Upload
others
View
115
Download
3
Embed Size (px)
Citation preview
The Kali Linux Dojo - Ultimate Kali USB
USE YOUR OWN KALI ISO If you participated in the first workshop, use your own custom ISO for this next module.
DOWNLOAD A PRE-BUILT ISOIf you’ve just joined, download a Kali “light” ISO from the address below. This is a smaller, lighter version of Kali based on XFCE4.
Before We BeginIf You Haven’t Generated Your Own ISO, Download One.
wget http://archive.kali.org/kali-full.iso
Get a Kali 2.0 ISO and dd it to Your USB Drive.Get Your Usb Drives Ready
If you don't have your own Kali ISO : wget http://archive.kali.org/kali.iso
Find the storage path of your USB device. It’s most likely NOT /dev/sda.
Once discovered : dd if=kali.iso of=/dev/sdb bs=1M
If you need help with syntax : http://offsec.me
A Tale of Two WorkshopsKali Linux Dojo - Introduction
Mati Aharoni, Kali Linux, Offensive Security.
Kali Linux is more than a collection of tools.
Back to back workshops around the Kali Linux OS.
Dojo 01 - Rolling Your Own.
Dojo 02 - Ultimate Kali on USB.
Big thanks to EKOPARTY for hosting us!
USBISO
WORKSHOP 02Ultimate Kali USB
Create Kali 2.0 Live USB images with persistence and
encrypted storage.
WORKSHOP 01Rolling Your Own ISOs
Customize all aspects of the Kali 2.0 ISO build using Live
Build.
Kali Linux Rolling - What’s New?
Kernel 4.7
Based on Debian Testing
Now a rolling distribution - big implications
Upstream monitoring of tool updates
Better workflow, new UI, reworked menus
“If Kali 1.0 was focused on building a solid infrastructure then Kali 2.0 is focused on overhauling the user experience and maintaining updated packages and tool repositories.”
Now a Rolling Distribution
Kali boots into a fresh ISO each time (to RAM), changes are not saved
across reboots.
2A partition is set for
overlayed files. Changes are saved across
reboots.
3The persistence partition is encrypted and requires
a password to load the persistence partition.
LIVE BOOT PERSISTENCE ENCRYPTED PERSISTENCE
Kali Linux Live Boot
1
Several Ways to Run Kali (isohybrid) in a Live USB Setup
4A live boot option which
does not mount any target partitions, allowing
for forensics work.
FORENSICS MODE
Squeeze Out More From Your USB DriveMultiple Persistent Stores
Selecting The Persistence Partition
By default, the partition labeled “persistence” is chosen.
Can be changed using a “persistence-label” boot parameter.
Additional persistence stores can be defined and chosen at boot time.
Let’s Get Busy
Once the ISO is dd’ed…
We create two additional partitions on our 8GB USB drive.
Format the first with ext3fs and then label it “persistence”.
Create a persistence.conf file on the non-encrypted store.
Use cryptsetup to setup and format the 4th partition and define a password.
Create a persistence.conf file on the encrypted store.
Optionally set up a LUKS Nuke password.
http://offsec.me
Squeeze Out More From Your USB DriveLUKS Nuke Use Case
QUESTIONS andANSWERS
Go ahead. Ask away.
YOUFOR JOINING
THANK