Fast and easy way of setting up a self-contained and hardened pentesting environment with Kali Linux
- Latest Kali Linux for x86_64
- 40GB of free disk space
- Create a fresh image based on latest Kali Linux (assumes accepting default meta-packages: top10 and default).
$ git clone https://github.com/tasooshi/pentesting-bootstrap.git
$ sudo pentesting-bootstrap/bootstrap.sh
(-q
to silence output)- Answer a few questions (or skip them with
-y
).
(Optional)
- In case you need support for wireless adapter:
bootstrap.rtl88*.sh
These are the optional "packages":
Disabling IPv6 system-wide.
Restricting SSH, IPv4, default file permissions etc.
There are some good uses, too.
Changes host name to a random string that makes sense, after each reboot.
Consists of packages not installed by default in Kali Linux and the ones that I had found useful over the years: extra compilers, utilities for data extraction, less common file systems or protocols etc.
Really handy when dealing with legacy systems not supporting modern TLS.
Downloads non-packaged binaries and source code in case you end up without Internet access (mostly from Github).
Personal choice of mine, highly recommended for improving productivity. Great both for programming and note taking.
Enables SSH client to talk to legacy systems.
usage: bootstrap.sh [-h] [-q] [-y]
Fast and easy way of setting up a hardened pentesting environment with Kali Linux
Optional arguments:
-h Show this help message and exit
-q Run quietly
-y Answer "yes" to all