5.4 KiB
| layout | title | permalink |
|---|---|---|
| doc | How to create a Kali Linux VM | /doc/kali/ |
How to Create a Kali Linux VM
This guide is being created to give guidance on ways in which you could create a Kali Linux penetration testing VM (Qube) in Qubes OS.
Kali Linux is the most widely used penetration testing Linux distribution.
There are multiple ways to create a Kali Linux VM. One way is to create a HVM and use the offical ISO to install the system or convert a Virtual Image. Another way is to clone the Qubes OS Debian image and turn it into a Kali Linux distribution.
Kali Linux HVM
0 - Download the Kali installation DVD
1 - Create a new HVM
2 - Start the HVM with attached CD/DVD
qvm-start <hvm-name> --cdrom <vm-name>:/home/user/Downloads/<iso-name>.iso
Create Debian Based Kali Template
0 - (Optional) Install debian-8 template (if not already installed)
1 - Update your debian-8 template
sudo apt-get update
sudo apt-get dist-upgrade
2 - Clone debian-8 template (two options)
-
Via Qubes VM Manager
-
Via command line
qvm-clone debian-8 kali
3 - Start and upgrade the kali Template from Debian 8 to Debian 9
user@kali:~$ sudo sed -i 's/jessie/stretch/g' /etc/apt/sources.list
user@kali:~$ sudo sed -i 's/jessie/stretch/g' /etc/apt/sources.list.d/qubes-r3.list
user@kali:~$ sudo apt-get update
user@kali:~$ sudo apt-get dist-upgrade
user@kali:~$ sudo apt-get autoremove
NOTICE: From now on there are two possible ways either doing everything manually or automatically with Katoolin.
Katoolin is a script (written in Python) which helps you to install Kali tools.
4 manually - Add Kali Linux repositories
- Add Kali Linux repositories to
/etc/apt/sources.list
deb http://http.kali.org/kali kali-rolling main contrib non-free
deb http://repo.kali.org/kali kali-bleeding-edge main
- Add kali signing key
- The signing key can be found here [Download Kali Linux Images Securely](https://www.kali.org/downloads/)
~~~
sudo apt-key adv --keyserver hkp://keys.gnupg.net --recv-keys 7D8D0BF6
sudo apt-get update
~~~
4 katoolin - Install Katoolin and add Kali Linux repositories
- Install Katoolin
sudo apt-get install git
git clone https://github.com/LionSec/katoolin.git
sudo cp katoolin/katoolin.py /usr/bin/katoolin
sudo chmod +x /usr/bin/katoolin
rm -rf katoolin
- Add Kali Linux repositories
- start katoolin
~~~
sudo katoolin
~~~
- select 'Add Kali repositories & Update'
~~~
1) Add Kali repositories & Update
2) View Categories
3) Install classicmenu indicator
4) Install Kali menu
5) Help
kat > 1
~~~
- select 'Add kali linux repositories'
~~~
1) Add kali linux repositories
2) Update
3) Remove all kali linux repositories
4) View the contents of sources.list file
What do you want to do ?> 1
~~~
- update Kali repositories
~~~
1) Add kali linux repositories
2) Update
3) Remove all kali linux repositories
4) View the contents of sources.list file
What do you want to do ?> 2
~~~
- quit katoolin by pressing `CRTL` + `c` keys
~~~
What do you want to do ?> ^CShutdown requested...Goodbye...
~~~
5 - Cleanup and update kali template
sudo apt-get dist-upgrade
sudo apt-get autoremove
6 - Shutdown and trim kali template
-
Shutdown
kalitemplatesudo shutdown -h now -
In
dom0console:qvm-trim-template kali
7 - Start image
8 manually - Install tools
Warning: kali-linux and kali-linux-full does currently not work properly. Please use Katoolin or PTF.
- List available packages
~~~
sudo apt-cache search kali-linux
~~~
- Select and install tools
- install base system
~~~
sudo apt-get install kali-linux
~~~
- or install all tools
~~~
sudo apt-get install kali-linux-full
~~~
- or select specific (example):
~~~
sudo apt-get install kali-linux-top10 kali-linux-web
~~~
8 katoolin - Install tools
- View Categories
- start katoolin
~~~
sudo katoolin
~~~
- select `2) View Categories`
- Select the categories/tools you want to install
- For more information on how to use Katoolin see [How to Auto Install All Kali Linux Tools Using “Katoolin” on Debian/Ubuntu](http://www.tecmint.com/install-kali-linux-tools-using-katoolin-on-ubuntu-debian/)
- **Note:** The `all` option does not work for `Information Gathering`, `Web Apps`, `Forensic Tools`, `Reverse Engineering` and `Extra`.
9 - Create a AppVMs based on the kali template
- (Optional) Attach necessary devices