawk
    apt-get -y install vim-ruby
    apt-get -y install vim-python
    ## Ruby - Gems
    apt-get -y install gems
    apt-get -y install rubygems
    ## Metasploit dependencies
    apt-get -y install libopenssl-ruby
    apt-get -y install ruby-libglade2
    apt-get -y install libgtk2-ruby
    ## Scapy - Python Dependencies - http://www.secdev.org/projects/scapy/portability.html
    apt-get -y install graphviz        # graph stuff
    apt-get -y install imagemagick        # graph stuff
    apt-get -y install python-gnuplot    # PacketList.plot()
    apt-get -y install python-crypto    # WEP Stuff
    apt-get -y install python-visual    # 3D Stuff
    apt-get -y install python-pyx        # pdfdump() / psdump()
    apt-get -y install acroread
    apt-get -y install gv
    apt-get -y install sox
    ## ProxyStrike Dependencies
    apt-get -y install python-qt4
    apt-get -y install python-openssl
    ## W3af Dependencies
    apt-get -y install python-pyparsing
    apt-get -y install python-pydot
    apt-get -y install python-soappy
    ## Coding
    ##apt-get -y install eclipse - get the latest version...
    apt-get -y install kdevelop
    apt-get -y install subversion
    apt-get -y install rapidsvn
    apt-get -y install vim-full
    apt-get -y install git
    apt-get -y install git-core
    ## Documentation
    apt-get -y install notecase
    apt-get -y install vim
    apt-get -y install liferea
    ## Web / Browser Utilities
    apt-get -y install azureus
    apt-get -y install opera
    apt-get -y install filezilla
    apt-get -y install flashplugin-nonfree
    apt-get -y install pidgin
    apt-get -y install pidgin-otr
    apt-get -y install thunderbird
    apt-get -y install lightning-extension
    apt-get -y install enigmail
    apt-get -y install irssi
    apt-get -y install silc
    apt-get -y install tor
    ## Windows Stuff
    apt-get -y install wine
    apt-get -y install quicksynergy
    ## Encryption
    apt-get -y install dmsetup
    apt-get -y install password-gorilla
    apt-get -y install gpa
    apt-get -y install seahorse
    ## Java
    apt-get -y install sun-java6-jre
    apt-get -y install sun-java6-plugin
    #set our java version to java-6-sun as this plays well with burpsuite
    update-java-alternatives -s java-6-sun
    ## Upgrade & Such
    apt-get update
    apt-get upgrade
    apt-get dist-upgrade
    ## Remove auto-start services
    update-rc.d -f exim4 remove
    update-rc.d -f tor remove
    update-rc.d -f ntop remove
    update-rc.d -f p0f remove ## not sure this is necessary
    update-rc.d -f pads remove
    update-rc.d -f isakmpd remove
    update-rc.d -f nessusd remove
    update-rc.d -f cups remove
    update-rc.d -f samba remove
    update-rc.d -f nis remove
    update-rc.d -f nfs-common remove
    ### Manual installs
    ### ------------------------------------------------------------------------------------------
    ### truecrypt -- http://www.howtogeek.com/howto/ubuntu/install-truecrypt-on-ubuntu-edgy/
    ###            - you will need the linux kernel source for this one...
    ### onesixtyone -- http://www.phreedom.org/solar/onesixtyone/
    ### libdvdcss2 -- "sudo /usr/share/doc/libdvdread3/./install-css.sh"
    ### Don't forget VirtualBox

    Any suggestions on how to improve it?

  2. After doing a bit of goggling, I found a site that explains how to slipstream Win7's SP1, painstakingly w/out relying on the freeware app - RT Seven Lite. I can't find an open source equivalent for Win7 or Linux, except for Unetbootin. I have no experience setting up a bootable USB for Windows7 using either Unetbootin or RT-7. But, I think it's possible to dump my student copy of the Win7 installation CD onto my HD and apply the service pack by mounting it on Win7 VM. Can anyone find an alternative to RT Seven? Whats the best( hak5) method?

  3. The following error appears when I try to install Windows7 on my 360GB HD:

    Setup was unable to create a new system partition or locate an existing system partition. See the Setup log files for more information.

    I used the diskpart utility to clean the HD, create a partion and format it as ntfs. detail disk shows the following:

    Vol## ltr labl fs type size Status info

    2 C NTFS Partition 335GB Healthy

    I got Ubuntu12 on the first HD, set to load w/out Grub. I'm trying to set up a dual boot (Ubuntu/Win7) for a friend. The Ubuntu site recommends installing their OS using some kind of wasabi.exe file or some crap. I don't want to re-install the entire OS! Anyone know how to force the Win7 setup app to detect the new partition/drive through the cmdline or where the setup logs is stored? I even let clean all run overnight - no errors.

  4. While we're on the topic, KVM switches like proskater123's seem pretty antiquated now. I remember selling these type of devices like 11 yrs ago when Linksys WRT's and 1GB USB thumb drives were hot. Whats the next generation of these kind of devices? I personally use a router and good ol' remote admin to deal with multiple computers; switches are pretty inexpensive on eBay.

    I wonder if there's are like a wireless KVM switches for servers. I read that one advantage of a KVM is that it can use virtual disks of many kinds, for example images of USB drives, which can be mounted as SATA drives. If it is the first drive, the virtual machine will boot from it.

    I don't quite understand the purpose of Ubuntu's virtman https://help.ubuntu.com/community/KVM/VirtManager.%C2'>

  5. @TN.Frank Well, a public WiFi hotspot is public, and usually monitored and might even be compromised by a hacker. Security experts recommend setting up a VPN on your home network so you can tunnel from the pub WiFi to your own dedicated ISP using encryption to CYA - (cover your ass). There're a lot of free VPN services available that you can sign up for, some of them are actually located outside the U.S. so, your IP will look like it originated from some place else. Either way, the VPN admins on the other end can monitor your traffic, unless your connecting to private sites that implement SSL - correctly, like Gmail.

  6. @TN.Frank Thats only possible if you're running network services on your wireless network such as SSH/CUPS. SSH is a secure protocol designed to allow remote access to your network. I doubt your ISP set you up with such third party services, most don't even enable WiFi. You're best bet would be to encrypt all your traffic with using AES/WPA2, use mac filtering to allow just your PCs, hide your SSID and change your 63char hex pswd frequently. You don't have to go ape shit worrying. Check your routers manual for a list of features. RTFM as we used to say in the ol' days.

  7. Actually, the proper way to format a drive is by using fdisk to erase and delete the partition, just incase it appears invalid or won’t load, and then either mkfs.vfat or mkdosfs to create the (vfat) file system. Mount, df, dmesg | tail, and fdisk –l can be invoked to locate the USB once it’s inserted to confirm that it’s on the bus. I had to use fdisk –l since the system didn’t detect the my corrupted old USB. Here’s how to format the USB for uNetbootin:

    1. Place the USB in the drive, switch to root and execute fdisk –l . It should display something similar to

    /dev/sdb1 on /media/98617130-8c3e-43e0-9a19-005b5a3cc5d4 type ext3 (rw,nosuid,nodev,uhelper=udisks)

    2. Now, type 'fdisk /dev/sdb' to access the drive and the type ‘p’ to list the partitions. If it’s just a single-partition USB it might show something like:

         Device Boot      Start         End      Blocks   Id  System
    /dev/sdb1            2048     3915775     1956864    7  HPFS/NTFS/exFAT

    3. Delete what’s stored on the drive by issuing a ‘d’ cmd and ‘p’ to confirm that it’s gone.

    4. After deleting the partition, type ‘n’ to create a new partition. Fdisk will then display options to size and number the partition(s). Press enter 4 times to use the defaults.

    5. Press ‘p’ again and it will show the newly created dummy partition

    Device Boot      Start         End      Blocks   Id  System
    /dev/sdb1            2048     3915775     1956864   83  Linux

    6. Press ‘L’ to display the hex codes of all the available file systems. Hex code - b (W95 FAT32) is vfat.

    7. Press ‘t’ and type the preffered hexcode ('b') and then ‘w’ to commit the changes and sync/save.

    8. Fdisk will automatically exit so a simple mount cmd should display the partition.

    9. Now its time to umount and use mkdosfs to create a vfat file system.

    Umount /dev/sdb1
    Mkdosfs /dev/sdb1

    10. The pmount cmd can be used to mount vfat partition, so to mount it simply type ‘pmount /dev/sdb1’ and check unetbootin.

    According to my research, Windows prefers to use the NTFS file-system for all disks, and does not let you format large disks in any other file system. Windows refuses to use anything except NTFS to format an external disk if it is bigger than 32 Gbytes. Macs will read but not write the NTFS file system. Linux systems vary, but most will not guarantee to write NTFS properly. This method can be used to re-format any USB. Have fun!

  8. Here's one for the n00bs. How exactly does a VPN work? Can the admins see and decipher information (DNS queries and traffic) going through their network secretly? SSL uses port 443, typically. Most http traffic is set to use port 80. Is it possible to use a VPN through port 80 to host games and services like Skype?

  9. It wouldn't matter. Anyone(any computer scientist) can make a hydrogen cooled super computer in his basement and then design an application to crack your key. Keyless encryption is the only real encryption. remember the old saying, when in doubt - destroy the data; I personally want the government on my side....

  10. I found a list of "free" VPN services that require installation of proprietary software. Anyone know how to access these networks directly w/out installing 3rd party (closed source) software, using OpenVPN or like Hamachi? Free VPNs are a great addition/alternative to free WiFi for testing and surfing (semi-anonymously).

    AnchorFree Hotspot Shield
    Its Hidden

  11. @digininja

    I concur w/ your opinion. My script is actually for meant certain IT certifications and VMware/VBox tools addons, scripts, and tools for Linux. Just like programming, C++ is not the answer to every system. ChimeraSecurity seems focused on basic VMware and portscanning/sniffing, which, again, doesn't require a 1.3+gig arsenel of security tools. The leaner the better is my mantra. You are right - MOST tools are readily available - in the Debian repos. Please help compile a list for my research endeavor.

  12. @dijininja

    You can't even say there is a good generic base set.

    You might want to re-consider. It's not immpossible. IIt's actually debatable, think about it. Every major Debian based distro out there is loaded with a set of generic applications (Open Office, Gimp, Firefox, Firestarter, Avast, etc). SystemrescueCD is really just a dumbed down version of like Knoppix. If the authors were to combine SystemrescueCD with all the tools in Hirens bootdisk somehow, it would probably be reffered to as Kali-resuceCD. Lifehacker.com actually has a list of what they feel ought be included in every 2013 distro to compete w/ Win7. I think we can muster a list for security and system tools for my script.

  13. @ChimeraSecurity it looks like a nice guide for people waiting to experiment with VMs and tools like OWASP Bricks. This guide seems focused on pen-testing XP machines and general vulnerabilities using Kali Linux, like digininja pointed out. M$ is going to pull the plug on XP in a few months. The OS is like 13 yrs old! We have to start disecting Win7 - ASAP. I am writing a script for Debian based distros to make it Kali (BackTrack5r3) like. What tools would you recommend?

  14. @GuardMoony thats exactly the problem. I think I lost 2985043895903845493890 USB thumb drives since '01. I ring, unlike, a thumb drive is not easy to lose. The manufactures of NFCRING want everyone to dance to Boyce's ring song, btw. It's rumored that dongles are now ILLEGAL in the U.S. Anyone here know for sure?

  • Create New...