Jump to content
Nytro

BackTrack successor Kali Linux launched

Recommended Posts

Posted

[h=1]BackTrack successor Kali Linux launched[/h]By Darren Pauli on Mar 13, 2013 10:04 PM

A computer small enough to fit inside the palm of a hand sits in the corner of an office, its lights blinking. It looks like a toy to most, but the small ARM-based machine is running the latest version of Backtrack, and is breaking into the corporate network.

ImageResizer.ashx?n=http%3a%2f%2fi.haymarket.net.au%2fGalleries%2f20130313103833_1.png&h=450&w=620

Such a feat was not possible prior to this evening's release of Kali, the sixth installment of the uber-powerful and super-secure penetration testing platform.

BackTrack obtained support for ARM-based devices as part of its quiet year-long and ground-up overhaul by the small group of security professionals who designed the operating system, now considered essential kit for penetration tests.

The authors hailing from Offensive Security together with security professionals at Rapid7, who offered free assistance in the rebuild, announced Kali at BlackHat Europe.

Outwardly, Kali looks the same as the previous version of BackTrack. But dig a little deeper, according to founder Mati Aharoni, and that's where the similarities end.

"It boots like BackTrack, but when you look deeper into Kali, you see all these amazing new features that just weren't available in BackTrack," Aharoni told SC speaking ahead of the launch in Amsterdam.

"Everything has changed."

ImageResizer.ashx?n=http%3a%2f%2fi.haymarket.net.au%2fGalleries%2f20130313105906_kali-arm-odroidu2.png&h=450&w=620

Kali has become sleeker and more secure: All packages were subject to a vetting process and were signed by developers with GPG keys.

This Aharoni said introduced complete visibility into the development chain.

"There is a very clear public development of each package so you can see changes easily. Visibility increased ten-fold."

The Metasploit Framework too has been rebuilt. Rapid7, keen to remove the rough-around-the-edges integration of the popular exploit arsenal within BackTrack, contacted Offensive Security. In a streak of luck, the call came in early in Kali's development.

From there, Metasploit underwent a considerable overhaul to become one of the most complex packages in Kali.

"Users will be in for a much smoother ride," Aharoni said. "It was never built to be packaged as a distribution so we needed to massage it"

ImageResizer.ashx?n=http%3a%2f%2fi.haymarket.net.au%2fGalleries%2f20130313103845_2560x1440.png&h=450&w=620

This took the form of a Debian repo rather than an at times messy binary installer, Rapid7 product manager Christian Kirsch said.

"A tonne of our users were using Metasploit on BackTrack," Kirsch said. "Now if you update Kali, you update Metasploit."

"It is critical to take the view of the attacker to see if your defences are working. The smartest people in the world may make mistakes in setting up defences."

It is also features a more friendly user interface and was available in the paid professional edition.

A razor has been applied to BackTrack's pre-packaged pen testing tools, eradicating 50 unpopular tools and introducing more powerful offerings into Kali.

ImageResizer.ashx?n=http%3a%2f%2fi.haymarket.net.au%2fGalleries%2f20130313103836_2.png&h=450&w=620

iKat, a hacking tool to audit the security of browser controlled enviroments like Kiosks, Citrix Terminals and WebTVs, was one such addition. The developers went to lengths to get the tool on board and had even helped the author further develop and integrate it into Kali.

ImageResizer.ashx?n=http%3a%2f%2fi.haymarket.net.au%2fGalleries%2f20130313103839_3.png&h=450&w=620

Kali comes as fully customisable. Users were able to pick and choose the tools they want in the platform, including private applications, prior to downloading the ISO, even down to their choice of wallpaper.

This Aharoni said makes Kali open to low-end systems and ARM based devices. Pre-built packages exist for a host of ARM devices including Raspberry Pi and ODROID.

Kali is now available for download and the wiki page is also online.

Sursa: BackTrack successor Kali Linux launched - Applications - SC Magazine Australia - Secure Business Intelligence

Posted (edited)

Kali este o renovare completa a BackTrack Linux de la zero si inspirat de standardele de dezvoltare Debian. Totul a fost nou creat - o nou? infrastructura, instrumentele au fost reproiectate si ambalate si transferat? la o Git pentru VCS noastre.

nytro m-am uitat la versiunea live si este tare de tot acuma instalez in vmware, un singur lucru ce inerveza este designul ca nu este ca bt dar t-il faci singur si numele este naspa kali :)) (nume de ciine)

Edited by neox
Posted

Kali, my friend e sotia zeului mortii, Shiva. E un nume foarte "cul" in alte culturi. Am o prietena careia i se zice Kali si a foarte apreciat si respectata, deci porecla nu are o conotatie de "nume de caine" :))

Ontopic: unele chestii nu merg as intended, cutare programel de spart wifi se crushuieste daca ii dai sa sparga prea multe retele. Sau se opreste la x la suta. Sau sistemul ramane hung up total in timp ce folosesc reaveru. Nu, nu-i hardware issue.

Si dracu stie de ce merge mai bine in VM decat de pe stick cu viteza BUNA de scriere citire.

Si reaveru sparge mult mai repede pe BTR 5 R 3 decat pe asta... pana acum :D

Posted

am incercat...sincer sa va spun.....varianta cu gnome...full....total dezamagit.

In schimb varianta mini iso....am pus-o pe un server....i-am alocat 4 gb ram si 2 core, se misca bine al dracului...initial ia 54 mb ram, apoi cu 2 service-uri in plus....postgres si ssh , i-a in jur de 120 mb ram clean. Acuma ii platforma pe care ma loghez de pe tel. cu toate tool-urile de pentest si merge super. Frumoasa si faza cu apt-get ca sa instalezi ce pentest tool vrei, dar o singura problema (ti le configureaza cum vrea el.....si apoi munca...). Defapt 2 probleme....e la inceput....de ex eu am 10mb/s download si ca sa instalez "c++-dev" aproximativ 400mb de arhive 1200 mb instalat....o vesnicie...mere greu tare! Dar...rabdare...odata cu popularitatea...cresc toate. Un plus pentru "update-rc" , totul merge cum ar trebui, spre deosebire de ubuntu....

Oricum, have fun....it's a verry good distro....if u know u're needs, the distro doesn't matter! Every challenge...is a challenge :D

Posted
Kali, my friend e sotia zeului mortii, Shiva. E un nume foarte "cul" in alte culturi. Am o prietena careia i se zice Kali si a foarte apreciat si respectata, deci porecla nu are o conotatie de "nume de caine" :)):D

mersi de info nu am stiut :)

Baieti asa a fost cu fiecare versiune de la BT plina de error si alte probleme, trebuie sa incelegeti ca kali este nou facut tot sistemul si deocamdata are problemele lui, dar baieti de la offensive security nu dorm, o sa mearga perfect de exemplu:

cind o sa apara versiunea Kali r1, la versiunea actuala ramine de facut in fie care zi update.

Posted
Cateva detalii?

Ce pot sa iti pun Nytro, o gramda de bataie de cap cu repository, cel putin la BT parca sunt puse pe placul meu, in schimb ca tools tot alea sunt cu mici modificari

Incearca'l live de pe un stick daca vrei sa vezi cum

pt cine il instaleaza permanent

indiferent ce nume alegeti la instalare ca username tot "root" este

Posted (edited)
Cei care au cativa ani pe forum, multumitii lui Sickness pentru el... (Care isi mai aduce aminte de el)

Sickness nu face parte din echipa de dezvoltare Kali linux..el este numai administrator pe forumul bt atit in rest nimic.

Il stim pe Sickness de cind era pe forum dar tu stii de ce a parasit forumul ?????

------------------------------------------------------------------------------------------------------------

Ce este enervant am tras versiunea de instalare gnome si se blocheaza in vmware la instalat , am tras si versiunea vmware merge naspa de tot si ce nu imi place este ca nu poti naviga din consola cum este la BT de exemplu:

cd pentest/exploit bla bla este inervant sa cauti in kali cu mouse ca in windows programle din meniu :)

Edited by neox

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.



×
×
  • Create New...