The Kali Linux Dojo - Ultimate Kali USBkali.org/dojo/eko12-2016/eko-workshop02.pdf · Kali Linux...

12
The Kali Linux Dojo - Ultimate Kali USB

Transcript of The Kali Linux Dojo - Ultimate Kali USBkali.org/dojo/eko12-2016/eko-workshop02.pdf · Kali Linux...

Page 1: The Kali Linux Dojo - Ultimate Kali USBkali.org/dojo/eko12-2016/eko-workshop02.pdf · Kali Linux Dojo - Introduction Mati Aharoni, Kali Linux, Offensive Security. Kali Linux is more

The Kali Linux Dojo - Ultimate Kali USB

Page 2: The Kali Linux Dojo - Ultimate Kali USBkali.org/dojo/eko12-2016/eko-workshop02.pdf · Kali Linux Dojo - Introduction Mati Aharoni, Kali Linux, Offensive Security. Kali Linux is more

USE YOUR OWN KALI ISO If you participated in the first workshop, use your own custom ISO for this next module.

DOWNLOAD A PRE-BUILT ISOIf you’ve just joined, download a Kali “light” ISO from the address below. This is a smaller, lighter version of Kali based on XFCE4.

Before We BeginIf You Haven’t Generated Your Own ISO, Download One.

wget http://archive.kali.org/kali-full.iso

Page 3: The Kali Linux Dojo - Ultimate Kali USBkali.org/dojo/eko12-2016/eko-workshop02.pdf · Kali Linux Dojo - Introduction Mati Aharoni, Kali Linux, Offensive Security. Kali Linux is more

Get a Kali 2.0 ISO and dd it to Your USB Drive.Get Your Usb Drives Ready

If you don't have your own Kali ISO : wget http://archive.kali.org/kali.iso

Find the storage path of your USB device. It’s most likely NOT /dev/sda.

Once discovered : dd if=kali.iso of=/dev/sdb bs=1M

If you need help with syntax : http://offsec.me

Page 4: The Kali Linux Dojo - Ultimate Kali USBkali.org/dojo/eko12-2016/eko-workshop02.pdf · Kali Linux Dojo - Introduction Mati Aharoni, Kali Linux, Offensive Security. Kali Linux is more

A Tale of Two WorkshopsKali Linux Dojo - Introduction

Mati Aharoni, Kali Linux, Offensive Security.

Kali Linux is more than a collection of tools.

Back to back workshops around the Kali Linux OS.

Dojo 01 - Rolling Your Own.

Dojo 02 - Ultimate Kali on USB.

Big thanks to EKOPARTY for hosting us!

USBISO

WORKSHOP 02Ultimate Kali USB

Create Kali 2.0 Live USB images with persistence and

encrypted storage.

WORKSHOP 01Rolling Your Own ISOs

Customize all aspects of the Kali 2.0 ISO build using Live

Build.

Page 5: The Kali Linux Dojo - Ultimate Kali USBkali.org/dojo/eko12-2016/eko-workshop02.pdf · Kali Linux Dojo - Introduction Mati Aharoni, Kali Linux, Offensive Security. Kali Linux is more

Kali Linux Rolling - What’s New?

Kernel 4.7

Based on Debian Testing

Now a rolling distribution - big implications

Upstream monitoring of tool updates

Better workflow, new UI, reworked menus

“If Kali 1.0 was focused on building a solid infrastructure then Kali 2.0 is focused on overhauling the user experience and maintaining updated packages and tool repositories.”

Now a Rolling Distribution

Page 6: The Kali Linux Dojo - Ultimate Kali USBkali.org/dojo/eko12-2016/eko-workshop02.pdf · Kali Linux Dojo - Introduction Mati Aharoni, Kali Linux, Offensive Security. Kali Linux is more

Kali boots into a fresh ISO each time (to RAM), changes are not saved

across reboots.

2A partition is set for

overlayed files. Changes are saved across

reboots.

3The persistence partition is encrypted and requires

a password to load the persistence partition.

LIVE BOOT PERSISTENCE ENCRYPTED PERSISTENCE

Kali Linux Live Boot

1

Several Ways to Run Kali (isohybrid) in a Live USB Setup

4A live boot option which

does not mount any target partitions, allowing

for forensics work.

FORENSICS MODE

Page 7: The Kali Linux Dojo - Ultimate Kali USBkali.org/dojo/eko12-2016/eko-workshop02.pdf · Kali Linux Dojo - Introduction Mati Aharoni, Kali Linux, Offensive Security. Kali Linux is more

Squeeze Out More From Your USB DriveMultiple Persistent Stores

Page 8: The Kali Linux Dojo - Ultimate Kali USBkali.org/dojo/eko12-2016/eko-workshop02.pdf · Kali Linux Dojo - Introduction Mati Aharoni, Kali Linux, Offensive Security. Kali Linux is more

Selecting The Persistence Partition

By default, the partition labeled “persistence” is chosen.

Can be changed using a “persistence-label” boot parameter.

Additional persistence stores can be defined and chosen at boot time.

Page 9: The Kali Linux Dojo - Ultimate Kali USBkali.org/dojo/eko12-2016/eko-workshop02.pdf · Kali Linux Dojo - Introduction Mati Aharoni, Kali Linux, Offensive Security. Kali Linux is more

Let’s Get Busy

Once the ISO is dd’ed…

We create two additional partitions on our 8GB USB drive.

Format the first with ext3fs and then label it “persistence”.

Create a persistence.conf file on the non-encrypted store.

Use cryptsetup to setup and format the 4th partition and define a password.

Create a persistence.conf file on the encrypted store.

Optionally set up a LUKS Nuke password.

http://offsec.me

Page 10: The Kali Linux Dojo - Ultimate Kali USBkali.org/dojo/eko12-2016/eko-workshop02.pdf · Kali Linux Dojo - Introduction Mati Aharoni, Kali Linux, Offensive Security. Kali Linux is more

Squeeze Out More From Your USB DriveLUKS Nuke Use Case

Page 11: The Kali Linux Dojo - Ultimate Kali USBkali.org/dojo/eko12-2016/eko-workshop02.pdf · Kali Linux Dojo - Introduction Mati Aharoni, Kali Linux, Offensive Security. Kali Linux is more

QUESTIONS andANSWERS

Go ahead. Ask away.

Page 12: The Kali Linux Dojo - Ultimate Kali USBkali.org/dojo/eko12-2016/eko-workshop02.pdf · Kali Linux Dojo - Introduction Mati Aharoni, Kali Linux, Offensive Security. Kali Linux is more

YOUFOR JOINING

THANK