Category: Learning

A Few Cybersecurity Linux Tools to Explore
Information Gathering & Reconnaissance
1. Nmap: A network scanning tool for identifying hosts, open ports, and services. Commonly used for vulnerability assessments.
  Website: nmap.org
2. Recon-NG: A reconnaissance framework for gathering and processing OSINT data. Modules can automate recon tasks.
  Website: Recon-NG GitHub
3. theHarvester: Collects emails, subdomains, and hosts using sources like Google, Bing, and Shodan.
  Website: GitHub
4. DNSRecon: DNS enumeration tool for zone transfers and DNS record collection (MX, SPF, SRV).
  Website: GitHub
5. Netdiscover: A network scanning tool to identify active IPs in networks, particularly wireless networks.
  Website: Netdiscover SourceForge
6. Unicornscan: A high-performance asynchronous port scanner capable of scanning large networks.
  Website: Unicornscan GitHub
7. Masscan: Ultra-fast port scanner that can scan the entire internet within minutes.
  Website: masscan GitHub
8. P0f: A passive fingerprinting tool to infer OS, uptime, and device information by analyzing traffic.
  Website: P0f GitHub
Vulnerability Analysis & Exploitation
1. Nikto: Web server vulnerability scanner that identifies misconfigurations, outdated software, and potential exploits.
  Website: CIRT.net
2. OpenVAS: Open-source vulnerability scanner for automated network security assessments.
  Website: openvas.org
3. Metasploit: A penetration testing framework for exploit development and vulnerability validation.
  Website: Rapid7
4. jSQL Injection: A Java-based SQL injection exploitation tool.
  Website: GitHub
5. OWASP ZAP: An intercepting proxy for web app security testing and identifying vulnerabilities.
  Website: OWASP ZAP
6. Burp Suite: A web vulnerability scanner and exploitation platform with intercepting proxy capabilities.
  Website: PortSwigger
7. SQL Ninja: An SQL injection tool for exploiting database vulnerabilities.
  Website: GitHub
8. Sqlmap: An open-source tool for automating the detection and exploitation of SQL injection vulnerabilities.
  Website: sqlmap.org
Wireless & Network Attacks
1. Aircrack-ng: A suite of tools for Wi-Fi network security assessment, focusing on cracking WEP and WPA-PSK keys.
  Website: aircrack-ng.org
2. Kismet: Wireless network detector and packet sniffer, useful for Wi-Fi reconnaissance.
  Website: kismetwireless.net
3. Reaver: Exploits vulnerabilities in WPS to retrieve WPA/WPA2 passwords.
  Website: Reaver GitHub
4. Wireshark: A powerful packet analyzer for network troubleshooting and analysis.
  Website: wireshark.org
5. Ettercap: A suite for network sniffing and man-in-the-middle attacks, particularly for ARP poisoning.
  Website: ettercap GitHub
6. PixieWPS: A tool to exploit WPS vulnerabilities via offline brute-force attacks.
  Website: PixieWPS GitHub
7. Wifite: Automates attacks on Wi-Fi networks, including cracking WPA/2 and WEP keys.
  Website: GitHub
8. Netcat: A versatile networking utility for debugging, backdoors, and transferring files.
  Website: Netcat Guide
Forensics & Post-Exploitation
1. Autopsy: A digital forensics platform for analyzing and recovering deleted files, email parsing, and more.
  Website: Autopsy.com
2. Foremost: A file recovery tool for carving out files from disk images and raw data.
  Website: Foremost GitHub
3. Mimikatz: A tool for credential dumping and Windows security testing.
  Website: GitHub
4. PowerShell Empire: A post-exploitation framework leveraging PowerShell for remote access and persistence.
  Website: Empire Project
5. Shellter: A tool for obfuscating and injecting payloads into Windows executables.
  Website: Shellter GitHub
6. PowerSploit: A post-exploitation toolkit for executing PowerShell scripts on compromised systems.
  Website: PowerSploit GitHub
7. Memdump: Captures live memory for forensic analysis.
  Website: GitHub
Password & Hash Attacks
1. Hydra: A parallelized login cracker supporting numerous protocols.
  Website: Hydra GitHub
2. Rainbowcrack: Cracks hashes using precomputed rainbow tables.
  Website: Project
3. John the Ripper: A fast password cracker supporting many hash types.
  Website: John the Ripper
4. Crunch: A wordlist generator for brute-force attacks.
  Website: Crunch GitHub
5. Hashcat: A GPU-accelerated password recovery tool.
  Website: hashcat.net
6. Medusa: A parallelized, modular brute-forcer for password cracking.
  Website: GitHub
7. Patator: A brute-forcing tool supporting many protocols and methods.
  Website: GitHub
8. CeWL: Generates custom wordlists for brute-force attacks based on target website content.
  Website: CeWL GitHub
Malware Analysis, Vulnerability Research, & Incident Response
1. Ghidra: Reverse engineering tool for analyzing binaries and decompiling code.
  Website: ghidra-sre.org
2. Radare2: An open-source framework for binary analysis and reverse engineering.
  Website: radare.org
3. OllyDbg: A debugger for analyzing and manipulating executables.
  Website: OllyDbg
4. DynamoRIO: A dynamic binary instrumentation framework.
  Website: dynamorio.org
5. Cuckoo Sandbox: An automated malware analysis platform.
  Website: cuckoosandbox.org
6. Volatility: A memory forensics tool for analyzing RAM dumps.
  Website: Volatility Foundation
7. Binwalk: Firmware analysis tool for Website: Binwalk
November 17, 2024
Installing Kali Linux as Proxmox Container
Obtaining the Latest Kali Image

When it comes to getting the latest Kali image, follow these steps:

Navigate to the Image Source – First, head over to the official Kali Linux images repository at https://images.linuxcontainers.org/images/kali/current/amd64/default/.

Select the Current Version Folder – Within the repository, locate and click on the folder that corresponds to the current version. For instance, I clicked on the folder labeled “20230414 17:56.”

Find the Root Filesystem – Inside this version directory, you’ll spot the “rootfs.tar.xz” file. Right-click on this file to copy its link.

Setting Up Proxmox for the Kali Container

Now, let’s move on to configuring Proxmox for your Kali container:

Log In to Proxmox – Log in to your Proxmox interface.

Navigate to CT Templates – On the left-hand side, select your Node, then navigate to “CT Templates.”

Download from URL – Look for the “Download from URL” option and click on it.

Paste the Copied URL – In the window that appears, paste the previously copied URL into the URL box. Click on “Query URL” and then “Download.”

Create a Container – Once the download is complete, it’s time to create your container:
- Click on “Create CT” from the top-right corner of the Proxmox interface.
Configure Container Settings – Configure your container settings as follows:
- Assign an ID and Password.
- Click “Next.”
Select the Template

On the template selection screen, choose the recently downloaded file (“rootfs.tar.xz”). Note that you’re creating a template that includes the root filesystem.
- Click “Next.”
Allocate Storage – Allocate storage space for your container. I opted for 32GB.
- Click “Next.”
Assign CPU Cores – Assign CPU cores to your container. I chose 6 cores.
- Click “Next.”
Allocate RAM – Allocate RAM to your container. I allocated 8GB.
- Click “Next.”
Set IP Address – On the next screen, assign a static IP address to your container, or leave it dynamic—it’s up to you.
- Click “Next.”
Configure DNS – For DNS settings, we’ll let the container get its DNS from the host.
- Click “Next.”
Start After Creation – On the following screen, make sure to check “Start after created” at the bottom-left corner.
- Click “Finish.”
Sources:

https://www.youtube.com/watch?v=2WjDTUNa-W0

https://www.kali.org/docs/containers/kalilinux-lxc-images/#overview
August 26, 2023

Category: Learning

A Few Cybersecurity Linux Tools to Explore

Information Gathering & Reconnaissance

Vulnerability Analysis & Exploitation

Wireless & Network Attacks

Forensics & Post-Exploitation

Password & Hash Attacks

Malware Analysis, Vulnerability Research, & Incident Response

Installing Kali Linux as Proxmox Container