The steps are pretty straight forward. The only tool that might cause some confusion is SMBexec. This requires you to interact 3 times with a different option every time. So here’s the options you need to use, in the correct order
- Select option 1 (When prompted for the path, write: /opt/tools)
- Select option 4
- Select option 5
Right after you have written the path to where to install SMBexec, the script will ask you the same question. Make sure that you write the same, /opt/tools, there as well. This is so the bash script knows where to find the new install.sh script for SMBexec.
Other than this, the rest of the process is very simple.
You can either download the script from my gist here , or copy the code from below
#!/bin/bash echo "" echo "==========================================================================" echo "= Pentest Attack Machine Setup =" echo "= Based on the setup from The Hacker Playbook =" echo "==========================================================================" echo "" # Prepare tools folder echo "[+] Creating tools folder in /opt" mkdir /opt/tools/ echo "" # Setting up metasploit with postgresql echo "[+] Setting up metasploit with postgresql" service postgresql start service metasploit start echo "" # Discover Scripts - Passive reconnaissance echo "[+] Installing Discover Scripts" cd /opt/tools/ git clone https://github.com/leebaird/discover.git cd /opt/tools/discover/ /opt/tools/discover/setup.sh echo "" # SMBexec - Grab hashes out of the Domain Controller and reverse shells # Step 1: Select option 1 # Step 2: Select option 4 # Step 3: Select option 5 echo "[+] Installing SMBexec" cd /tmp/ git clone https://github.com/brav0hax/smbexec.git cd /tmp/smbexec/ echo "[+] Select option 1" /tmp/smbexec/install.sh echo "[*] Where did you install SMBexec?: " read smbexecpath $smbexecpath/smbexec/install.sh echo "" # Veil - Create Python based Meterpreter executable echo "[+] Installing Veil Framework" cd /opt/tools/ git clone https://github.com/Veil-Framework/Veil-Evasion.git Veil cd /opt/tools/Veil/setup /opt/tools/Veil/setup/setup.sh echo "" # WCE (Windows Credential Editor) - Pulls passwords from memory echo "[+] Downloading and installing WCE (Windows Credential Editor)" mkdir /opt/tools/wce/ cd /tmp/ wget http://www.ampliasecurity.com/research/wce_v1_41beta_universal.zip unzip -d /opt/tools/wce/ wce_v1_41beta_universal.zip rm -f wce_v1_41beta_universal.zip echo "" # Mimikatz - Pulls passwords from memory echo "[+] Installing Mimikatz" mkdir /opt/tools/mimikatz/ cd /tmp/ wget https://github.com/gentilkiwi/mimikatz/releases/download/2.0.0-alpha-20150122/mimikatz_trunk.zip unzip -d /opt/tools/mimikatz/ mimikatz_trunk.zip rm -f mimikatz_trunk.zip echo "" # PeepingTom - Website snapshots echo "[+] Installing PeepingTom" cd /opt/tools/ git clone https://bitbucket.org/LaNMaSteR53/peepingtom.git cd /opt/tools/peepingtom/ wget https://gist.githubusercontent.com/nopslider/5984316/raw/423b02c53d225fe8dfb4e2df9a20bc800cc78e2c/gnmap.pl echo "" # Download appropriate PhantomJS package if $(uname -m | grep '64'); then wget http://phantomjs.googlecode.com/files/phantomjs-1.9.2-linux-x86_64.tar.bz2 tar xf phantomjs-1.9.2-linux-x86_64.tar.bz2 cp /opt/tools/peepingtom/phantomjs-1.9.2-linux-x86_64/bin/phantomjs . else wget http://phantomjs.googlecode.com/files/phantomjs-1.9.2-linux-i686.tar.bz2 tar xf phantomjs-1.9.2-linux-i686.tar.bz2 cp /opt/tools/peepingtom/phantomjs-1.9.2-linux-i686/bin/phantomjs . fi echo "" # Nmap script - Quicker scanning and smarter identification echo "[+] Installing nmap scripts" cd /usr/share/nmap/scripts/ wget https://raw.githubusercontent.com/hdm/scan-tools/master/nse/banner-plus.nse echo "" # PowerSploit - Scripts for post exploitation echo "[+] Installing PowerSploit" cd /opt/tools/ git clone https://github.com/mattifestation/PowerSploit.git cd /opt/tools/PowerSploit/ wget https://raw.githubusercontent.com/obscuresec/random/master/StartListener.py wget https://raw.githubusercontent.com/darkoperator/powershell_scripts/master/ps_encoder.py echo "" # Responder - Used to gain NTLM challenge/response echo "[+] Installing Responder" cd /opt/tools/ git clone https://github.com/SpiderLabs/Responder.git echo "" # SET (Social Engineering Toolkit) - Pre-installed on Kali Linux echo "[+] Installing SET (Social Engineering Toolkit)" cd /opt/tools/ git clone https://github.com/trustedsec/social-engineer-toolkit.git set cd /opt/tools/set/ /opt/tools/set/setup.py install echo "" # Bypassuac - Used to bypass UAC in post exploitation # → https://www.trustedsec.com/downloads/ echo "[+] Installing Bypass UAC" cd /tmp/ wget https://www.trustedsec.com/files/bypassuac.zip unzip bypassuac.zip cp bypassuac/bypassuac.rb /opt/metasploit/apps/pro/msf3/scripts/meterpreter/ mv bypassuac/uac/ /opt/metasploit/apps/pro/msf3/data/exploits/ rm -Rf bypassuac echo "" # BeEF - cross-site scripting framework # → http://beefproject.com/ echo "[+] Installing BeEF" apt-get install beef-xss echo "" # PEDA - Python Exploit Development Assistance for GDB # → Repository: https://github.com/longld/peda echo "[+] Installing PEDA" git clone https://github.com/longld/peda.git /opt/peda echo "source /opt/peda/peda.py" >> ~/.gdbinit echo "" # The End echo "[+] All tools installed successfully!" echo "[+] ~~~ Happy Hacking! ~~~" echo ""
Kali Linux additional tools setup的更多相关文章
-
2018 kali linux install tools
1.VM setup https://www.vmware.com/products/workstation-pro/workstation-pro-evaluation.html VMware-Wo ...
-
关于kali linux 2.0的vmware tools的安装问题
在安装好kali linux 2.0 后,首先要做的就是添加源并更新系统,否则会出现软件定位问题. 在kali 2.0中,vmware tools已经不能使用了,官方放了一个工具下载安装就好. 添加源 ...
-
Kali Linux安装VMWare Tools
操作环境: 虚拟机操作系统: Kali Linux 2017.2 虚拟化软件: VMWare workstation 14 pro 加载光盘 在VMWare上依次点击"虚拟机->安装V ...
-
Kali linux 2016.2(Rolling) 的详细安装(图文教程)附安装VMare Tools 增强工具
写在前面的话 因读研期间,实验室团队需要,所以,接触上了Kali Linux,需去获得网络安全方面的数据,即数据和信息收集.以便为后续的数据处理和分析,准备! 用到hadoop和spark.机器学习等 ...
-
Kali Linux下安装VMware Tools
引言 Kali Linux是基于Debian的Linux发行版, 设计用于数字取证和渗透測试.安装Kali Linux非常easy,可是安装VMware Tools的过程就有点麻烦了,由于在安装中途会 ...
-
kali linux与虚拟机Vmware安装vmware tools(主机与虚拟机的文件拖拽)
一.打开虚拟机任务栏"虚拟机"-----点击安装Vmware tools 二.回到开启的kali linux系统中,找到vmware tools CD文件夹,拖拽出文件中的压缩文件 ...
-
kali linux tools
1.HTTrack:网站复制机制 2.Google高级搜索命令 site:domain terms to search site :dsu.edu pat engebreston 3.kali lin ...
-
KALI LINUX系统初始化配置
1.Kali Linux安装VirtualBox增强功能 VirtualBox增强功能介绍:物理机与虚拟机之间的文件共享.物理机与虚拟机之间的剪切板共享.虚拟机的direct3D支持,这样虚拟机窗口就 ...
-
kali linux Python开发环境初始化
kali linux Python 黑客编程1 开发环境初始化 为什么要选择Python? Python作为目前Linux系统下最流行的编程语言之一,对于安全工作者的作用可以和C++相提并论.Pyth ...
随机推荐
-
使用python在SAE上搭建一个微信应用,使用有道翻译的api进行在线翻译
1. 准备,先在使用python一步一步搭建微信公众平台(一)中基本实现自动回复的功能后,接着在有道词典上申请一个key,http://fanyi.youdao.com/openapi?path=da ...
-
C#微信公众号开发 -- (六)自定义菜单事件之CLICK
微信公众号中当用户手动点击了按钮,微信公众号会被动的向用户发送文字消息或者图文消息. 通过C#微信公众号开发 -- (五)自定义菜单创建 我们知道了如何将CLICK类型的按钮添加到自己的微信公众平台上 ...
-
编译@Override报错
有时候Java的Eclipse工程换一台电脑后编译总是@override报错,把@override去掉就好了,但不能从根本上解决问题,因为有时候有@override的地方超级多. 这是jdk的问题,@ ...
-
cocos2dx+lua编译Android项目
一.简单介绍 cocos2dx版本号:3.2 二.问题及解决方式 1.为项目开启Native支持,把项目转为C++项目. 1>.项目开启C++ Native支持,操作例如以下图 watermar ...
-
Eclipse JDK的安装
1.jdk安装无法配置,eclipse绿色版安装无法打开,系统的版本问题(32位和64位): 2.Eclipse下载PDT时,可以如下安装: 三个地方设置好即可,其实第三个选第一个的话会出现无法提供函 ...
-
C#中Console.WriteLine()函数输出格式详解
格式项都采用如下形式: {index[,alignment][:formatString]} 其中"index"指索引占位符,这个肯定都知道: ",alignment&q ...
-
Python基础_函数闭包、调用、递归
这节的主要内容是函数的几个用法闭包,调用.递归. 一.函数闭包 对闭包更好的理解请看:https://www.cnblogs.com/Lin-Yi/p/7305364.html 我们来看一个简单的例子 ...
-
【一天一道LeetCode】#130. Surrounded Regions
一天一道LeetCode 本系列文章已全部上传至我的github,地址:ZeeCoder's Github 欢迎大家关注我的新浪微博,我的新浪微博 欢迎转载,转载请注明出处 (一)题目 Given a ...
-
对抗生成网络-图像卷积-mnist数据生成(代码) 1.tf.layers.conv2d(卷积操作) 2.tf.layers.conv2d_transpose(反卷积操作) 3.tf.layers.batch_normalize(归一化操作) 4.tf.maximum(用于lrelu) 5.tf.train_variable(训练中所有参数) 6.np.random.uniform(生成正态数据
1. tf.layers.conv2d(input, filter, kernel_size, stride, padding) # 进行卷积操作 参数说明:input输入数据, filter特征图的 ...
-
gps相关的知识
百度地图开放平台 高德开放平台