Jump to content

Recommended Posts

Posted

Hi Everyone,

Just came back from this thread

and Was very interessed to build my own lab.

So , I found this distro SEAnux which is basically a Pentesting OS, like Kali Linux, And i was considering using it, but i wasn't sure if it was safe.

The source code is avaialble but i'dont have the knowledge to analyse it.

Only thing i found is this But it turn out to be only a misconfiguration.

Posted

You're focussing on the platform. Don't!

You can use Kali, Ubuntu, Gentoo, SEAnux, Linux From Scratch, MacOS X, hell, you could even use Windows (but, well, don't)! All those 'Pentesting OS' distro's do is pre-package the tools you're likely to use so you're off the starting block faster. If you're already sufficiently (un)comfortable with an OS, don't muck about learning a new one just because "everybody else does so". Install the tools everybody else uses and give them a loud "Moooooo!" when they ask why you're not running Kali.

You don't want to learn the OS. You actually don't even want to learn the tools themselves. What you want to do is understand how the tool works so you know how to apply it most effectively.

In this field there's a new tool every other month. Learn the concept, know the tools that exploit the concept, don't give a shit about the tool.

Posted

One thing to keep in mind. On an actual pentest you might want/need the ability to wipe your machine's drive when you're done. I've even heard of folks having to turn over the drive in their laptops. Having a distro like Kali, Gento or SeAnux comes in handy for this reason. Most people won't use them as a daily driver os, so it's not a big deal to lose the data on them. Some people use those distros for other reasons. I run Kali as my work and one of my personal laptop's main os. For me it's a convenience thing more than anything else. I used to just run Slackware and compile everything I needed, wrote a script to do it for me. Now I just use Kali and remove what I don't need if space is an issue, which usually isn't. Sure I could go old school and install Debian then install the apps I need, but I use full disk encryption, and I really like Kali's luks nuke feature. Had a coworker's laptop get pilfered from a client site, so I started running full disk encryption with windows as a vm for those windows only moments.

Posted

Got It Cooper Thanks again .

So Basically I could use any OS, all I need to do is understand how the tool works but most important, the concept.

I'm really comfortable with Ubuntu or Linux Mint, so I guess i'll just install the packages that I need . Plus I was looking for a daily driver os. I'll stay on ubuntu for now.
To understand how the tool works It's mostly a lot of documentaion on Github and youtube then I'll install them.

hi barry, thanks !

LuksNuke looks verry great, I'm keeping this in my bookmarks in case I need it.

  • 1 month later...

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...