Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- #!/bin/bash
- #-Metadata----------------------------------------------------#
- # Filename: kali.sh (Update: 2015-12-02) #
- #-Info--------------------------------------------------------#
- # Personal post-install script for Kali Linux 2.0. #
- #-Author(s)---------------------------------------------------#
- # g0tmilk ~ https://blog.g0tmi1k.com/ #
- #-Operating System--------------------------------------------#
- # Designed for: Kali Linux 2.x [x64] (VM - VMware) #
- # Tested on: Kali Linux 2.0.0 x64/x84/full/light/mini/vm #
- # Kali v1.x: https://g0tmi1k/os-scripts/master/kali1.sh #
- #-Licence-----------------------------------------------------#
- # MIT License ~ http://opensource.org/licenses/MIT #
- #-Notes-------------------------------------------------------#
- # Run as root, just after a fresh/clean install of Kali 2.x. #
- # --- #
- # You will need 25GB+ of HDD space. #
- # --- #
- # Command line arguments: #
- # -burp = Automates configuring Burp Suite #
- # -dns = Use Google's DNS and locks permissions #
- # -hold = Disable updating certain packages (e.g. msf) #
- # -openvas = Installs & configures OpenVAS vuln scanner #
- # -osx = Configures Apple keyboard layout #
- # -rolling = Use kali-rolling repository #
- # #
- # -keyboard <value> = Change the keyboard layout language #
- # -timezone <value> = Change the timezone location #
- # #
- # e.g. # bash kali.sh -osx -burp -openvas -keyboard gb #
- # --- #
- # ** This script is meant for _ME_. ** #
- # ** EDIT this to meet _YOUR_ requirements! ** #
- #-------------------------------------------------------------#
- if [ 1 -eq 0 ]; then # This is never true, thus it acts as block comments ;)
- ### One liner - Grab the latest version and execute! ###########################
- wget -qO kali.sh https://raw.github.com/g0tmi1k/os-scripts/master/kali.sh && bash kali.sh -dns -burp -openvas -rolling -keyboard gb -timezone "Europe/London"
- ################################################################################
- ## Shorten URL: >->-> wget -qO- http://bit.do/postkali | bash <-<-<
- ## Alt Method: curl -s -L -k https://raw.github.com/g0tmi1k/kali-postinstall/master/kali_postinstall.sh > kali.sh | nohup bash
- ################################################################################
- fi
- #-Defaults-------------------------------------------------------------#
- ##### Location information
- keyboardApple=false # Using a Apple/Macintosh keyboard (non VM)? [ --osx ]
- keyboardLayout="" # Set keyboard layout [ --keyboard gb]
- timezone="" # Set timezone location [ --timezone Europe/London ]
- ##### Optional steps
- burpFree=false # Disable configuring Burp Suite (for Burp Pro users...) [ --burp ]
- hardenDNS=false # Set static & lock DNS name server [ --dns ]
- freezeDEB=false # Disable updating certain packages (e.g. Metasploit) [ --hold ]
- openVAS=false # Install & configure OpenVAS (not everyone wants it...) [ --openvas ]
- rolling=false # Enable kali-rolling repos? [ --rolling ]
- ##### (Optional) Enable debug mode?
- #set -x
- ##### (Cosmetic) Colour output
- RED="\033[01;31m" # Issues/Errors
- GREEN="\033[01;32m" # Success
- YELLOW="\033[01;33m" # Warnings/Information
- BLUE="\033[01;34m" # Heading
- BOLD="\033[01;01m" # Highlight
- RESET="\033[00m" # Normal
- #-Arguments------------------------------------------------------------#
- ##### Read command line arguments
- while [[ "${#}" -gt 0 && ."${1}" == .-* ]]; do
- opt="${1}";
- shift;
- case "$(echo ${opt} | tr '[:upper:]' '[:lower:]')" in
- -|-- ) break 2;;
- -osx|--osx )
- keyboardApple=true;;
- -apple|--apple )
- keyboardApple=true;;
- -dns|--dns )
- hardenDNS=true;;
- -hold|--hold )
- freezeDEB=true;;
- -openvas|--openvas )
- openVAS=true;;
- -burp|--burp )
- burpFree=true;;
- -rolling|--rolling )
- rolling=true;;
- -keyboard|--keyboard )
- keyboardLayout="${1}"; shift;;
- -keyboard=*|--keyboard=* )
- keyboardLayout="${opt#*=}";;
- -timezone|--timezone )
- timezone="${1}"; shift;;
- -timezone=*|--timezone=* )
- timezone="${opt#*=}";;
- *) echo -e ' '${RED}'[!]'${RESET}" Unknown option: ${RED}${x}${RESET}" 1>&2 && exit 1;;
- esac
- done
- ##### Check user inputs
- if [[ -n "${timezone}" && ! -f "/usr/share/zoneinfo/${timezone}" ]]; then
- echo -e ' '${RED}'[!]'${RESET}" Looks like the ${RED}timezone '${timezone}'${RESET} is incorrect/not supported (Example: Europe/London). Quitting..." 1>&2
- exit 1
- elif [[ -n "${keyboardLayout}" && -e /usr/share/X11/xkb/rules/xorg.lst ]]; then
- if ! $(grep -q " ${keyboardLayout} " /usr/share/X11/xkb/rules/xorg.lst); then
- echo -e ' '${RED}'[!]'${RESET}" Looks like the ${RED}keyboard layout '${keyboardLayout}'${RESET} is incorrect/not supported (Example: gb). Quitting..." 1>&2
- exit 1
- fi
- fi
- #-Start----------------------------------------------------------------#
- ##### Check if we are running as root - else this script will fail (hard!)
- if [[ ${EUID} -ne 0 ]]; then
- echo -e ' '${RED}'[!]'${RESET}" This script must be ${RED}run as root${RESET}. Quitting..." 1>&2
- exit 1
- else
- echo -e " ${BLUE}[*]${RESET} ${BOLD}Kali Linux 2.x post-install script${RESET}"
- fi
- ##### Fix display output for GUI programs when connecting via SSH
- export DISPLAY=:0.0 #[[ -z $SSH_CONNECTION ]] || export DISPLAY=:0.0
- export TERM=xterm
- ##### Give VM users a little heads up to get ready
- (dmidecode | grep -iq virtual) && echo -e " ${YELLOW}[i]${RESET} VM Detected. Please be sure to have the ${YELLOW}correct tools ISO mounted${RESET}" && sleep 5s
- if [[ $(which gnome-shell) ]]; then
- ##### Disable notification package updater
- echo -e "\n ${GREEN}[+]${RESET} Disabling ${GREEN}notification package updater${RESET} service ~ in case it runs during this script"
- export DISPLAY=:0.0 #[[ -z $SSH_CONNECTION ]] || export DISPLAY=:0.0
- dconf write /org/gnome/settings-daemon/plugins/updates/active false
- dconf write /org/gnome/desktop/notifications/application/gpk-update-viewer/active false
- timeout 5 killall -w /usr/lib/apt/methods/http >/dev/null 2>&1 #|| echo -e ' '${RED}'[!]'${RESET}" Failed to kill ${RED}/usr/lib/apt/methods/http${RESET}"
- #if [[ -e /var/lib/apt/lists/lock ]]; then
- # echo -e ' '${RED}'[!]'${RESET}" There might be ${RED}another (background) service${RESET} using ${BOLD}Advanced Packaging Tool${RESET} currently"
- # echo -e ' '${RED}'[!]'${RESET}" If you are 100% sure this is a mistake: $ rm -f /var/lib/{dpkg,apt/lists}/lock; dpkg --configure -a"
- # exit 1
- #fi
- ##### Disable screensaver
- echo -e "\n ${GREEN}[+]${RESET} Disabling ${GREEN}screensaver${RESET}"
- xset s 0 0
- xset s off
- gsettings set org.gnome.desktop.session idle-delay 0 # Disable swipe on lockscreen
- fi
- ##### Check Internet access
- echo -e "\n ${GREEN}[+]${RESET} Checking ${GREEN}Internet access${RESET}"
- for i in {1..10}; do ping -c 1 -W ${i} www.google.com &>/dev/null && break; done
- if [[ "$?" -ne 0 ]]; then
- echo -e ' '${RED}'[!]'${RESET}" ${RED}Possible DNS issues${RESET}(?). Trying DHCP 'fix'" 1>&2
- chattr -i /etc/resolv.conf 2>/dev/null
- dhclient -r
- route delete default gw 192.168.155.1 2>/dev/null
- dhclient
- sleep 15s
- _TMP=true
- _CMD="$(ping -c 1 8.8.8.8 &>/dev/null)"
- if [[ "$?" -ne 0 && "$_TMP" == true ]]; then
- _TMP=false
- echo -e ' '${RED}'[!]'${RESET}" ${RED}No Internet access${RESET}. Manually fix the issue & re-run the script" 1>&2
- fi
- _CMD="$(ping -c 1 www.google.com &>/dev/null)"
- if [[ "$?" -ne 0 && "$_TMP" == true ]]; then
- _TMP=false
- echo -e ' '${RED}'[!]'${RESET}" ${RED}Possible DNS issues${RESET}(?). Manually fix the issue & re-run the script" 1>&2
- fi
- if [[ "$_TMP" == false ]]; then
- (dmidecode | grep -iq virtual) && echo -e " ${YELLOW}[i]${RESET} VM Detected. ${YELLOW}Try switching network adapter mode${RESET} (NAT/Bridged)"
- echo -e ' '${RED}'[!]'${RESET}" Quitting..." 1>&2
- exit 1
- fi
- fi
- #--- GitHub under DDoS?
- timeout 300 curl --progress -k -L -f "https://status.github.com/api/status.json" | grep -q "good" || (echo -e ' '${RED}'[!]'${RESET}" ${RED}GitHub is currently having issues${RESET}. ${BOLD}Lots may fail${RESET}. See: https://status.github.com/" 1>&2 && sleep 10s)
- ##### Enable default network repositories ~ http://docs.kali.org/general-use/kali-linux-sources-list-repositories
- echo -e "\n ${GREEN}[+]${RESET} Enabling default kali ${GREEN}network repositories${RESET} ~ ...if they were not selected during installation"
- #--- Add network repositories
- file=/etc/apt/sources.list; [ -e "${file}" ] && cp -n $file{,.bkup}
- ([[ -e "${file}" && "$(tail -c 1 ${file})" != "" ]]) && echo >> "${file}"
- #--- Main
- grep -q 'deb .* sana main non-free contrib' "${file}" 2>/dev/null || echo "deb http://http.kali.org/kali sana main non-free contrib" >> "${file}"
- grep -q 'deb-src .* sana main non-free contrib' "${file}" 2>/dev/null || echo "deb-src http://http.kali.org/kali sana main non-free contrib" >> "${file}"
- #--- Security
- grep -q 'deb .* sana/updates main contrib non-free' "${file}" 2>/dev/null || echo "deb http://security.kali.org/kali-security sana/updates main contrib non-free" >> "${file}"
- grep -q 'deb-src .* sana/updates main contrib non-free' "${file}" 2>/dev/null || echo "deb-src http://security.kali.org/kali-security sana/updates main contrib non-free" >> "${file}"
- #--- Disable CD repositories
- sed -i '/kali/ s/^\( \|\t\|\)deb cdrom/#deb cdrom/g' "${file}"
- #--- Update
- apt-get -qq update
- if [[ "$?" -ne 0 ]]; then
- echo -e ' '${RED}'[!]'${RESET}" There was an ${RED}issue accessing network repositories${RESET}" 1>&2
- echo -e " ${YELLOW}[i]${RESET} Are the remote network repositories ${YELLOW}currently being sync'd${RESET}?"
- echo -e " ${YELLOW}[i]${RESET} YOUR local ${YELLOW}network repository information${RESET} (Geo-IP based):"
- curl -sI http://http.kali.org/README
- exit 1
- fi
- ##### Install kernel headers
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}kernel headers${RESET}"
- apt-get -y -qq install make gcc "linux-headers-$(uname -r)" || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- if [[ $? -ne 0 ]]; then
- echo -e ' '${RED}'[!]'${RESET}" There was an ${RED}issue installing kernel headers${RESET}" 1>&2
- echo -e " ${YELLOW}[i]${RESET} Are you ${YELLOW}USING${RESET} the ${YELLOW}latest kernel${RESET}?"
- echo -e " ${YELLOW}[i]${RESET} ${YELLOW}Reboot your machine${RESET}"
- exit 1
- fi
- ##### (Optional) Check to see if Kali is in a VM. If so, install "Virtual Machine Addons/Tools" for a "better" virtual experiment
- if [ -e "/etc/vmware-tools" ]; then
- echo -e "\n "${RED}'[!]'${RESET}" VMware Tools is ${RED}already installed${RESET}. Skipping..." 1>&2
- elif (dmidecode | grep -iq vmware); then
- ##### Install virtual machines tools ~ http://docs.kali.org/general-use/install-vmware-tools-kali-guest
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}virtual machine tools${RESET}"
- #--- VM -> Install VMware Tools.
- mkdir -p /mnt/cdrom/
- umount -f /mnt/cdrom 2>/dev/null
- sleep 2s
- mount -o ro /dev/cdrom /mnt/cdrom 2>/dev/null; _mount="$?" # This will only check the first CD drive (if there are multiple bays)
- sleep 2s
- file=$(find /mnt/cdrom/ -maxdepth 1 -type f -name 'VMwareTools-*.tar.gz' -print -quit)
- ([[ "${_mount}" == 0 && -z "${file}" ]]) && echo -e ' '${RED}'[!]'${RESET}' Incorrect CD/ISO mounted' 1>&2
- if [[ "${_mount}" == 0 && -n "${file}" ]]; then # If there is a CD in (and its right!), try to install native Guest Additions
- echo -e ' '${YELLOW}'[i]'${RESET}' Patching & using "native VMware tools"'
- apt-get -y -qq install make gcc "linux-headers-$(uname -r)" git sudo || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- git clone -q https://github.com/rasa/vmware-tools-patches.git /tmp/vmware-tools-patches || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- cp -f "${file}" /tmp/vmware-tools-patches/downloads/
- pushd /tmp/vmware-tools-patches/ >/dev/null
- bash untar-and-patch-and-compile.sh
- popd >/dev/null
- umount -f /mnt/cdrom 2>/dev/null
- /usr/bin/vmware-user
- else # The fallback is 'open vm tools' ~ http://open-vm-tools.sourceforge.net/about.php
- echo -e " ${YELLOW}[i]${RESET} VMware Tools CD/ISO isn't mounted"
- echo -e " ${YELLOW}[i]${RESET} Skipping 'Native VMware Tools', switching to 'Open VM Tools'"
- apt-get -y -qq install open-vm-tools open-vm-tools-desktop open-vm-tools-dkms || echo -e ' '${RED}'[!] Issue when git cloning'${RESET} 1>&2
- apt-get -y -qq install make || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} # nags afterwards
- fi
- elif [ -e "/etc/init.d/vboxadd" ]; then
- echo -e "\n "${RED}'[!]'${RESET}" VirtualBox Guest Additions is ${RED}already installed${RESET}. Skipping..." 1>&2
- elif (dmidecode | grep -iq virtualbox); then
- ##### (Optional) Installing Virtualbox Guest Additions. Note: Need VirtualBox 4.2.xx+ (http://docs.kali.org/general-use/kali-linux-virtual-box-guest)
- echo -e "\n ${GREEN}[+]${RESET} (Optional) Installing ${GREEN}VirtualBox Guest Additions${RESET}"
- #--- Devices -> Install Guest Additions CD image...
- mkdir -p /mnt/cdrom/
- umount -f /mnt/cdrom 2>/dev/null
- sleep 2s
- mount -o ro /dev/cdrom /mnt/cdrom 2>/dev/null; _mount=$? # Only checks first CD drive (if multiple)
- sleep 2s
- file=/mnt/cdrom/VBoxLinuxAdditions.run
- if [[ "${_mount}" == 0 && -e "${file}" ]]; then
- apt-get -y -qq install make gcc "linux-headers-$(uname -r)" || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- cp -f "${file}" /tmp/
- chmod -f 0755 /tmp/VBoxLinuxAdditions.run
- /tmp/VBoxLinuxAdditions.run --nox11
- umount -f /mnt/cdrom 2>/dev/null
- #elif [[ "${_mount}" == 0 ]]; then
- else
- echo -e ' '${RED}'[!]'${RESET}' Incorrect CD/ISO mounted. Skipping...' 1>&2
- #apt-get -y -qq install virtualbox-guest-x11
- fi
- fi
- ##### Check to see if there is a second Ethernet card (if so, set an static IP address)
- ip addr show eth1 &>/dev/null
- if [[ "$?" == 0 ]]; then
- ##### Set a static IP address (192.168.155.175/24) on eth1
- echo -e "\n ${GREEN}[+]${RESET} Setting a ${GREEN}static IP address${RESET} (${BOLD}192.168.155.175/24${RESET}) on ${BOLD}eth1${RESET}"
- ip addr add 192.168.155.175/24 dev eth1 2>/dev/null
- route delete default gw 192.168.155.1 2>/dev/null
- file=/etc/network/interfaces.d/eth1.cfg; [ -e "${file}" ] && cp -n $file{,.bkup}
- grep -q '^iface eth1 inet static' "${file}" 2>/dev/null || cat <<EOF > "${file}"
- auto eth1
- iface eth1 inet static
- address 192.168.155.175
- netmask 255.255.255.0
- gateway 192.168.155.1
- post-up route delete default gw 192.168.155.1
- EOF
- fi
- ##### Set static & protecting DNS name servers. Note: May cause issues with forced values (e.g. captive portals etc)
- if [ "${hardenDNS}" != "false" ]; then
- echo -e "\n ${GREEN}[+]${RESET} Setting static & protecting ${GREEN}DNS name servers${RESET}"
- file=/etc/resolv.conf; [ -e "${file}" ] && cp -n $file{,.bkup}
- chattr -i "${file}" 2>/dev/null
- #--- Remove duplicate results
- #uniq "${file}" > "$file.new"; mv $file{.new,}
- #--- Use OpenDNS DNS
- #echo -e 'nameserver 208.67.222.222\nnameserver 208.67.220.220' > "${file}"
- #--- Use Google DNS
- echo -e 'nameserver 8.8.8.8\nnameserver 8.8.4.4' > "${file}"
- #--- Add domain
- #echo -e "domain ${domainName}\n#search ${domainName}" >> "${file}"
- #--- Protect it
- chattr +i "${file}" 2>/dev/null
- else
- echo -e "\n ${YELLOW}[i]${RESET} ${YELLOW}Skipping DNS${RESET} (missing: '$0 ${BOLD}--dns${RESET}')..." 1>&2
- fi
- ##### Update location information - set either value to "" to skip.
- echo -e "\n ${GREEN}[+]${RESET} Updating ${GREEN}location information${RESET}"
- [ "${keyboardApple}" != "false" ] && echo -e "\n ${GREEN}[+]${RESET} Applying ${GREEN}Apple hardware${RESET} profile"
- #keyboardLayout="gb" # Great Britain
- #timezone="Europe/London" # London, Europe
- #[ -z "${timezone}" ] && timezone=Etc/UTC #Etc/GMT vs Etc/UTC vs UTC vs Europe/London
- #--- Configure keyboard layout
- if [[ -n "${keyboardLayout}" ]]; then
- echo -e "\n ${GREEN}[+]${RESET} Updating ${GREEN}location information${RESET} ~ keyboard layout (${BOLD}${keyboardLayout}${RESET})"
- geoip_keyboard=$(curl -s http://ifconfig.io/country_code | tr '[:upper:]' '[:lower:]')
- [ "${geoip_keyboard}" != "${keyboardLayout}" ] && echo -e " ${YELLOW}[i]${RESET} Keyboard layout (${BOLD}${keyboardLayout}${RESET}}) doesn't match what's been detected via GeoIP (${BOLD}${geoip_keyboard}${RESET}})"
- file=/etc/default/keyboard; #[ -e "${file}" ] && cp -n $file{,.bkup}
- sed -i 's/XKBLAYOUT=".*"/XKBLAYOUT="'${keyboardLayout}'"/' "${file}"
- [ "${keyboardApple}" != "false" ] && sed -i 's/XKBVARIANT=".*"/XKBVARIANT="mac"/' "${file}" # Enable if you are using Apple based products.
- #dpkg-reconfigure -f noninteractive keyboard-configuration #dpkg-reconfigure console-setup #dpkg-reconfigure keyboard-configuration -u # Need to restart xserver for effect
- else
- echo -e " ${YELLOW}[i]${RESET} ${YELLOW}Skipping keyboard layout${RESET} (missing: '$0 ${BOLD}--keyboard <value>${RESET}')..." 1>&2
- fi
- #--- Changing time zone
- if [[ -n "${timezone}" ]]; then
- echo -e "\n ${GREEN}[+]${RESET} Updating ${GREEN}location information${RESET} ~ time zone (${BOLD}${timezone}${RESET})"
- echo "${timezone}" > /etc/timezone
- ln -sf "/usr/share/zoneinfo/$(cat /etc/timezone)" /etc/localtime
- dpkg-reconfigure -f noninteractive tzdata
- else
- echo -e " ${YELLOW}[i]${RESET} ${YELLOW}Skipping time zone${RESET} (missing: '$0 ${BOLD}--timezone <value>${RESET}')..." 1>&2
- fi
- #--- Setting locale # Can't do due to user input
- #sed -i 's/^# en_/en_/' /etc/locale.gen #en_GB en_US
- #locale-gen
- ##echo -e 'LC_ALL=en_US.UTF-8\nLANG=en_US.UTF-8\nLANGUAGE=en_US:en' > /etc/default/locale
- #dpkg-reconfigure -f noninteractive tzdata
- ##locale -a # Check
- #--- Installing ntp
- apt-get -y -qq install ntp ntpdate || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- #--- Configuring ntp
- #file=/etc/default/ntp; [ -e "${file}" ] && cp -n $file{,.bkup}
- #grep -q "interface=127.0.0.1" "${file}" || sed -i "s/NTPD_OPTS='/NTPD_OPTS='--interface=127.0.0.1 /" "${file}"
- #--- Update time
- ntpdate -b -s -u pool.ntp.org
- #--- Start service
- systemctl restart ntp
- #--- Remove from start up
- systemctl disable ntp 2>/dev/null
- #--- Check
- #date
- #--- Only used for stats at the end
- start_time=$(date +%s)
- if [ "${freezeDEB}" != "false" ]; then
- ##### Don't ever update these packages
- echo -e "\n ${GREEN}[+]${RESET} ${GREEN}Don't update${RESET} these packages:"
- for x in metasploit-framework; do
- echo -e " ${YELLOW}[i]${RESET} + ${x}"
- echo "${x} hold" | dpkg --set-selections # To update: echo "{$} install" | dpkg --set-selections
- done
- fi
- if [ "${rolling}" != "false" ]; then
- ##### Enable default network repositories ~ http://docs.kali.org/general-use/kali-linux-sources-list-repositories
- echo -e "\n ${GREEN}[+]${RESET} Enabling ${GREEN}rolling repositories${RESET} ~ ${BOLD}Should only be used by advanced users${RESET}! Using this means tools will be updated more frequently"
- #--- Add network repositories
- file=/etc/apt/sources.list; [ -e "${file}" ] && cp -n $file{,.bkup}
- ([[ -e "${file}" && "$(tail -c 1 ${file})" != "" ]]) && echo >> "${file}"
- #--- Enable Rolling
- ([[ -e "${file}" && "$(tail -c 1 ${file})" != "" ]]) && echo >> "${file}"
- grep -q 'deb .* kali-rolling main contrib non-free' "${file}" 2>/dev/null || echo -e "\n\n# Kali Rolling\ndeb http://http.kali.org/kali kali-rolling main contrib non-free" >> "${file}"
- grep -q 'deb-src .* kali-rolling main contrib non-free' "${file}" 2>/dev/null || echo -e "deb-src http://http.kali.org/kali kali-rolling main contrib non-free" >> "${file}"
- #grep -q 'sana-proposed-updates main contrib non-free' "${file}" 2>/dev/null || echo -e "deb http://repo.kali.org/kali sana-proposed-updates main contrib non-free\ndeb-src http://repo.kali.org/kali sana-proposed-updates main contrib non-free" >> "${file}"
- #--- Disable main repo
- sed -i 's_deb http://http.kali.org/kali sana main_#deb http://http.kali.org/kali sana main_' ${file}
- sed -i 's_deb-src http://http.kali.org/kali sana main_#deb-src http://http.kali.org/kali sana main_' ${file}
- #--- Update
- apt-get -qq update
- if [[ "$?" -ne 0 ]]; then
- echo -e ' '${RED}'[!]'${RESET}" There was an ${RED}issue accessing network repositories${RESET}" 1>&2
- echo -e " ${YELLOW}[i]${RESET} Are the remote network repositories ${YELLOW}currently being sync'd${RESET}?"
- echo -e " ${YELLOW}[i]${RESET} YOUR ${YELLOW}network repositories information${RESET}:"
- curl -sI http://http.kali.org/README
- exit 1
- fi
- fi
- ##### Update OS from network repositories
- echo -e "\n ${GREEN}[+]${RESET} ${GREEN}Updating OS${RESET} from network repositories ~ this ${BOLD}may take a while${RESET} depending on your Internet connection & Kali version/age"
- for FILE in clean autoremove; do apt-get -y -qq "${FILE}"; done # Clean up clean remove autoremove autoclean
- export DEBIAN_FRONTEND=noninteractive
- apt-get -qq update && APT_LISTCHANGES_FRONTEND=none apt-get -o Dpkg::Options::="--force-confnew" -y dist-upgrade --fix-missing || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- #--- Cleaning up temp stuff
- for FILE in clean autoremove; do apt-get -y -qq "${FILE}"; done # Clean up - clean remove autoremove autoclean
- #--- Enable bleeding edge ~ http://www.kali.org/kali-monday/bleeding-edge-kali-repositories/
- #file=/etc/apt/sources.list; [ -e "${file}" ] && cp -n $file{,.bkup}
- #grep -q 'kali-bleeding-edge' "${file}" 2>/dev/null || echo -e "\n\n## Bleeding edge\ndeb http://repo.kali.org/kali sana-bleeding-edge main" >> "${file}"
- #apt-get -qq update && apt-get -y -qq upgrade
- #--- Check kernel stuff
- _TMP=$(dpkg -l | grep linux-image- | grep -vc meta)
- if [[ "${_TMP}" -gt 1 ]]; then
- echo -e "\n ${YELLOW}[i]${RESET} Detected multiple kernels installed"
- TMP=$(dpkg -l | grep linux-image | grep -v meta | sort -t '.' -k 2 -g | tail -n 1 | grep "$(uname -r)")
- [[ -z "${_TMP}" ]] && echo -e ' '${RED}'[!]'${RESET}' You are '${RED}'not using the latest kernel'${RESET} 1>&2 && echo -e " ${YELLOW}[i]${RESET} You have it downloaded & installed, ${YELLOW}just not using it${RESET}. You ${YELLOW}need to reboot${RESET}" && exit 1
- echo -e " ${YELLOW}[i]${RESET} Clean up: apt-get remove --purge $(dpkg -l 'linux-image-*' | sed '/^ii/!d;/'"$(uname -r | sed "s/\(.*\)-\([^0-9]\+\)/\1/")"'/d;s/^[^ ]* [^ ]* \([^ ]*\).*/\1/;/[0-9]/!d')" # DO NOT RUN IF NOT USING THE LASTEST KERNEL!
- fi
- ##### Install "kali full" meta packages (default tool selection)
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}kali-linux-full${RESET} meta-package ~ this ${BOLD}may take a while${RESET} depending on your Kali version (e.g. ARM, light, mini or docker...)"
- #--- Kali's default tools ~ https://www.kali.org/news/kali-linux-metapackages/
- apt-get -y -qq install kali-linux-full || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- ##### Fix audio issues
- echo -e "\n ${GREEN}[+]${RESET} Fixing ${GREEN}audio${RESET} issues"
- #--- Unmute on startup
- apt-get -y -qq install alsa-utils || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- #--- Set volume now
- amixer set Master unmute >/dev/null
- amixer set Master 50% >/dev/null
- ##### Configure GRUB
- echo -e "\n ${GREEN}[+]${RESET} Configuring ${GREEN}GRUB${RESET} ~ boot manager"
- grubTimeout=5
- (dmidecode | grep -iq virtual) && grubTimeout=1 # Much less if we are in a VM
- file=/etc/default/grub; [ -e "${file}" ] && cp -n $file{,.bkup}
- sed -i 's/^GRUB_TIMEOUT=.*/GRUB_TIMEOUT='${grubTimeout}'/' "${file}" # Time out (lower if in a virtual machine, else possible dual booting)
- sed -i 's/^GRUB_CMDLINE_LINUX_DEFAULT=.*/GRUB_CMDLINE_LINUX_DEFAULT=""/' "${file}" # TTY resolution #GRUB_CMDLINE_LINUX_DEFAULT="vga=0x0318 quiet" (crashes VM/vmwgfx) (See Cosmetics)
- update-grub
- ###### Disable login manager (console login - non GUI) ***
- #echo -e "\n ${GREEN}[+]${RESET} ${GREEN}Disabling GUI${RESET} login screen"
- #--- Disable GUI login screen
- #systemctl set-default multi-user.target # ...or: file=/etc/X11/default-display-manager; [ -e "${file}" ] && cp -n $file{,.bkup} ; echo /bin/true > "${file}" # ...or: mv -f /etc/rc2.d/S19gdm3 /etc/rc2.d/K17gdm # ...or: apt-get -y -qq install chkconfig; chkconfig gdm3 off
- #--- Enable auto (gui) login
- #file=/etc/gdm3/daemon.conf; [ -e "${file}" ] && cp -n $file{,.bkup}
- #sed -i 's/^.*AutomaticLoginEnable = .*/AutomaticLoginEnable = true/' "${file}"
- #sed -i 's/^.*AutomaticLogin = .*/AutomaticLogin = root/' "${file}"
- #--- Shortcut for when you want to start GUI
- [ -e /usr/sbin/gdm3 ] && ln -sf /usr/sbin/gdm3 /usr/bin/startx
- ###### Configure startup ***
- #echo -e "\n ${GREEN}[+]${RESET} Configuring ${GREEN}startup${RESET} ~ randomize the hostname, eth0 & wlan0s MAC address"
- #--- Start up
- #file=/etc/rc.local; [ -e "${file}" ] && cp -n $file{,.bkup}
- #grep -q "macchanger" "${file}" 2>/dev/null || sed -i "s#^exit 0#for INT in eth0 wlan0; do\n $(which ip) link set \${INT} down\n $(which macchanger) -r \${INT} \&\& $(which sleep) 3s\n $(which ip) link set \${INT} up\ndone\n\n\nexit 0#" "${file}"
- #grep -q "hostname" "${file}" 2>/dev/null || sed -i "s#^exit 0#echo \$($(which cat) /dev/urandom | $(which tr) -dc 'A-Za-z' | $(which head) -c8) > /etc/hostname\nexit 0#" "${file}"
- #--- On demand
- file=/usr/local/bin/mac-rand; [ -e "${file}" ] && cp -n $file{,.bkup}
- cat <<EOF > "${file}" || echo -e ' '${RED}'[!] Issue with writing file'${RESET} 1>&2
- #!/bin/bash
- for INT in eth0 wlan0; do
- echo "[i] Randomizing: \${INT}"
- ifconfig \${INT} down
- macchanger -r \${INT} && sleep 3s
- ifconfig \${INT} up
- echo "--------------------"
- done
- exit 0
- EOF
- chmod -f 0500 "${file}"
- #--- Auto on interface change state (untested)
- #file=/etc/network/if-pre-up.d/macchanger; [ -e "${file}" ] && cp -n $file{,.bkup}
- #cat <<EOF > "${file}" || echo -e ' '${RED}'[!] Issue with writing file'${RESET} 1>&2
- ##!/bin/bash
- #[ "\${IFACE}" == "lo" ] && exit 0
- #ifconfig \${IFACE} down
- #macchanger -r \${IFACE}
- #ifconfig \${IFACE} up
- #exit 0
- #EOF
- #chmod -f 0500 "${file}"
- #--- Disable random MAC address on start up
- rm -f /etc/network/if-pre-up.d/macchanger
- if [[ $(which gnome-shell) ]]; then
- ##### Configure GNOME 3
- echo -e "\n ${GREEN}[+]${RESET} Configuring ${GREEN}GNOME 3${RESET} ~ desktop environment"
- export DISPLAY=:0.0 #[[ -z $SSH_CONNECTION ]] || export DISPLAY=:0.0
- #-- Gnome Extension - Frippery (https://extensions.gnome.org/extension/13/applications-menu/) *** TaskBar has more features
- mkdir -p ~/.local/share/gnome-shell/extensions/
- timeout 300 curl --progress -k -L -f "http://frippery.org/extensions/gnome-shell-frippery-0.9.3.tgz" > /tmp/frippery.tgz || echo -e ' '${RED}'[!]'${RESET}" Issue downloading frippery.tgz" 1>&2
- tar -zxf /tmp/frippery.tgz -C ~/
- #-- Gnome Extension - TopIcons (https://extensions.gnome.org/extension/495/topicons/) # Doesn't work with v3.10
- #mkdir -p ~/.local/share/gnome-shell/extensions/topIcons@adel.gadllah@gmail.com/
- #curl --progress -k -L -f "https://extensions.gnome.org/review/download/2236.shell-extension.zip" > /tmp/topIcons.zip || echo -e ' '${RED}'[!]'${RESET}" Issue downloading topIcons.zip" 1>&2
- #unzip -q -o /tmp/topIcons.zip -d ~/.local/share/gnome-shell/extensions/topIcons@adel.gadllah@gmail.com/
- #sed -i 's/"shell-version": \[$/"shell-version": \[ "3.10",/' ~/.local/share/gnome-shell/extensions/topIcons@adel.gadllah@gmail.com/metadata.json
- #-- Gnome Extension - icon-hider (https://github.com/ikalnitsky/gnome-shell-extension-icon-hider)
- mkdir -p "/usr/share/gnome-shell/extensions/"
- git clone -q https://github.com/ikalnitsky/gnome-shell-extension-icon-hider.git /usr/share/gnome-shell/extensions/icon-hider@kalnitsky.org/ || echo -e ' '${RED}'[!] Issue when git cloning'${RESET} 1>&2
- #-- Gnome Extension - Disable Screen Shield (https://extensions.gnome.org/extension/672/disable-screen-shield/) # Doesn't work with v3.10
- #mkdir -p "/usr/share/gnome-shell/extensions/"
- #git clone -q https://github.com/lgpasquale/gnome-shell-extension-disable-screenshield.git /usr/share/gnome-shell/extensions/disable-screenshield@lgpasquale.com/ || echo -e ' '${RED}'[!] Issue when git cloning'${RESET} 1>&2
- #-- Gnome Extension - TaskBar (https://extensions.gnome.org/extension/584/taskbar/)
- mkdir -p "/usr/share/gnome-shell/extensions/"
- git clone -q https://github.com/zpydr/gnome-shell-extension-taskbar.git /usr/share/gnome-shell/extensions/TaskBar@zpydr/ || echo -e ' '${RED}'[!] Issue when git cloning'${RESET} 1>&2
- #--- Gnome Extensions (Enable)
- for EXTENSION in "alternate-tab@gnome-shell-extensions.gcampax.github.com" "drive-menu@gnome-shell-extensions.gcampax.github.com" "TaskBar@zpydr" "Bottom_Panel@rmy.pobox.com" "Panel_Favorites@rmy.pobox.com" "Move_Clock@rmy.pobox.com" "icon-hider@kalnitsky.org"; do
- GNOME_EXTENSIONS=$(gsettings get org.gnome.shell enabled-extensions | sed 's_^.\(.*\).$_\1_')
- echo "${GNOME_EXTENSIONS}" | grep -q "${EXTENSION}" || gsettings set org.gnome.shell enabled-extensions "[${GNOME_EXTENSIONS}, '${EXTENSION}']"
- done
- #--- Gnome Extensions (Disable)
- for EXTENSION in "dash-to-dock@micxgx.gmail.com" "workspace-indicator@gnome-shell-extensions.gcampax.github.com"; do
- GNOME_EXTENSIONS=$(gsettings get org.gnome.shell enabled-extensions | sed "s_^.\(.*\).\$_\1_; s_, '${EXTENSION}'__")
- gsettings set org.gnome.shell enabled-extensions "[${GNOME_EXTENSIONS}]"
- done
- #--- Dash Dock (even though it should be disabled)
- dconf write /org/gnome/shell/extensions/dash-to-dock/dock-fixed true
- #--- TaskBar (Global)
- dconf write /org/gnome/shell/extensions/TaskBar/first-start false
- #--- TaskBar (without Frippery) ~ gsettings set org.gnome.shell enabled-extensions "[$( gsettings get org.gnome.shell enabled-extensions | sed "s_^.\(.*\).\$_\1_; s#, 'Bottom_Panel@rmy.pobox.com'##; s#, 'Panel_Favorites@rmy.pobox.com'##; s#, 'Move_Clock@rmy.pobox.com'##" )]"
- #dconf write /org/gnome/shell/extensions/TaskBar/bottom-panel true
- #dconf write /org/gnome/shell/extensions/TaskBar/display-favorites true
- #dconf write /org/gnome/shell/extensions/TaskBar/hide-default-application-menu true
- #dconf write /org/gnome/shell/extensions/TaskBar/display-showapps-button false
- #dconf write /org/gnome/shell/extensions/TaskBar/appearance-selection "'showappsbutton'"
- #dconf write /org/gnome/shell/extensions/TaskBar/overview true
- #dconf write /org/gnome/shell/extensions/TaskBar/position-appview-button 2
- #dconf write /org/gnome/shell/extensions/TaskBar/position-desktop-button 0
- #dconf write /org/gnome/shell/extensions/TaskBar/position-favorites 3
- #dconf write /org/gnome/shell/extensions/TaskBar/position-max-right 4
- #dconf write /org/gnome/shell/extensions/TaskBar/position-tasks 4
- #dconf write /org/gnome/shell/extensions/TaskBar/position-workspace-button 1
- #dconf write /org/gnome/shell/extensions/TaskBar/separator-two true
- #dconf write /org/gnome/shell/extensions/TaskBar/separator-three true
- #dconf write /org/gnome/shell/extensions/TaskBar/separator-four true
- #dconf write /org/gnome/shell/extensions/TaskBar/separator-five true
- #dconf write /org/gnome/shell/extensions/TaskBar/separator-six true
- #dconf write /org/gnome/shell/extensions/TaskBar/separator-three-bottom true
- #dconf write /org/gnome/shell/extensions/TaskBar/separator-five-bottom true
- #dconf write /org/gnome/shell/extensions/TaskBar/appview-button-icon "'/usr/share/gnome-shell/extensions/TaskBar@zpydr/images/appview-button-default.svg'"
- #dconf write /org/gnome/shell/extensions/TaskBar/desktop-button-icon "'/usr/share/gnome-shell/extensions/TaskBar@zpydr/images/desktop-button-default.png'"
- #dconf write /org/gnome/shell/extensions/TaskBar/tray-button-icon "'/usr/share/gnome-shell/extensions/TaskBar@zpydr/images/bottom-panel-tray-button.svg'"
- #--- TaskBar (with Frippery)
- dconf write /org/gnome/shell/extensions/TaskBar/hide-default-application-menu true
- dconf write /org/gnome/shell/extensions/TaskBar/bottom-panel false
- dconf write /org/gnome/shell/extensions/TaskBar/display-favorites false
- dconf write /org/gnome/shell/extensions/TaskBar/display-desktop-button false
- dconf write /org/gnome/shell/extensions/TaskBar/display-showapps-button false
- dconf write /org/gnome/shell/extensions/TaskBar/display-tasks false
- dconf write /org/gnome/shell/extensions/TaskBar/display-workspace-button false
- dconf write /org/gnome/shell/extensions/TaskBar/overview false
- dconf write /org/gnome/shell/extensions/TaskBar/separator-two false
- dconf write /org/gnome/shell/extensions/TaskBar/separator-three false
- dconf write /org/gnome/shell/extensions/TaskBar/separator-four false
- dconf write /org/gnome/shell/extensions/TaskBar/separator-five false
- dconf write /org/gnome/shell/extensions/TaskBar/separator-six false
- #--- Workspaces
- gsettings set org.gnome.shell.overrides dynamic-workspaces false
- gsettings set org.gnome.desktop.wm.preferences num-workspaces 3
- #--- Top bar
- gsettings set org.gnome.desktop.interface clock-show-date true # Show date next to time
- #--- Dock settings
- gsettings set org.gnome.shell.extensions.dash-to-dock extend-height true # Set dock to use the full height
- gsettings set org.gnome.shell.extensions.dash-to-dock dock-position 'RIGHT' # Set dock to the right
- gsettings set org.gnome.shell.extensions.dash-to-dock dock-fixed true # Set dock to be always visible
- gsettings set org.gnome.shell favorite-apps "['gnome-terminal.desktop', 'org.gnome.Nautilus.desktop', 'iceweasel.desktop', 'kali-burpsuite.desktop', 'kali-msfconsole.desktop', 'geany.desktop']"
- #--- Keyboard shortcuts
- (dmidecode | grep -iq virtual) && gsettings set org.gnome.mutter overlay-key "Super_R" # Change 'super' key to right side (rather than left key)
- #--- Disable tracker service (But enables it in XFCE)
- gsettings set org.freedesktop.Tracker.Miner.Files crawling-interval -2
- gsettings set org.freedesktop.Tracker.Miner.Files enable-monitors false
- tracker-control -r
- #mkdir -p ~/.config/autostart/
- #cp -f /etc/xdg/autostart/tracker* ~/.config/autostart
- #sed -i 's/X-GNOME-Autostart-enabled=.*/X-GNOME-Autostart-enabled=false/' ~/.config/autostart/tracker*
- #--- Smaller title bar
- gsettings set org.gnome.desktop.wm.preferences titlebar-font "'Droid Bold 10'"
- gsettings set org.gnome.desktop.wm.preferences titlebar-uses-system-font false
- #--- Hide desktop icon
- dconf write /org/gnome/nautilus/desktop/computer-icon-visible false
- #--- Cosmetics - Change wallpaper & login (happens later)
- #cp -f /path/to/file.png /usr/share/images/desktop-base/kali-grub.png # Change grub boot
- #dconf write /org/gnome/desktop/screensaver/picture-uri "'file:///path/to/file.png'" # Change lock wallpaper (before swipe)
- #cp -f /path/to/file.png /usr/share/gnome-shell/theme/KaliLogin.png # Change login wallpaper (after swipe)
- #dconf write /org/gnome/desktop/background/picture-uri "'file:///path/to/file.png'" # Change desktop wallpaper
- gsettings set org.gnome.desktop.session idle-delay 0 # Disable swipe on lockscreen
- #--- Restart GNOME panel to apply/take effect (need to restart xserver for effect)
- #timeout 30 killall -q -w gnome-panel >/dev/null && gnome-shell --replace& # Still need to logoff!
- #reboot
- fi
- ##### Install XFCE4
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}XFCE4${RESET}${RESET} ~ desktop environment"
- export DISPLAY=:0.0 #[[ -z $SSH_CONNECTION ]] || export DISPLAY=:0.0
- apt-get -y -qq install curl || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- apt-get -y -qq install xfce4 xfce4-places-plugin || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} #xfce4-goodies xfce4-battery-plugin xfce4-mount-plugin
- #apt-get -y -qq install shiki-colors-xfwm-theme # theme from repos
- #--- Configuring XFCE
- mv -f /usr/bin/startx{,-gnome}
- ln -sf /usr/bin/startx{fce4,}
- mkdir -p ~/.config/xfce4/{desktop,menu,panel,xfconf,xfwm4}/
- mkdir -p ~/.config/xfce4/panel/launcher-{2,4,5,6,8,9}/
- mkdir -p ~/.config/xfce4/xfconf/xfce-perchannel-xml/
- cat <<EOF > ~/.config/xfce4/xfconf/xfce-perchannel-xml/xfce4-keyboard-shortcuts.xml || echo -e ' '${RED}'[!] Issue with writing file'${RESET} 1>&2
- <?xml version="1.0" encoding="UTF-8"?>
- <channel name="xfce4-keyboard-shortcuts" version="1.0">
- <property name="commands" type="empty">
- <property name="custom" type="empty">
- <property name="XF86Display" type="string" value="xfce4-display-settings --minimal"/>
- <property name="<Alt>F2" type="string" value="xfrun4"/>
- <property name="<Primary><Alt>t" type="string" value="/usr/bin/exo-open --launch TerminalEmulator"/>
- <property name="<Primary><Alt>Delete" type="string" value="xflock4"/>
- <property name="<Primary>Escape" type="string" value="xfdesktop --menu"/>
- <property name="<Super>p" type="string" value="xfce4-display-settings --minimal"/>
- <property name="override" type="bool" value="true"/>
- <property name="<Primary>space" type="string" value="xfce4-appfinder"/>
- </property>
- </property>
- <property name="xfwm4" type="empty">
- <property name="custom" type="empty">
- <property name="<Alt><Control>End" type="string" value="move_window_next_workspace_key"/>
- <property name="<Alt><Control>Home" type="string" value="move_window_prev_workspace_key"/>
- <property name="<Alt><Control>KP_1" type="string" value="move_window_workspace_1_key"/>
- <property name="<Alt><Control>KP_2" type="string" value="move_window_workspace_2_key"/>
- <property name="<Alt><Control>KP_3" type="string" value="move_window_workspace_3_key"/>
- <property name="<Alt><Control>KP_4" type="string" value="move_window_workspace_4_key"/>
- <property name="<Alt><Control>KP_5" type="string" value="move_window_workspace_5_key"/>
- <property name="<Alt><Control>KP_6" type="string" value="move_window_workspace_6_key"/>
- <property name="<Alt><Control>KP_7" type="string" value="move_window_workspace_7_key"/>
- <property name="<Alt><Control>KP_8" type="string" value="move_window_workspace_8_key"/>
- <property name="<Alt><Control>KP_9" type="string" value="move_window_workspace_9_key"/>
- <property name="<Alt><Shift>Tab" type="string" value="cycle_reverse_windows_key"/>
- <property name="<Alt>Delete" type="string" value="del_workspace_key"/>
- <property name="<Alt>F10" type="string" value="maximize_window_key"/>
- <property name="<Alt>F11" type="string" value="fullscreen_key"/>
- <property name="<Alt>F12" type="string" value="above_key"/>
- <property name="<Alt>F4" type="string" value="close_window_key"/>
- <property name="<Alt>F6" type="string" value="stick_window_key"/>
- <property name="<Alt>F7" type="string" value="move_window_key"/>
- <property name="<Alt>F8" type="string" value="resize_window_key"/>
- <property name="<Alt>F9" type="string" value="hide_window_key"/>
- <property name="<Alt>Insert" type="string" value="add_workspace_key"/>
- <property name="<Alt>space" type="string" value="popup_menu_key"/>
- <property name="<Alt>Tab" type="string" value="cycle_windows_key"/>
- <property name="<Control><Alt>d" type="string" value="show_desktop_key"/>
- <property name="<Control><Alt>Down" type="string" value="down_workspace_key"/>
- <property name="<Control><Alt>Left" type="string" value="left_workspace_key"/>
- <property name="<Control><Alt>Right" type="string" value="right_workspace_key"/>
- <property name="<Control><Alt>Up" type="string" value="up_workspace_key"/>
- <property name="<Control><Shift><Alt>Left" type="string" value="move_window_left_key"/>
- <property name="<Control><Shift><Alt>Right" type="string" value="move_window_right_key"/>
- <property name="<Control><Shift><Alt>Up" type="string" value="move_window_up_key"/>
- <property name="<Control>F1" type="string" value="workspace_1_key"/>
- <property name="<Control>F10" type="string" value="workspace_10_key"/>
- <property name="<Control>F11" type="string" value="workspace_11_key"/>
- <property name="<Control>F12" type="string" value="workspace_12_key"/>
- <property name="<Control>F2" type="string" value="workspace_2_key"/>
- <property name="<Control>F3" type="string" value="workspace_3_key"/>
- <property name="<Control>F4" type="string" value="workspace_4_key"/>
- <property name="<Control>F5" type="string" value="workspace_5_key"/>
- <property name="<Control>F6" type="string" value="workspace_6_key"/>
- <property name="<Control>F7" type="string" value="workspace_7_key"/>
- <property name="<Control>F8" type="string" value="workspace_8_key"/>
- <property name="<Control>F9" type="string" value="workspace_9_key"/>
- <property name="<Shift><Alt>Page_Down" type="string" value="lower_window_key"/>
- <property name="<Shift><Alt>Page_Up" type="string" value="raise_window_key"/>
- <property name="<Super>Tab" type="string" value="switch_window_key"/>
- <property name="Down" type="string" value="down_key"/>
- <property name="Escape" type="string" value="cancel_key"/>
- <property name="Left" type="string" value="left_key"/>
- <property name="Right" type="string" value="right_key"/>
- <property name="Up" type="string" value="up_key"/>
- <property name="override" type="bool" value="true"/>
- <property name="<Super>Left" type="string" value="tile_left_key"/>
- <property name="<Super>Right" type="string" value="tile_right_key"/>
- <property name="<Super>Up" type="string" value="maximize_window_key"/>
- </property>
- </property>
- <property name="providers" type="array">
- <value type="string" value="xfwm4"/>
- <value type="string" value="commands"/>
- </property>
- </channel>
- EOF
- cat <<EOF > ~/.config/xfce4/panel/launcher-2/13684522758.desktop || echo -e ' '${RED}'[!] Issue with writing file'${RESET} 1>&2
- [Desktop Entry]
- Name=Terminal Emulator
- Encoding=UTF-8
- Exec=exo-open --launch TerminalEmulator
- Icon=utilities-terminal
- StartupNotify=false
- Terminal=false
- Comment=Use the command line
- Type=Application
- Categories=Utility;X-XFCE;X-Xfce-Toplevel;
- X-XFCE-Source=file:///usr/share/applications/exo-terminal-emulator.desktop
- EOF
- cat <<EOF > ~/.config/xfce4/panel/launcher-4/14470234761.desktop || echo -e ' '${RED}'[!] Issue with writing file'${RESET} 1>&2
- [Desktop Entry]
- Name=wireshark
- Encoding=UTF-8
- Exec=sh -c "wireshark"
- Icon=wireshark
- StartupNotify=false
- Terminal=false
- Type=Application
- Categories=09-sniffing-spoofing;
- X-Kali-Package=wireshark
- X-XFCE-Source=file:///usr/share/applications/kali-wireshark.desktop
- EOF
- cat <<EOF > ~/.config/xfce4/panel/launcher-5/14470234962.desktop || echo -e ' '${RED}'[!] Issue with writing file'${RESET} 1>&2
- [Desktop Entry]
- Name=burpsuite
- Encoding=UTF-8
- Exec=sh -c "java -jar /usr/bin/burpsuite"
- Icon=burpsuite
- StartupNotify=false
- Terminal=false
- Type=Application
- Categories=03-webapp-analysis;03-06-web-application-proxies;
- X-Kali-Package=burpsuite
- X-XFCE-Source=file:///usr/share/applications/kali-burpsuite.desktop
- EOF
- cat <<EOF > ~/.config/xfce4/panel/launcher-6/13684522587.desktop || echo -e ' '${RED}'[!] Issue with writing file'${RESET} 1>&2
- [Desktop Entry]
- Name=Iceweasel
- Encoding=UTF-8
- Exec=iceweasel %u
- Icon=iceweasel
- StartupNotify=true
- Terminal=false
- Comment=Browse the World Wide Web
- GenericName=Web Browser
- X-GNOME-FullName=Iceweasel Web Browser
- X-MultipleArgs=false
- Type=Application
- Categories=Network;WebBrowser;
- MimeType=text/html;text/xml;application/xhtml+xml;application/xml;application/vnd.mozilla.xul+xml;application/rss+xml;application/rdf+xml;image/gif;image/jpeg;image/png;x-scheme-handler/http;x-scheme-handler/https;
- StartupWMClass=Iceweasel
- X-XFCE-Source=file:///usr/share/applications/iceweasel.desktop
- EOF
- cat <<EOF > ~/.config/xfce4/panel/launcher-8/13684522859.desktop || echo -e ' '${RED}'[!] Issue with writing file'${RESET} 1>&2
- [Desktop Entry]
- Name=Geany
- Encoding=UTF-8
- Exec=geany %F
- Icon=geany
- StartupNotify=true
- Terminal=false
- Comment=A fast and lightweight IDE using GTK2
- GenericName=Integrated Development Environment
- Type=Application
- Categories=GTK;Development;IDE;
- MimeType=text/plain;text/x-chdr;text/x-csrc;text/x-c++hdr;text/x-c++src;text/x-java;text/x-dsrc;text/x-pascal;text/x-perl;text/x-python;application/x-php;application/x-httpd-php3;application/x-httpd-php4;application/x-httpd-php5;application/xml;text/html;text/css;text/x-sql;text/x-diff;
- X-XFCE-Source=file:///usr/share/applications/geany.desktop
- EOF
- cat <<EOF > ~/.config/xfce4/panel/launcher-9/136845425410.desktop || echo -e ' '${RED}'[!] Issue with writing file'${RESET} 1>&2
- [Desktop Entry]
- Name=Application Finder
- Exec=xfce4-appfinder
- Icon=xfce4-appfinder
- StartupNotify=true
- Terminal=false
- Type=Application
- Categories=X-XFCE;Utility;
- Comment=Find and launch applications installed on your system
- X-XFCE-Source=file:///usr/share/applications/xfce4-appfinder.desktop
- EOF
- _TMP=""
- [ "${burpFree}" != "false" ] && _TMP="-t int -s 5"
- xfconf-query -n -a -c xfce4-panel -p /panels -t int -s 0
- xfconf-query --create --channel xfce4-panel --property /panels/panel-0/plugin-ids \
- -t int -s 1 -t int -s 2 -t int -s 3 -t int -s 4 ${_TMP} -t int -s 6 -t int -s 8 -t int -s 9 \
- -t int -s 10 -t int -s 11 -t int -s 13 -t int -s 15 -t int -s 16 -t int -s 17 -t int -s 19 -t int -s 20
- xfconf-query -n -c xfce4-panel -p /panels/panel-0/length -t int -s 100
- xfconf-query -n -c xfce4-panel -p /panels/panel-0/size -t int -s 30
- xfconf-query -n -c xfce4-panel -p /panels/panel-0/position -t string -s "p=6;x=0;y=0"
- xfconf-query -n -c xfce4-panel -p /panels/panel-0/position-locked -t bool -s true
- xfconf-query -n -c xfce4-panel -p /plugins/plugin-1 -t string -s applicationsmenu # application menu
- xfconf-query -n -c xfce4-panel -p /plugins/plugin-2 -t string -s launcher # terminal ID: 13684522758
- xfconf-query -n -c xfce4-panel -p /plugins/plugin-3 -t string -s places # places
- xfconf-query -n -c xfce4-panel -p /plugins/plugin-4 -t string -s launcher # wireshark ID: 14470234761
- [ "${burpFree}" != "false" ] && xfconf-query -n -c xfce4-panel -p /plugins/plugin-5 -t string -s launcher # burpsuite ID: 14470234962
- xfconf-query -n -c xfce4-panel -p /plugins/plugin-6 -t string -s launcher # iceweasel ID: 13684522587
- xfconf-query -n -c xfce4-panel -p /plugins/plugin-8 -t string -s launcher # geany ID: 13684522859 (geany gets installed later)
- xfconf-query -n -c xfce4-panel -p /plugins/plugin-9 -t string -s launcher # search ID: 136845425410
- xfconf-query -n -c xfce4-panel -p /plugins/plugin-10 -t string -s tasklist
- xfconf-query -n -c xfce4-panel -p /plugins/plugin-11 -t string -s separator
- xfconf-query -n -c xfce4-panel -p /plugins/plugin-13 -t string -s mixer # audio
- xfconf-query -n -c xfce4-panel -p /plugins/plugin-15 -t string -s systray
- xfconf-query -n -c xfce4-panel -p /plugins/plugin-16 -t string -s actions
- xfconf-query -n -c xfce4-panel -p /plugins/plugin-17 -t string -s clock
- xfconf-query -n -c xfce4-panel -p /plugins/plugin-19 -t string -s pager
- xfconf-query -n -c xfce4-panel -p /plugins/plugin-20 -t string -s showdesktop
- # application menu
- xfconf-query -n -c xfce4-panel -p /plugins/plugin-1/show-tooltips -t bool -s true
- xfconf-query -n -c xfce4-panel -p /plugins/plugin-1/show-button-title -t bool -s false
- # terminal
- xfconf-query -n -c xfce4-panel -p /plugins/plugin-2/items -t string -s "13684522758.desktop" -a
- # places
- xfconf-query -n -c xfce4-panel -p /plugins/plugin-3/mount-open-volumes -t bool -s true
- # wireshark
- xfconf-query -n -c xfce4-panel -p /plugins/plugin-4/items -t string -s "14470234761.desktop" -a
- # burp
- [ "${burpFree}" != "false" ] && xfconf-query -n -c xfce4-panel -p /plugins/plugin-5/items -t string -s "14470234962.desktop" -a
- # iceweasel
- xfconf-query -n -c xfce4-panel -p /plugins/plugin-6/items -t string -s "13684522587.desktop" -a
- # geany
- xfconf-query -n -c xfce4-panel -p /plugins/plugin-8/items -t string -s "13684522859.desktop" -a
- # search
- xfconf-query -n -c xfce4-panel -p /plugins/plugin-9/items -t string -s "136845425410.desktop" -a
- # tasklist (& separator - required for padding)
- xfconf-query -n -c xfce4-panel -p /plugins/plugin-10/show-labels -t bool -s true
- xfconf-query -n -c xfce4-panel -p /plugins/plugin-10/show-handle -t bool -s false
- xfconf-query -n -c xfce4-panel -p /plugins/plugin-11/style -t int -s 0
- xfconf-query -n -c xfce4-panel -p /plugins/plugin-11/expand -t bool -s true
- # systray
- xfconf-query -n -c xfce4-panel -p /plugins/plugin-15/show-frame -t bool -s false
- # actions
- xfconf-query -n -c xfce4-panel -p /plugins/plugin-16/appearance -t int -s 1
- xfconf-query -n -c xfce4-panel -p /plugins/plugin-16/items -t string -s "+logout-dialog" -t string -s "-switch-user" -t string -s "-separator" -t string -s "-logout" -t string -s "+lock-screen" -t string -s "+hibernate" -t string -s "+suspend" -t string -s "+restart" -t string -s "+shutdown" -a
- # clock
- xfconf-query -n -c xfce4-panel -p /plugins/plugin-17/show-frame -t bool -s false
- xfconf-query -n -c xfce4-panel -p /plugins/plugin-17/mode -t int -s 2
- xfconf-query -n -c xfce4-panel -p /plugins/plugin-17/digital-format -t string -s "%R, %Y-%m-%d"
- # pager / workspace
- xfconf-query -n -c xfce4-panel -p /plugins/plugin-19/miniature-view -t bool -s true
- xfconf-query -n -c xfce4-panel -p /plugins/plugin-19/rows -t int -s 1
- xfconf-query -n -c xfwm4 -p /general/workspace_count -t int -s 3
- #--- Theme options
- xfconf-query -n -c xsettings -p /Net/ThemeName -s "Kali-X"
- xfconf-query -n -c xsettings -p /Net/IconThemeName -s "Vibrancy-Kali"
- xfconf-query -n -c xsettings -p /Gtk/MenuImages -t bool -s true
- xfconf-query -n -c xfce4-panel -p /plugins/plugin-1/button-icon -t string -s "kali-menu"
- #--- Window management
- xfconf-query -n -c xfwm4 -p /general/snap_to_border -t bool -s true
- xfconf-query -n -c xfwm4 -p /general/snap_to_windows -t bool -s true
- xfconf-query -n -c xfwm4 -p /general/wrap_windows -t bool -s false
- xfconf-query -n -c xfwm4 -p /general/wrap_workspaces -t bool -s false
- xfconf-query -n -c xfwm4 -p /general/click_to_focus -t bool -s false
- #--- TouchPad
- #xfconf-query -n -c pointers -p /SynPS2_Synaptics_TouchPad/Properties/Synaptics_Edge_Scrolling -t int -s 0 -t int -s 0 -t int -s 0
- #xfconf-query -n -c pointers -p /SynPS2_Synaptics_TouchPad/Properties/Synaptics_Tap_Action -t int -s 0 -t int -s 0 -t int -s 0 -t int -s 0 -t int -s 0 -t int -s 0 -t int -s 0
- #xfconf-query -n -c pointers -p /SynPS2_Synaptics_TouchPad/Properties/Synaptics_Two-Finger_Scrolling -t int -s 1 -t int -s 1
- xfconf-query -n -c xfwm4 -p /general/click_to_focus -t bool -s true
- #--- Hide icons
- xfconf-query -n -c xfce4-desktop -p /desktop-icons/file-icons/show-filesystem -t bool -s false
- xfconf-query -n -c xfce4-desktop -p /desktop-icons/file-icons/show-home -t bool -s false
- xfconf-query -n -c xfce4-desktop -p /desktop-icons/file-icons/show-trash -t bool -s false
- xfconf-query -n -c xfce4-desktop -p /desktop-icons/file-icons/show-removable -t bool -s false
- #--- Start and exit values
- xfconf-query -n -c xfce4-session -p /splash/Engine -t string -s ""
- xfconf-query -n -c xfce4-session -p /shutdown/LockScreen -t bool -s true
- xfconf-query -n -c xfce4-session -p /general/SaveOnExit -t bool -s false
- #--- Power options
- #xfconf-query -n -c xfce4-power-manager -p /xfce4-power-manager/lid-action-on-ac -t int -s 1
- #xfconf-query -n -c xfce4-power-manager -p /xfce4-power-manager/lid-action-on-battery -t int -s 1
- #--- App Finder
- xfconf-query -n -c xfce4-appfinder -p /last/pane-position -t int -s 248
- xfconf-query -n -c xfce4-appfinder -p /last/window-height -t int -s 742
- xfconf-query -n -c xfce4-appfinder -p /last/window-width -t int -s 648
- #--- Remove Mail Reader from menu
- file=/usr/share/applications/exo-mail-reader.desktop #; [ -e "${file}" ] && cp -n $file{,.bkup}
- sed -i 's/^NotShowIn=*/NotShowIn=XFCE;/; s/^OnlyShowIn=XFCE;/OnlyShowIn=/' "${file}"
- grep -q "NotShowIn=XFCE" "${file}" || echo "NotShowIn=XFCE;" >> "${file}"
- #--- Enable compositing
- xfconf-query -n -c xfwm4 -p /general/use_compositing -t bool -s true
- xfconf-query -n -c xfwm4 -p /general/frame_opacity -t int -s 85
- ##### Configure XFCE4
- echo -e "\n ${GREEN}[+]${RESET} Configuring ${GREEN}XFCE4${RESET}${RESET} ~ desktop environment"
- #--- Disable user folders
- apt-get -y -qq install xdg-user-dirs || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- xdg-user-dirs-update
- file=/etc/xdg/user-dirs.conf; [ -e "${file}" ] && cp -n $file{,.bkup}
- sed -i 's/^enable=.*/enable=False/' "${file}" #sed -i 's/^XDG_/#XDG_/; s/^#XDG_DESKTOP/XDG_DESKTOP/;' ~/.config/user-dirs.dirs
- find ~/ -maxdepth 1 -mindepth 1 \( -name 'Documents' -o -name 'Music' -o -name 'Pictures' -o -name 'Public' -o -name 'Templates' -o -name 'Videos' \) -type d -empty -delete
- xdg-user-dirs-update
- #--- XFCE fixes for default applications
- mkdir -p ~/.local/share/applications/
- file=~/.local/share/applications/mimeapps.list; [ -e "${file}" ] && cp -n $file{,.bkup}
- [ ! -e "${file}" ] && echo '[Added Associations]' > "${file}"
- ([[ -e "${file}" && "$(tail -c 1 ${file})" != "" ]]) && echo >> "${file}"
- for VALUE in file trash; do
- sed -i 's#x-scheme-handler/'${VALUE}'=.*#x-scheme-handler/'${VALUE}'=exo-file-manager.desktop#' "${file}"
- grep -q '^x-scheme-handler/'${VALUE}'=' "${file}" 2>/dev/null || echo 'x-scheme-handler/'${VALUE}'=exo-file-manager.desktop' >> "${file}"
- done
- for VALUE in http https; do
- sed -i 's#^x-scheme-handler/'${VALUE}'=.*#x-scheme-handler/'${VALUE}'=exo-web-browser.desktop#' "${file}"
- grep -q '^x-scheme-handler/'${VALUE}'=' "${file}" 2>/dev/null || echo 'x-scheme-handler/'${VALUE}'=exo-web-browser.desktop' >> "${file}"
- done
- [[ $(tail -n 1 "${file}") != "" ]] && echo >> "${file}"
- file=~/.config/xfce4/helpers.rc; [ -e "${file}" ] && cp -n $file{,.bkup} #exo-preferred-applications #xdg-mime default
- sed -i 's#^FileManager=.*#FileManager=Thunar#' "${file}" 2>/dev/null
- grep -q '^FileManager=Thunar' "${file}" 2>/dev/null || echo 'FileManager=Thunar' >> "${file}"
- #--- Configure file browser - Thunar (need to re-login for effect)
- mkdir -p ~/.config/Thunar/
- file=~/.config/Thunar/thunarrc; [ -e "${file}" ] && cp -n $file{,.bkup}
- ([[ -e "${file}" && "$(tail -c 1 ${file})" != "" ]]) && echo >> "${file}"
- sed -i 's/LastShowHidden=.*/LastShowHidden=TRUE/' "${file}" 2>/dev/null || echo -e "[Configuration]\nLastShowHidden=TRUE" > ~/.config/Thunar/thunarrc;
- #--- XFCE fixes for GNOME Terminator (We do this later)
- #mkdir -p ~/.local/share/xfce4/helpers/
- #file=~/.local/share/xfce4/helpers/custom-TerminalEmulator.desktop; [ -e "${file}" ] && cp -n $file{,.bkup}
- #sed -i 's#^X-XFCE-CommandsWithParameter=.*#X-XFCE-CommandsWithParameter=/usr/bin/terminator --command="%s"#' "${file}" 2>/dev/null || cat <<EOF > "${file}"
- #[Desktop Entry]
- #NoDisplay=true
- #Version=1.0
- #Encoding=UTF-8
- #Type=X-XFCE-Helper
- #X-XFCE-Category=TerminalEmulator
- #X-XFCE-CommandsWithParameter=/usr/bin/terminator --command="%s"
- #Icon=terminator
- #Name=terminator
- #X-XFCE-Commands=/usr/bin/terminator
- #EOF
- #file=~/.config/xfce4/helpers.rc; [ -e "${file}" ] && cp -n $file{,.bkup} #exo-preferred-applications #xdg-mime default
- #sed -i 's#^TerminalEmulator=.*#TerminalEmulator=custom-TerminalEmulator#' "${file}"
- #grep -q '^TerminalEmulator=custom-TerminalEmulator' "${file}" 2>/dev/null || echo 'TerminalEmulator=custom-TerminalEmulator' >> "${file}"
- #--- XFCE fixes for Iceweasel (We do this later)
- #file=~/.config/xfce4/helpers.rc; [ -e "${file}" ] && cp -n $file{,.bkup} #exo-preferred-applications #xdg-mime default
- #sed -i 's#^WebBrowser=.*#WebBrowser=iceweasel#' "${file}"
- #grep -q '^WebBrowser=iceweasel' "${file}" 2>/dev/null || echo 'WebBrowser=iceweasel' >> "${file}"
- #--- Fix GNOME keyring issue
- file=/etc/xdg/autostart/gnome-keyring-pkcs11.desktop; #[ -e "${file}" ] && cp -n $file{,.bkup}
- grep -q "XFCE" "${file}" || sed -i 's/^OnlyShowIn=*/OnlyShowIn=XFCE;/' "${file}"
- #--- Disable tracker (issue is, enables it in GNOME)
- tracker-control -r
- mkdir -p ~/.config/autostart/
- rm -f ~/.config/autostart/tracker-*.desktop
- rm -f /etc/xdg/autostart/tracker-*.desktop
- #--- Set XFCE as default desktop manager
- file=~/.xsession; [ -e "${file}" ] && cp -n $file{,.bkup} #~/.xsession
- echo xfce4-session > "${file}"
- #--- Enable num lock at start up (might not be smart if you're using a smaller keyboard (laptop?)) ~ https://wiki.xfce.org/faq
- #xfconf-query -n -c keyboards -p /Default/Numlock -t bool -s true
- apt-get -y -qq install numlockx || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- file=/etc/xdg/xfce4/xinitrc; [ -e "${file}" ] && cp -n $file{,.bkup} #/etc/rc.local
- ([[ -e "${file}" && "$(tail -c 1 ${file})" != "" ]]) && echo >> "${file}"
- grep -q '^/usr/bin/numlockx' "${file}" 2>/dev/null || echo "/usr/bin/numlockx on" >> "${file}"
- #--- Add keyboard shortcut (CTRL+SPACE) to open Application Finder
- file=~/.config/xfce4/xfconf/xfce-perchannel-xml/xfce4-keyboard-shortcuts.xml #; [ -e "${file}" ] && cp -n $file{,.bkup}
- grep -q '<property name="<Primary>space" type="string" value="xfce4-appfinder"/>' "${file}" || sed -i 's#<property name="\<Alt\>F2" type="string" value="xfrun4"/>#<property name="\<Alt\>F2" type="string" value="xfrun4"/>\n <property name="\<Primary\>space" type="string" value="xfce4-appfinder"/>#' "${file}"
- #--- Add keyboard shortcut (CTRL+ALT+t) to start a terminal window
- file=~/.config/xfce4/xfconf/xfce-perchannel-xml/xfce4-keyboard-shortcuts.xml #; [ -e "${file}" ] && cp -n $file{,.bkup}
- grep -q '<property name="<Primary><Alt>t" type="string" value="/usr/bin/exo-open --launch TerminalEmulator"/>' "${file}" || sed -i 's#<property name="\<Alt\>F2" type="string" value="xfrun4"/>#<property name="\<Alt\>F2" type="string" value="xfrun4"/>\n <property name="\<Primary\>\<Alt\>t" type="string" value="/usr/bin/exo-open --launch TerminalEmulator"/>#' "${file}"
- #--- Create Conky refresh script (conky gets installed later)
- file=/usr/local/bin/conky-refresh; [ -e "${file}" ] && cp -n $file{,.bkup}
- cat <<EOF > "${file}" || echo -e ' '${RED}'[!] Issue with writing file'${RESET} 1>&2
- #!/bin/bash
- /usr/bin/timeout 5 /usr/bin/killall -9 -q -w conky
- /usr/bin/conky &
- EOF
- chmod -f 0500 "${file}"
- #--- Add keyboard shortcut (CTRL+r) to run the conky refresh script
- file=~/.config/xfce4/xfconf/xfce-perchannel-xml/xfce4-keyboard-shortcuts.xml #; [ -e "${file}" ] && cp -n $file{,.bkup}
- grep -q '<property name="<Primary>r" type="string" value="/usr/local/bin/conky-refresh"/>' "${file}" || sed -i 's#<property name="\<Alt\>F2" type="string" value="xfrun4"/>#<property name="\<Alt\>F2" type="string" value="xfrun4"/>\n <property name="\<Primary\>r" type="string" value="/usr/local/bin/conky-refresh"/>#' "${file}"
- #--- Remove any old sessions
- rm -f ~/.cache/sessions/*
- #--- Reload XFCE
- #/usr/bin/xfdesktop --reload
- ##### Cosmetics (themes & wallpapers)
- echo -e "\n ${GREEN}[+]${RESET} ${GREEN}Cosmetics${RESET}${RESET} ~ Making it different each startup"
- mkdir -p ~/.themes/
- export DISPLAY=:0.0 #[[ -z $SSH_CONNECTION ]] || export DISPLAY=:0.0
- #--- shiki-colors-light v1.3 XFCE4 theme
- timeout 300 curl --progress -k -L -f "http://xfce-look.org/CONTENT/content-files/142110-Shiki-Colors-Light-Menus.tar.gz" > /tmp/Shiki-Colors-Light-Menus.tar.gz || echo -e ' '${RED}'[!]'${RESET}" Issue downloading Shiki-Colors-Light-Menus.tar.gz" 1>&2 #***!!! hardcoded path!
- tar -zxf /tmp/Shiki-Colors-Light-Menus.tar.gz -C ~/.themes/
- #xfconf-query -n -c xsettings -p /Net/ThemeName -s "Shiki-Colors-Light-Menus"
- #xfconf-query -n -c xsettings -p /Net/IconThemeName -s "Vibrancy-Kali-Dark"
- #--- axiom / axiomd (May 18 2010) XFCE4 theme
- timeout 300 curl --progress -k -L -f "http://xfce-look.org/CONTENT/content-files/90145-axiom.tar.gz" > /tmp/axiom.tar.gz || echo -e ' '${RED}'[!]'${RESET}" Issue downloading axiom.tar.gz" 1>&2 #***!!! hardcoded path!
- tar -zxf /tmp/axiom.tar.gz -C ~/.themes/
- xfconf-query -n -c xsettings -p /Net/ThemeName -s "axiomd"
- xfconf-query -n -c xsettings -p /Net/IconThemeName -s "Vibrancy-Kali-Dark"
- #--- Get new desktop wallpaper
- mkdir -p /usr/share/wallpapers/
- timeout 300 curl --progress -k -L -f "http://www.kali.org/images/wallpapers-01/kali-wp-june-2014_1920x1080_A.png" > /usr/share/wallpapers/kali_blue_3d_a.png || echo -e ' '${RED}'[!]'${RESET}" Issue downloading kali_blue_3d_a.png" 1>&2 #***!!! hardcoded paths!
- timeout 300 curl --progress -k -L -f "http://www.kali.org/images/wallpapers-01/kali-wp-june-2014_1920x1080_B.png" > /usr/share/wallpapers/kali_blue_3d_b.png || echo -e ' '${RED}'[!]'${RESET}" Issue downloading kali_blue_3d_b.png" 1>&2
- timeout 300 curl --progress -k -L -f "http://www.kali.org/images/wallpapers-01/kali-wp-june-2014_1920x1080_G.png" > /usr/share/wallpapers/kali_black_honeycomb.png || echo -e ' '${RED}'[!]'${RESET}" Issue downloading kali_black_honeycomb.png" 1>&2
- timeout 300 curl --progress -k -L -f "http://imageshack.us/a/img17/4646/vzex.png" > /usr/share/wallpapers/kali_blue_splat.png || echo -e ' '${RED}'[!]'${RESET}" Issue downloading kali_blue_splat.png" 1>&2
- timeout 300 curl --progress -k -L -f "http://wallpaperstock.net/kali-linux_wallpapers_39530_1920x1080.jpg" > /usr/share/wallpapers/kali-linux_wallpapers_39530.png || echo -e ' '${RED}'[!]'${RESET}" Issue downloading kali-linux_wallpapers_39530.png" 1>&2
- timeout 300 curl --progress -k -L -f "http://em3rgency.com/wp-content/uploads/2012/12/Kali-Linux-faded-no-Dragon-small-text.png" > /usr/share/wallpapers/kali_black_clean.png || echo -e ' '${RED}'[!]'${RESET}" Issue downloading kali_black_clean.png" 1>&2
- timeout 300 curl --progress -k -L -f "http://www.hdwallpapers.im/download/kali_linux-wallpaper.jpg" > /usr/share/wallpapers/kali_black_stripes.jpg || echo -e ' '${RED}'[!]'${RESET}" Issue downloading kali_black_stripes.jpg" 1>&2
- timeout 300 curl --progress -k -L -f "http://fc01.deviantart.net/fs71/f/2011/118/e/3/bt___edb_wallpaper_by_xxdigipxx-d3f4nxv.png" > /usr/share/wallpapers/kali_bt_edb.jpg || echo -e ' '${RED}'[!]'${RESET}" Issue downloading kali_bt_edb.jpg" 1>&2
- timeout 300 curl --progress -k -L -f "http://pre07.deviantart.net/58d1/th/pre/i/2015/223/4/8/kali_2_0_alternate_wallpaper_by_xxdigipxx-d95800s.png" > /usr/share/wallpapers/kali_2_0_alternate_wallpaper.png || echo -e ' '${RED}'[!]'${RESET}" Issue downloading kali_2_0_alternate_wallpaper.png" 1>&2
- timeout 300 curl --progress -k -L -f "http://pre01.deviantart.net/4210/th/pre/i/2015/195/3/d/kali_2_0__personal__wp_by_xxdigipxx-d91c8dq.png" > /usr/share/wallpapers/kali_2_0__personal.png || echo -e ' '${RED}'[!]'${RESET}" Issue downloading kali_2_0__personal.png" 1>&2
- _TMP="$(find /usr/share/wallpapers/ -maxdepth 1 -type f \( -name 'kali_*' -o -empty \) | xargs -n1 file | grep -i 'HTML\|empty' | cut -d ':' -f1)"
- for FILE in $(echo ${_TMP}); do rm -f "${FILE}"; done
- [[ -e "/usr/share/wallpapers/kali_default-1440x900.jpg" ]] && ln -sf /usr/share/wallpapers/kali/contents/images/1440x900.png /usr/share/wallpapers/kali_default-1440x900.jpg # Kali1
- [[ -e "/usr/share/images/desktop-base/kali-wallpaper_1920x1080.png" ]] && ln -sf /usr/share/images/desktop-base/kali-wallpaper_1920x1080.png /usr/share/wallpapers/kali_default2.0-1920x1080.jpg # Kali2
- [[ -e "/usr/share/gnome-shell/theme/KaliLogin.png" ]] && cp -f /usr/share/gnome-shell/theme/KaliLogin.png /usr/share/wallpapers/KaliLogin2.0-login.jpg # Kali2
- #--- Change desktop wallpaper (single random pick - on each install). Note: For now...
- wallpaper=$(shuf -n1 -e /usr/share/wallpapers/kali_*) #wallpaper=/usr/share/wallpapers/kali_blue_splat.png
- xfconf-query -n -c xfce4-desktop -p /backdrop/screen0/monitor0/image-show -t bool -s true
- xfconf-query -n -c xfce4-desktop -p /backdrop/screen0/monitor0/image-path - string -s "${wallpaper}" # XFCE
- dconf write /org/gnome/desktop/background/picture-uri "'file://${wallpaper}'" # GNOME
- #--- Change login wallpaper
- dconf write /org/gnome/desktop/screensaver/picture-uri "'file://${wallpaper}'" # Change lock wallpaper (before swipe)
- cp -f "${wallpaper}" /usr/share/gnome-shell/theme/KaliLogin.png # Change login wallpaper (after swipe)
- #--- New wallpaper - add to startup (random each login)
- file=/usr/local/bin/rand-wallpaper; [ -e "${file}" ] && cp -n $file{,.bkup}
- cat <<EOF > "${file}" || echo -e ' '${RED}'[!] Issue with writing file'${RESET} 1>&2
- #!/bin/bash
- wallpaper="\$(shuf -n1 -e \$(find /usr/share/wallpapers/ -maxdepth 1 -type f -name 'kali_*'))"
- /usr/bin/xfconf-query -n -c xfce4-desktop -p /backdrop/screen0/monitor0/image-path -t string -s \${wallpaper}
- /usr/bin/dconf write /org/gnome/desktop/screensaver/picture-uri "'file://\${wallpaper}'" # Change lock wallpaper (before swipe)
- cp -f "\${wallpaper}" /usr/share/gnome-shell/theme/KaliLogin.png # Change login wallpaper (after swipe)
- /usr/bin/xfdesktop --reload 2>/dev/null
- EOF
- chmod -f 0500 "${file}"
- mkdir -p ~/.config/autostart/
- file=~/.config/autostart/wallpaper.desktop; [ -e "${file}" ] && cp -n $file{,.bkup}
- cat <<EOF > "${file}" || echo -e ' '${RED}'[!] Issue with writing file'${RESET} 1>&2
- [Desktop Entry]
- Type=Application
- Exec=/usr/local/bin/rand-wallpaper
- Hidden=false
- NoDisplay=false
- X-GNOME-Autostart-enabled=true
- Name=wallpaper
- EOF
- #--- Remove old temp files
- rm -f /tmp/Shiki-Colors-Light-Menus.tar* /tmp/axiom.tar*
- ##### Configure file Note: need to restart xserver for effect
- echo -e "\n ${GREEN}[+]${RESET} Configuring ${GREEN}file${RESET} (Nautilus/Thunar) ~ GUI file system navigation"
- mkdir -p ~/.config/gtk-2.0/
- file=~/.config/gtk-2.0/gtkfilechooser.ini; [ -e "${file}" ] && cp -n $file{,.bkup}
- ([[ -e "${file}" && "$(tail -c 1 ${file})" != "" ]]) && echo >> "${file}"
- sed -i 's/^.*ShowHidden.*/ShowHidden=true/' "${file}" 2>/dev/null || cat <<EOF > "${file}"
- [Filechooser Settings]
- LocationMode=path-bar
- ShowHidden=true
- ExpandFolders=false
- ShowSizeColumn=true
- GeometryX=66
- GeometryY=39
- GeometryWidth=780
- GeometryHeight=618
- SortColumn=name
- SortOrder=ascending
- EOF
- dconf write /org/gnome/nautilus/preferences/show-hidden-files true
- file=/root/.gtk-bookmarks; [ -e "${file}" ] && cp -n $file{,.bkup}
- ([[ -e "${file}" && "$(tail -c 1 ${file})" != "" ]]) && echo >> "${file}"
- grep -q '^file:///root/Downloads ' "${file}" 2>/dev/null || echo 'file:///root/Downloads Downloads' >> "${file}"
- (dmidecode | grep -iq vmware) && (mkdir -p /mnt/hgfs/ 2>/dev/null; grep -q '^file:///mnt/hgfs ' "${file}" 2>/dev/null || echo 'file:///mnt/hgfs VMShare' >> "${file}")
- grep -q '^file:///tmp ' "${file}" 2>/dev/null || echo 'file:///tmp TMP' >> "${file}"
- grep -q '^file:///usr/share ' "${file}" 2>/dev/null || echo 'file:///usr/share Kali Tools' >> "${file}"
- grep -q '^file:///opt ' "${file}" 2>/dev/null || echo 'file:///opt Tools' >> "${file}"
- grep -q '^file:///usr/local/src ' "${file}" 2>/dev/null || echo 'file:///usr/local/src SRC' >> "${file}"
- grep -q '^file:///var/ftp ' "${file}" 2>/dev/null || echo 'file:///var/ftp FTP' >> "${file}"
- grep -q '^file:///var/samba ' "${file}" 2>/dev/null || echo 'file:///var/samba Samba' >> "${file}"
- grep -q '^file:///var/tftp ' "${file}" 2>/dev/null || echo 'file:///var/tftp TFTP' >> "${file}"
- grep -q '^file:///var/www/html ' "${file}" 2>/dev/null || echo 'file:///var/www/html WWW' >> "${file}"
- ##### Configure GNOME terminal Note: need to restart xserver for effect
- echo -e "\n ${GREEN}[+]${RESET} Configuring GNOME ${GREEN}terminal${RESET} ~ CLI interface"
- gconftool-2 -t bool -s /apps/gnome-terminal/profiles/Default/scrollback_unlimited true # Terminal -> Edit -> Profile Preferences -> Scrolling -> Scrollback: Unlimited -> Close
- gconftool-2 -t string -s /apps/gnome-terminal/profiles/Default/background_darkness 0.85611499999999996 # Not working 100%!
- gconftool-2 -t string -s /apps/gnome-terminal/profiles/Default/background_type transparent
- ##### Configure bash - all users
- echo -e "\n ${GREEN}[+]${RESET} Configuring ${GREEN}bash${RESET} ~ CLI shell"
- file=/etc/bash.bashrc; [ -e "${file}" ] && cp -n $file{,.bkup} #~/.bashrc
- grep -q "cdspell" "${file}" || echo "shopt -sq cdspell" >> "${file}" # Spell check 'cd' commands
- grep -q "checkwinsize" "${file}" || echo "shopt -sq checkwinsize" >> "${file}" # Wrap lines correctly after resizing
- grep -q "nocaseglob" "${file}" || echo "shopt -sq nocaseglob" >> "${file}" # Case insensitive pathname expansion
- grep -q "HISTSIZE" "${file}" || echo "HISTSIZE=10000" >> "${file}" # Bash history (memory scroll back)
- grep -q "HISTFILESIZE" "${file}" || echo "HISTFILESIZE=10000" >> "${file}" # Bash history (file .bash_history)
- #--- Apply new configs
- if [[ "${SHELL}" == "/bin/zsh" ]]; then source ~/.zshrc else source "${file}"; fi
- ##### Install bash colour - all users
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}bash colour${RESET} ~ colours shell output"
- file=/etc/bash.bashrc; [ -e "${file}" ] && cp -n $file{,.bkup} #~/.bashrc
- ([[ -e "${file}" && "$(tail -c 1 ${file})" != "" ]]) && echo >> "${file}"
- sed -i 's/.*force_color_prompt=.*/force_color_prompt=yes/' "${file}"
- grep -q '^force_color_prompt' "${file}" 2>/dev/null || echo 'force_color_prompt=yes' >> "${file}"
- sed -i 's#PS1='"'"'.*'"'"'#PS1='"'"'${debian_chroot:+($debian_chroot)}\\[\\033\[01;31m\\]\\u@\\h\\\[\\033\[00m\\]:\\[\\033\[01;34m\\]\\w\\[\\033\[00m\\]\\$ '"'"'#' "${file}"
- grep -q "^export LS_OPTIONS='--color=auto'" "${file}" 2>/dev/null || echo "export LS_OPTIONS='--color=auto'" >> "${file}"
- grep -q '^eval "$(dircolors)"' "${file}" 2>/dev/null || echo 'eval "$(dircolors)"' >> "${file}"
- grep -q "^alias ls='ls $LS_OPTIONS'" "${file}" 2>/dev/null || echo "alias ls='ls $LS_OPTIONS'" >> "${file}"
- grep -q "^alias ll='ls $LS_OPTIONS -l'" "${file}" 2>/dev/null || echo "alias ll='ls $LS_OPTIONS -l'" >> "${file}"
- grep -q "^alias l='ls $LS_OPTIONS -lA'" "${file}" 2>/dev/null || echo "alias l='ls $LS_OPTIONS -lA'" >> "${file}"
- #--- All other users that are made afterwards
- file=/etc/skel/.bashrc #; [ -e "${file}" ] && cp -n $file{,.bkup}
- sed -i 's/.*force_color_prompt=.*/force_color_prompt=yes/' "${file}"
- #--- Apply new configs
- if [[ "${SHELL}" == "/bin/zsh" ]]; then source ~/.zshrc else source "${file}"; fi
- ##### Install grc
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}grc${RESET} ~ colours shell output"
- apt-get -y -qq install grc || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- #--- Setup aliases
- file=~/.bash_aliases; [ -e "${file}" ] && cp -n $file{,.bkup} #/etc/bash.bash_aliases
- ([[ -e "${file}" && "$(tail -c 1 ${file})" != "" ]]) && echo >> "${file}"
- grep -q '^## grc diff alias' "${file}" 2>/dev/null || echo -e "## grc diff alias\nalias diff='$(which grc) $(which diff)'\n" >> "${file}"
- grep -q '^## grc dig alias' "${file}" 2>/dev/null || echo -e "## grc dig alias\nalias dig='$(which grc) $(which dig)'\n" >> "${file}"
- grep -q '^## grc gcc alias' "${file}" 2>/dev/null || echo -e "## grc gcc alias\nalias gcc='$(which grc) $(which gcc)'\n" >> "${file}"
- grep -q '^## grc ifconfig alias' "${file}" 2>/dev/null || echo -e "## grc ifconfig alias\nalias ifconfig='$(which grc) $(which ifconfig)'\n" >> "${file}"
- grep -q '^## grc mount alias' "${file}" 2>/dev/null || echo -e "## grc mount alias\nalias mount='$(which grc) $(which mount)'\n" >> "${file}"
- #grep -q '^## grc mount alias' "${file}" 2>/dev/null || echo -e "## grc mount alias\nalias mount='$(which grc) $(which mount) | $(whereis column -t)'\n" >> "${file}"
- grep -q '^## grc netstat alias' "${file}" 2>/dev/null || echo -e "## grc netstat alias\nalias netstat='$(which grc) $(which netstat)'\n" >> "${file}"
- grep -q '^## grc ping alias' "${file}" 2>/dev/null || echo -e "## grc ping alias\nalias ping='$(which grc) $(which ping)'\n" >> "${file}"
- grep -q '^## grc ps alias' "${file}" 2>/dev/null || echo -e "## grc ps alias\nalias ps='$(which grc) $(which ps)'\n" >> "${file}"
- grep -q '^## grc tail alias' "${file}" 2>/dev/null || echo -e "## grc tail alias\nalias tail='$(which grc) $(which tail)'\n" >> "${file}"
- grep -q '^## grc traceroute alias' "${file}" 2>/dev/null || echo -e "## grc traceroute alias\nalias traceroute='$(which grc) $(which traceroute)'\n" >> "${file}"
- grep -q '^## grc wdiff alias' "${file}" 2>/dev/null || echo -e "## grc wdiff alias\nalias wdiff='$(which grc) $(which wdiff)'\n" >> "${file}"
- #configure #esperanto #ldap #e #cvs #log #mtr #ls #irclog #mount2
- #--- Apply new aliases
- if [[ "${SHELL}" == "/bin/zsh" ]]; then source ~/.zshrc else source "${file}"; fi
- ##### Install bash completion - all users
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}bash completion${RESET} ~ tab complete CLI commands"
- apt-get -y -qq install bash-completion || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- file=/etc/bash.bashrc; [ -e "${file}" ] && cp -n $file{,.bkup} #~/.bashrc
- sed -i '/# enable bash completion in/,+7{/enable bash completion/!s/^#//}' "${file}"
- #--- Apply new configs
- if [[ "${SHELL}" == "/bin/zsh" ]]; then source ~/.zshrc else source "${file}"; fi
- ##### Configure aliases - root user
- echo -e "\n ${GREEN}[+]${RESET} Configuring ${GREEN}aliases${RESET} ~ CLI shortcuts"
- #--- Enable defaults - root user
- for FILE in /etc/bash.bashrc ~/.bashrc ~/.bash_aliases; do #/etc/profile /etc/bashrc /etc/bash_aliases /etc/bash.bash_aliases
- [[ ! -f "${FILE}" ]] && continue
- cp -n $FILE{,.bkup}
- sed -i 's/#alias/alias/g' "${FILE}"
- done
- #--- General system ones
- file=~/.bash_aliases; [ -e "${file}" ] && cp -n $file{,.bkup} #/etc/bash.bash_aliases
- ([[ -e "${file}" && "$(tail -c 1 ${file})" != "" ]]) && echo >> "${file}"
- grep -q '^## grep aliases' "${file}" 2>/dev/null || echo -e '## grep aliases\nalias grep="grep --color=always"\nalias ngrep="grep -n"\n' >> "${file}"
- grep -q '^alias egrep=' "${file}" 2>/dev/null || echo -e 'alias egrep="egrep --color=auto"\n' >> "${file}"
- grep -q '^alias fgrep=' "${file}" 2>/dev/null || echo -e 'alias fgrep="fgrep --color=auto"\n' >> "${file}"
- #--- Add in ours (OS programs)
- grep -q '^alias tmux' "${file}" 2>/dev/null || echo -e '## tmux\nalias tmux="tmux attach || tmux new"\n' >> "${file}" #alias tmux="tmux attach -t $HOST || tmux new -s $HOST"
- grep -q '^alias axel' "${file}" 2>/dev/null || echo -e '## axel\nalias axel="axel -a"\n' >> "${file}"
- grep -q '^alias screen' "${file}" 2>/dev/null || echo -e '## screen\nalias screen="screen -xRR"\n' >> "${file}"
- #--- Add in ours (shortcuts)
- grep -q '^## Checksums' "${file}" 2>/dev/null || echo -e '## Checksums\nalias sha1="openssl sha1"\nalias md5="openssl md5"\n' >> "${file}"
- grep -q '^## Force create folders' "${file}" 2>/dev/null || echo -e '## Force create folders\nalias mkdir="/bin/mkdir -pv"\n' >> "${file}"
- #grep -q '^## Mount' "${file}" 2>/dev/null || echo -e '## Mount\nalias mount="mount | column -t"\n' >> "${file}"
- grep -q '^## List open ports' "${file}" 2>/dev/null || echo -e '## List open ports\nalias ports="netstat -tulanp"\n' >> "${file}"
- grep -q '^## Get header' "${file}" 2>/dev/null || echo -e '## Get header\nalias header="curl -I"\n' >> "${file}"
- grep -q '^## Get external IP address' "${file}" 2>/dev/null || echo -e '## Get external IP address\nalias ipx="curl -s http://ipinfo.io/ip"\n' >> "${file}"
- grep -q '^## DNS - External IP #1' "${file}" 2>/dev/null || echo -e '## DNS - External IP #1\nalias dns1="dig +short @resolver1.opendns.com myip.opendns.com"\n' >> "${file}"
- grep -q '^## DNS - External IP #2' "${file}" 2>/dev/null || echo -e '## DNS - External IP #2\nalias dns2="dig +short @208.67.222.222 myip.opendns.com"\n' >> "${file}"
- grep -q '^## DNS - Check' "${file}" 2>/dev/null || echo -e '### DNS - Check ("#.abc" is Okay)\nalias dns3="dig +short @208.67.220.220 which.opendns.com txt"\n' >> "${file}"
- grep -q '^## Directory navigation aliases' "${file}" 2>/dev/null || echo -e '## Directory navigation aliases\nalias ..="cd .."\nalias ...="cd ../.."\nalias ....="cd ../../.."\nalias .....="cd ../../../.."\n' >> "${file}"
- grep -q '^## Extract file' "${file}" 2>/dev/null || echo -e '## Extract file, example. "ex package.tar.bz2"\nex() {\n if [[ -f $1 ]]; then\n case $1 in\n *.tar.bz2) tar xjf $1 ;;\n *.tar.gz) tar xzf $1 ;;\n *.bz2) bunzip2 $1 ;;\n *.rar) rar x $1 ;;\n *.gz) gunzip $1 ;;\n *.tar) tar xf $1 ;;\n *.tbz2) tar xjf $1 ;;\n *.tgz) tar xzf $1 ;;\n *.zip) unzip $1 ;;\n *.Z) uncompress $1 ;;\n *.7z) 7z x $1 ;;\n *) echo $1 cannot be extracted ;;\n esac\n else\n echo $1 is not a valid file\n fi\n}\n' >> "${file}"
- grep -q '^## strings' "${file}" 2>/dev/null || echo -e '## strings\nalias strings="strings -a"\n' >> "${file}"
- grep -q '^## history' "${file}" 2>/dev/null || echo -e '## history\nalias hg="history | grep"\n' >> "${file}"
- grep -q '^## Add more aliases' "${file}" 2>/dev/null || echo -e '## Add more aliases\nalias upd="sudo apt-get update"\nalias upg="sudo apt-get upgrade"\nalias ins="sudo apt-get install"\nalias rem="sudo apt-get purge"\nalias fix="sudo apt-get install -f"\n' >> "${file}"
- #alias ll="ls -l --block-size=\'1 --color=auto"
- #--- Add in tools
- grep -q '^## nmap' "${file}" 2>/dev/null || echo -e '## nmap\nalias nmap="nmap --reason --open"\n' >> "${file}"
- grep -q '^## aircrack-ng' "${file}" 2>/dev/null || echo -e '## aircrack-ng\nalias aircrack-ng="aircrack-ng -z"\n' >> "${file}"
- grep -q '^## airodump-ng' "${file}" 2>/dev/null || echo -e '## airodump-ng \nalias airodump-ng="airodump-ng --manufacturer --wps --uptime"\n' >> "${file}" # aircrack-ng 1.2 rc2
- grep -q '^## metasploit' "${file}" 2>/dev/null || echo -e '## metasploit\nalias msfc="systemctl start postgresql; msfdb start; msfconsole -q \"$@\""\nalias msfconsole="systemctl start postgresql; msfdb start; msfconsole \"$@\""\n' >> "${file}"
- [ "${openVAS}" != "false" ] && grep -q '^## openvas' "${file}" 2>/dev/null || echo -e '## openvas\nalias openvas="openvas-stop; openvas-start; sleep 3s; xdg-open https://127.0.0.1:9392/ >/dev/null 2>&1"\n' >> "${file}"
- grep -q '^## mana-toolkit' "${file}" 2>/dev/null || echo -e '## mana-toolkit\nalias mana-toolkit-start="a2ensite 000-mana-toolkit;a2dissite 000-default;systemctl apache2 restart"\n\nalias mana-toolkit-stop="a2dissite 000-mana-toolkit;a2ensite 000-default;systemctl apache2 restart"\n' >> "${file}"
- grep -q '^## ssh' "${file}" 2>/dev/null || echo -e '## ssh\nalias ssh-start="systemctl restart ssh"\nalias ssh-stop="systemctl stop ssh"\n' >> "${file}"
- #airmon-vz --verbose
- #--- Add in folders
- grep -q '^## www' "${file}" 2>/dev/null || echo -e '## www\nalias wwwroot="cd /var/www/html/"\n#alias www="cd /var/www/html/"\n' >> "${file}" # systemctl apache2 start
- grep -q '^## ftp' "${file}" 2>/dev/null || echo -e '## ftp\nalias ftproot="cd /var/ftp/"\n' >> "${file}" # systemctl pure-ftpd start
- grep -q '^## tftp' "${file}" 2>/dev/null || echo -e '## tftp\nalias tftproot="cd /var/tftp/"\n' >> "${file}" # systemctl atftpd start
- grep -q '^## smb' "${file}" 2>/dev/null || echo -e '## smb\nalias sambaroot="cd /var/samba/"\n#alias smbroot="cd /var/samba/"\n' >> "${file}" # systemctl samba start
- (dmidecode | grep -iq vmware) && (grep -q '^## vmware' "${file}" 2>/dev/null || echo -e '## vmware\nalias vmroot="cd /mnt/hgfs/"\n' >> "${file}")
- grep -q '^## edb' "${file}" 2>/dev/null || echo -e '## edb\nalias edb="cd /usr/share/exploitdb/platforms/"\nalias edbroot="cd /usr/share/exploitdb/platforms/"\n' >> "${file}"
- grep -q '^## wordlist' "${file}" 2>/dev/null || echo -e '## wordlist\nalias wordlist="cd /usr/share/wordlists/"\nalias wordls="cd /usr/share/wordlists/"\n' >> "${file}"
- #--- Apply new aliases
- if [[ "${SHELL}" == "/bin/zsh" ]]; then source ~/.zshrc else source "${file}"; fi
- #--- Check
- #alias
- ##### Install GNOME Terminator
- echo -e "\n ${GREEN}[+]${RESET} Installing GNOME ${GREEN}Terminator${RESET} ~ multiple terminals in a single window"
- apt-get -y -qq install terminator || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- #--- Configure terminator
- mkdir -p ~/.config/terminator/
- file=~/.config/terminator/config; [ -e "${file}" ] && cp -n $file{,.bkup}
- [ -e "${file}" ] || cat <<EOF > "${file}"
- [global_config]
- enabled_plugins = TerminalShot, LaunchpadCodeURLHandler, APTURLHandler, LaunchpadBugURLHandler
- [keybindings]
- [profiles]
- [[default]]
- background_darkness = 0.9
- scroll_on_output = False
- copy_on_selection = True
- background_type = transparent
- scrollback_infinite = True
- show_titlebar = False
- [layouts]
- [[default]]
- [[[child1]]]
- type = Terminal
- parent = window0
- [[[window0]]]
- type = Window
- parent = ""
- [plugins]
- EOF
- #--- XFCE fix for terminator
- mkdir -p ~/.local/share/xfce4/helpers/
- file=~/.local/share/xfce4/helpers/custom-TerminalEmulator.desktop; [ -e "${file}" ] && cp -n $file{,.bkup}
- sed -i 's#^X-XFCE-CommandsWithParameter=.*#X-XFCE-CommandsWithParameter=/usr/bin/terminator --command="%s"#' "${file}" 2>/dev/null || cat <<EOF > "${file}"
- [Desktop Entry]
- NoDisplay=true
- Version=1.0
- Encoding=UTF-8
- Type=X-XFCE-Helper
- X-XFCE-Category=TerminalEmulator
- X-XFCE-CommandsWithParameter=/usr/bin/terminator --command="%s"
- Icon=terminator
- Name=terminator
- X-XFCE-Commands=/usr/bin/terminator
- EOF
- file=~/.config/xfce4/helpers.rc; [ -e "${file}" ] && cp -n $file{,.bkup} #exo-preferred-applications #xdg-mime default
- ([[ -e "${file}" && "$(tail -c 1 ${file})" != "" ]]) && echo >> "${file}"
- sed -i 's#^TerminalEmulator=.*#TerminalEmulator=custom-TerminalEmulator#' "${file}"
- grep -q '^TerminalEmulator=custom-TerminalEmulator' "${file}" 2>/dev/null || echo -e 'TerminalEmulator=custom-TerminalEmulator' >> "${file}"
- ##### Install ZSH & Oh-My-ZSH - root user. Note: 'Open terminal here', will not work with ZSH. Make sure to have tmux already installed
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}ZSH${RESET} & ${GREEN}Oh-My-ZSH${RESET} ~ unix shell"
- #group="sudo"
- apt-get -y -qq install zsh git curl || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- #--- Setup oh-my-zsh
- #rm -rf ~/.oh-my-zsh/
- timeout 300 curl --progress -k -L -f "https://github.com/robbyrussell/oh-my-zsh/raw/master/tools/install.sh" | zsh #curl -s -L "https://github.com/robbyrussell/oh-my-zsh/raw/master/tools/install.sh" || echo -e ' '${RED}'[!]'${RESET}" Issue downloading file" 1>&2
- #--- Configure zsh
- file=~/.zshrc; [ -e "${file}" ] && cp -n $file{,.bkup} #/etc/zsh/zshrc
- ([[ -e "${file}" && "$(tail -c 1 ${file})" != "" ]]) && echo >> "${file}"
- grep -q 'interactivecomments' "${file}" 2>/dev/null || echo 'setopt interactivecomments' >> "${file}"
- grep -q 'ignoreeof' "${file}" 2>/dev/null || echo 'setopt ignoreeof' >> "${file}"
- grep -q 'correctall' "${file}" 2>/dev/null || echo 'setopt correctall' >> "${file}"
- grep -q 'globdots' "${file}" 2>/dev/null || echo 'setopt globdots' >> "${file}"
- grep -q '.bash_aliases' "${file}" 2>/dev/null || echo 'source $HOME/.bash_aliases' >> "${file}"
- grep -q '/usr/bin/tmux' "${file}" 2>/dev/null || echo '#if ([[ -z "$TMUX" && -n "$SSH_CONNECTION" ]]); then /usr/bin/tmux attach || /usr/bin/tmux new; fi' >> "${file}" # If not already in tmux and via SSH
- #--- Configure zsh (themes) ~ https://github.com/robbyrussell/oh-my-zsh/wiki/Themes
- sed -i 's/ZSH_THEME=.*/ZSH_THEME="mh"/' "${file}" # Other themes: mh, jreese, alanpeabody, candy, terminalparty, kardan, nicoulaj, sunaku
- #--- Configure oh-my-zsh
- sed -i 's/.*DISABLE_AUTO_UPDATE="true"/DISABLE_AUTO_UPDATE="true"/' "${file}"
- sed -i 's/plugins=(.*)/plugins=(git tmux last-working-dir)/' "${file}"
- #--- Set zsh as default shell (current user)
- chsh -s "$(which zsh)"
- #--- Use it ~ Not much point to it being a post-install script
- #/usr/bin/env zsh # Use it
- #source "${file}" # Make sure to reload our config
- #--- Copy it to other user(s)
- #if [ -e "/home/${username}/" ]; then # Will do this later on again, if there isn't already a user
- # cp -f /{root,home/${username}}/.zshrc
- # cp -rf /{root,home/${username}}/.oh-my-zsh/
- # chown -R ${username}\:${group} /home/${username}/.zshrc /home/${username}/.oh-my-zsh/
- # chsh "${username}" -s "$(which zsh)"
- # sed -i 's#^export ZSH=/.*/.oh-my-zsh#export ZSH=/home/'${username}'/.oh-my-zsh#' /home/${username}/.zshrc
- #fi
- ##### Install tmux - all users
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}tmux${RESET} ~ multiplex virtual consoles"
- #group="sudo"
- #apt-get -y -qq remove screen # Optional: If we're going to have/use tmux, why have screen?
- apt-get -y -qq install tmux || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- #--- Configure tmux
- file=~/.tmux.conf; [ -e "${file}" ] && cp -n $file{,.bkup} #/etc/tmux.conf
- [ -e "${file}" ] || cat <<EOF > "${file}"
- #-Settings---------------------------------------------------------------------
- ## Make it like screen (use CTRL+a)
- unbind C-b
- set -g prefix C-a
- ## Pane switching (SHIFT+ARROWS)
- bind-key -n S-Left select-pane -L
- bind-key -n S-Right select-pane -R
- bind-key -n S-Up select-pane -U
- bind-key -n S-Down select-pane -D
- ## Windows switching (ALT+ARROWS)
- bind-key -n M-Left previous-window
- bind-key -n M-Right next-window
- ## Windows re-ording (SHIFT+ALT+ARROWS)
- bind-key -n M-S-Left swap-window -t -1
- bind-key -n M-S-Right swap-window -t +1
- ## Activity Monitoring
- setw -g monitor-activity on
- set -g visual-activity on
- ## Set defaults
- set -g default-terminal screen-256color
- set -g history-limit 5000
- ## Default windows titles
- set -g set-titles on
- set -g set-titles-string '#(whoami)@#H - #I:#W'
- ## Last window switch
- bind-key C-a last-window
- ## Reload settings (CTRL+a -> r)
- unbind r
- bind r source-file /etc/tmux.conf
- ## Load custom sources
- #source ~/.bashrc #(issues if you use /bin/bash & Debian)
- EOF
- [ -e /bin/zsh ] && echo -e '## Use ZSH as default shell\nset-option -g default-shell /bin/zsh\n' >> "${file}" # Need to have ZSH installed before running this command/line
- cat <<EOF >> "${file}"
- ## Show tmux messages for longer
- set -g display-time 3000
- ## Status bar is redrawn every minute
- set -g status-interval 60
- #-Theme------------------------------------------------------------------------
- ## Default colours
- set -g status-bg black
- set -g status-fg white
- ## Left hand side
- set -g status-left-length '34'
- set -g status-left '#[fg=green,bold]#(whoami)#[default]@#[fg=yellow,dim]#H #[fg=green,dim][#[fg=yellow]#(cut -d " " -f 1-3 /proc/loadavg)#[fg=green,dim]]'
- ## Inactive windows in status bar
- set-window-option -g window-status-format '#[fg=red,dim]#I#[fg=grey,dim]:#[default,dim]#W#[fg=grey,dim]'
- ## Current or active window in status bar
- #set-window-option -g window-status-current-format '#[bg=white,fg=red]#I#[bg=white,fg=grey]:#[bg=white,fg=black]#W#[fg=dim]#F'
- set-window-option -g window-status-current-format '#[fg=red,bold](#[fg=white,bold]#I#[fg=red,dim]:#[fg=white,bold]#W#[fg=red,bold])'
- ## Right hand side
- set -g status-right '#[fg=green][#[fg=yellow]%Y-%m-%d #[fg=white]%H:%M#[fg=green]]'
- EOF
- #--- Setup alias
- file=~/.bash_aliases; [ -e "${file}" ] && cp -n $file{,.bkup} #/etc/bash.bash_aliases
- ([[ -e "${file}" && "$(tail -c 1 ${file})" != "" ]]) && echo >> "${file}"
- grep -q '^alias tmux' "${file}" 2>/dev/null || echo -e '## tmux\nalias tmux="tmux attach || tmux new"\n' >> "${file}" #alias tmux="tmux attach -t $HOST || tmux new -s $HOST"
- #--- Apply new alias
- if [[ "${SHELL}" == "/bin/zsh" ]]; then source ~/.zshrc else source "${file}"; fi
- #--- Copy it to other user(s) ~
- #if [ -e /home/${username}/ ]; then # Will do this later on again, if there isn't already a user
- # cp -f /{etc/,home/${username}/.}tmux.conf #cp -f /{root,home/${username}}/.tmux.conf
- # chown ${username}\:${group} /home/${username}/.tmux.conf
- # file=/home/${username}/.bash_aliases; [ -e "${file}" ] && cp -n $file{,.bkup}
- # grep -q '^alias tmux' "${file}" 2>/dev/null || echo -e '## tmux\nalias tmux="tmux attach || tmux new"\n' >> "${file}" #alias tmux="tmux attach -t $HOST || tmux new -s $HOST"
- #fi
- #--- Use it ~ bit pointless if used in a post-install script
- #tmux
- ##### Configure screen ~ if possible, use tmux instead!
- echo -e "\n ${GREEN}[+]${RESET} Configuring ${GREEN}screen${RESET} ~ multiplex virtual consoles"
- #apt-get -y -qq install screen || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- #--- Configure screen
- file=~/.screenrc; [ -e "${file}" ] && cp -n $file{,.bkup}
- [ -e "${file}" ] || cat <<EOF > "${file}"
- ## Don't display the copyright page
- startup_message off
- ## tab-completion flash in heading bar
- vbell off
- ## Keep scrollback n lines
- defscrollback 1000
- ## Hardstatus is a bar of text that is visible in all screens
- hardstatus on
- hardstatus alwayslastline
- hardstatus string '%{gk}%{G}%H %{g}[%{Y}%l%{g}] %= %{wk}%?%-w%?%{=b kR}(%{W}%n %t%?(%u)%?%{=b kR})%{= kw}%?%+w%?%?%= %{g} %{Y} %Y-%m-%d %C%a %{W}'
- ## Title bar
- termcapinfo xterm ti@:te@
- ## Default windows (syntax: screen -t label order command)
- screen -t bash1 0
- screen -t bash2 1
- ## Select the default window
- select 0
- EOF
- ##### Install vim - all users
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}vim${RESET} ~ CLI text editor"
- apt-get -y -qq install vim || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- #--- Configure vim
- file=/etc/vim/vimrc; [ -e "${file}" ] && cp -n $file{,.bkup} #~/.vimrc
- ([[ -e "${file}" && "$(tail -c 1 ${file})" != "" ]]) && echo >> "${file}"
- sed -i 's/.*syntax on/syntax on/' "${file}"
- sed -i 's/.*set background=dark/set background=dark/' "${file}"
- sed -i 's/.*set showcmd/set showcmd/' "${file}"
- sed -i 's/.*set showmatch/set showmatch/' "${file}"
- sed -i 's/.*set ignorecase/set ignorecase/' "${file}"
- sed -i 's/.*set smartcase/set smartcase/' "${file}"
- sed -i 's/.*set incsearch/set incsearch/' "${file}"
- sed -i 's/.*set autowrite/set autowrite/' "${file}"
- sed -i 's/.*set hidden/set hidden/' "${file}"
- sed -i 's/.*set mouse=.*/"set mouse=a/' "${file}"
- grep -q '^set number' "${file}" 2>/dev/null || echo 'set number' >> "${file}" # Add line numbers
- grep -q '^set autoindent' "${file}" 2>/dev/null || echo 'set autoindent' >> "${file}" # Set auto indent
- grep -q '^set expandtab' "${file}" 2>/dev/null || echo -e 'set expandtab\nset smarttab' >> "${file}" # Set use spaces instead of tabs
- grep -q '^set softtabstop' "${file}" 2>/dev/null || echo -e 'set softtabstop=4\nset shiftwidth=4' >> "${file}" # Set 4 spaces as a 'tab'
- grep -q '^set foldmethod=marker' "${file}" 2>/dev/null || echo 'set foldmethod=marker' >> "${file}" # Folding
- grep -q '^nnoremap <space> za' "${file}" 2>/dev/null || echo 'nnoremap <space> za' >> "${file}" # Space toggle folds
- grep -q '^set hlsearch' "${file}" 2>/dev/null || echo 'set hlsearch' >> "${file}" # Highlight search results
- grep -q '^set laststatus' "${file}" 2>/dev/null || echo -e 'set laststatus=2\nset statusline=%F%m%r%h%w\ (%{&ff}){%Y}\ [%l,%v][%p%%]' >> "${file}" # Status bar
- grep -q '^filetype on' "${file}" 2>/dev/null || echo -e 'filetype on\nfiletype plugin on\nsyntax enable\nset grepprg=grep\ -nH\ $*' >> "${file}" # Syntax highlighting
- grep -q '^set wildmenu' "${file}" 2>/dev/null || echo -e 'set wildmenu\nset wildmode=list:longest,full' >> "${file}" # Tab completion
- grep -q '^set invnumber' "${file}" 2>/dev/null || echo -e ':nmap <F8> :set invnumber<CR>' >> "${file}" # Toggle line numbers
- grep -q '^set pastetoggle=<F9>' "${file}" 2>/dev/null || echo -e 'set pastetoggle=<F9>' >> "${file}" # Hotkey - turning off auto indent when pasting
- grep -q '^:command Q q' "${file}" 2>/dev/null || echo -e ':command Q q' >> "${file}" # Fix stupid typo I always make
- #--- Set as default editor
- export EDITOR="vim" #update-alternatives --config editor
- file=/etc/bash.bashrc; [ -e "${file}" ] && cp -n $file{,.bkup}
- ([[ -e "${file}" && "$(tail -c 1 ${file})" != "" ]]) && echo >> "${file}"
- grep -q '^EDITOR' "${file}" 2>/dev/null || echo 'EDITOR="vim"' >> "${file}"
- git config --global core.editor "vim"
- #--- Set as default mergetool
- git config --global merge.tool vimdiff
- git config --global merge.conflictstyle diff3
- git config --global mergetool.prompt false
- ##### Setup iceweasel
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}iceweasel${RESET} ~ GUI web browser"
- apt-get install -y -qq unzip curl iceweasel || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- #--- Configure iceweasel
- export DISPLAY=:0.0 #[[ -z $SSH_CONNECTION ]] || export DISPLAY=:0.0
- timeout 15 iceweasel >/dev/null 2>&1 #iceweasel & sleep 15s; killall -q -w iceweasel >/dev/null # Start and kill. Files needed for first time run
- timeout 5 killall -9 -q -w iceweasel >/dev/null #|| echo -e ' '${RED}'[!]'${RESET}" Failed to kill ${RED}iceweasel${RESET}"
- file=$(find ~/.mozilla/firefox/*.default*/ -maxdepth 1 -type f -name 'prefs.js' -print -quit) && [ -e "${file}" ] && cp -n $file{,.bkup} #/etc/iceweasel/pref/*.js
- ([[ -e "${file}" && "$(tail -c 1 ${file})" != "" ]]) && echo >> "${file}"
- #sed -i 's/^.network.proxy.socks_remote_dns.*/user_pref("network.proxy.socks_remote_dns", true);' "${file}" 2>/dev/null || echo 'user_pref("network.proxy.socks_remote_dns", true);' >> "${file}"
- sed -i 's/^.browser.safebrowsing.enabled.*/user_pref("browser.safebrowsing.enabled", false);' "${file}" 2>/dev/null || echo 'user_pref("browser.safebrowsing.enabled", false);' >> "${file}" # Iceweasel -> Edit -> Preferences -> Security -> Block reported web forgeries
- sed -i 's/^.browser.safebrowsing.malware.enabled.*/user_pref("browser.safebrowsing.malware.enabled", false);' "${file}" 2>/dev/null || echo 'user_pref("browser.safebrowsing.malware.enabled", false);' >> "${file}" # Iceweasel -> Edit -> Preferences -> Security -> Block reported attack sites
- sed -i 's/^.browser.safebrowsing.remoteLookups.enabled.*/user_pref("browser.safebrowsing.remoteLookups.enabled", false);' "${file}" 2>/dev/null || echo 'user_pref("browser.safebrowsing.remoteLookups.enabled", false);' >> "${file}"
- sed -i 's/^.*browser.startup.page.*/user_pref("browser.startup.page", 0);' "${file}" 2>/dev/null || echo 'user_pref("browser.startup.page", 0);' >> "${file}" # Iceweasel -> Edit -> Preferences -> General -> When firefox starts: Show a blank page
- sed -i 's/^.*privacy.donottrackheader.enabled.*/user_pref("privacy.donottrackheader.enabled", true);' "${file}" 2>/dev/null || echo 'user_pref("privacy.donottrackheader.enabled", true);' >> "${file}" # Privacy -> Enable: Tell websites I do not want to be tracked
- sed -i 's/^.*browser.showQuitWarning.*/user_pref("browser.showQuitWarning", true);' "${file}" 2>/dev/null || echo 'user_pref("browser.showQuitWarning", true);' >> "${file}" # Stop Ctrl+Q from quitting without warning
- sed -i 's/^.*extensions.https_everywhere._observatory.popup_shown.*/user_pref("extensions.https_everywhere._observatory.popup_shown", true);' "${file}" 2>/dev/null || echo 'user_pref("extensions.https_everywhere._observatory.popup_shown", true);' >> "${file}"
- sed -i 's/^.network.security.ports.banned.override/user_pref("network.security.ports.banned.override", "1-65455");' "${file}" 2>/dev/null || echo 'user_pref("network.security.ports.banned.override", "1-65455");' >> "${file}" # Remove "This address is restricted"
- #--- Replace bookmarks (base: http://pentest-bookmarks.googlecode.com)
- file=$(find ~/.mozilla/firefox/*.default*/ -maxdepth 1 -type f -name 'bookmarks.html' -print -quit) && [ -e "${file}" ] && cp -n $file{,.bkup} #/etc/iceweasel/profile/bookmarks.html
- timeout 300 curl --progress -k -L -f "http://pentest-bookmarks.googlecode.com/files/bookmarksv1.5.html" > /tmp/bookmarks_new.html || echo -e ' '${RED}'[!]'${RESET}" Issue downloading bookmarks_new.html" 1>&2 #***!!! hardcoded version! Need to manually check for updates
- #--- Configure bookmarks
- awk '!a[$0]++' /tmp/bookmarks_new.html | \egrep -v ">(Latest Headlines|Getting Started|Recently Bookmarked|Recent Tags|Mozilla Firefox|Help and Tutorials|Customize Firefox|Get Involved|About Us|Hacker Media|Bookmarks Toolbar|Most Visited)</" | \egrep -v "^ </DL><p>" | \egrep -v "^<DD>Add" > "${file}"
- sed -i 's#^</DL><p># </DL><p>\n </DL><p>\n</DL><p>#' "${file}" # Fix import issues from pentest-bookmarks...
- sed -i 's#^ <DL><p># <DL><p>\n <DT><A HREF="http://127.0.0.1/">localhost</A>#' "${file}" # Add localhost to bookmark toolbar (before hackery folder)
- sed -i 's#^</DL><p># <DT><A HREF="https://127.0.0.1:8834/">Nessus</A>\n</DL><p>#' "${file}" # Add Nessus UI bookmark toolbar
- [ "${openVAS}" != "false" ] && sed -i 's#^</DL><p># <DT><A HREF="https://127.0.0.1:9392/">OpenVAS</A>\n</DL><p>#' "${file}" # Add OpenVAS UI to bookmark toolbar
- #sed -i 's#^</DL><p># <DT><A HREF="https://127.0.0.1:3780/">Nexpose</A>\n</DL><p>#' "${file}" # Add Nexpose UI to bookmark toolbar
- sed -i 's#^</DL><p># <DT><A HREF="http://127.0.0.1:3000/ui/panel">BeEF</A>\n</DL><p>#' "${file}" # Add BeEF UI to bookmark toolbar
- sed -i 's#^</DL><p># <DT><A HREF="http://127.0.0.1/rips/">RIPS</A>\n</DL><p>#' "${file}" # Add RIPs to bookmark toolbar
- sed -i 's#^</DL><p># <DT><A HREF="https://paulschou.com/tools/xlate/">XLATE</A>\n</DL><p>#' "${file}" # Add XLATE to bookmark toolbar
- sed -i 's#^</DL><p># <DT><A HREF="https://hackvertor.co.uk/public">HackVertor</A>\n</DL><p>#' "${file}" # Add HackVertor to bookmark toolbar
- sed -i 's#^</DL><p># <DT><A HREF="http://www.irongeek.com/skiddypad.php">SkiddyPad</A>\n</DL><p>#' "${file}" # Add Skiddypad to bookmark toolbar
- sed -i 's#^</DL><p># <DT><A HREF="https://www.exploit-db.com/search/">Exploit-DB</A>\n</DL><p>#' "${file}" # Add Exploit-DB to bookmark toolbar
- sed -i 's#^</DL><p># <DT><A HREF="http://offset-db.com/">Offset-DB</A>\n</DL><p>#' "${file}" # Add offset-db to bookmark toolbar
- #sed -i 's#^</DL><p># <DT><A HREF="http://shell-storm.org/shellcode/">Shelcodes</A>\n</DL><p>#' "${file}" # Add shellcode to bookmark toolbar
- #sed -i 's#^</DL><p># <DT><A HREF="http://ropshell.com/">ROP Shell</A>\n</DL><p>#' "${file}" # Add ROP Shell to bookmark toolbar
- sed -i 's#^</DL><p># <DT><A HREF="https://ifconfig.io/">ifconfig</A>\n</DL><p>#' "${file}" # Add ifconfig.io to bookmark toolbar
- sed -i 's#<HR>#<DT><H3 ADD_DATE="1303667175" LAST_MODIFIED="1303667175" PERSONAL_TOOLBAR_FOLDER="true">Bookmarks Toolbar</H3>\n<DD>Add bookmarks to this folder to see them displayed on the Bookmarks Toolbar#' "${file}"
- #--- Clear bookmark cache
- find ~/.mozilla/firefox/*.default*/ -maxdepth 1 -mindepth 1 -type f -name places.sqlite -delete
- find ~/.mozilla/firefox/*.default*/bookmarkbackups/ -type f -delete
- #--- Default for XFCE
- file=~/.config/xfce4/helpers.rc; [ -e "${file}" ] && cp -n $file{,.bkup} #exo-preferred-applications #xdg-mime default
- sed -i 's#^WebBrowser=.*#WebBrowser=iceweasel#' "${file}"
- grep -q '^WebBrowser=iceweasel' "${file}" 2>/dev/null || echo 'WebBrowser=iceweasel' >> "${file}"
- #--- Remove old temp files
- rm -f /tmp/bookmarks_new.html
- ##### Setup iceweasel's plugins
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}iceweasel's plugins${RESET} ~ Useful addons"
- #--- Configure iceweasel
- export DISPLAY=:0.0 #[[ -z $SSH_CONNECTION ]] || export DISPLAY=:0.0
- #--- Download extensions
- ffpath="$(find ~/.mozilla/firefox/*.default*/ -maxdepth 0 -mindepth 0 -type d -name '*.default*' -print -quit)/extensions"
- [ "${ffpath}" == "/extensions" ] && echo -e ' '${RED}'[!]'${RESET}" Couldn't find Firefox/Iceweasel folder" 1>&2
- mkdir -p "${ffpath}/"
- #curl --progress -k -L -f "https://github.com/mozmark/ringleader/blob/master/fx_pnh.xpi?raw=true" || echo -e ' '${RED}'[!]'${RESET}" Issue downloading fx_pnh.xpi" 1>&2 # plug-n-hack
- #curl --progress -k -L -f "https://addons.mozilla.org/firefox/downloads/latest/284030/addon-284030-latest.xpi?src=dp-btn-primary" -o "$ffpath/{6bdc61ae-7b80-44a3-9476-e1d121ec2238}.xpi" || echo -e ' '${RED}'[!]'${RESET}" Issue downloading 'HTTPS Finder'" 1>&2 # HTTPS Finder
- timeout 300 curl --progress -k -L -f "https://addons.mozilla.org/firefox/downloads/latest/5817/addon-5817-latest.xpi?src=dp-btn-primary" -o "$ffpath/SQLiteManager@mrinalkant.blogspot.com.xpi" || echo -e ' '${RED}'[!]'${RESET}" Issue downloading 'SQLite Manager'" 1>&2 # SQLite Manager
- timeout 300 curl --progress -k -L -f "https://addons.mozilla.org/firefox/downloads/latest/1865/addon-1865-latest.xpi?src=dp-btn-primary" -o "$ffpath/{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi" || echo -e ' '${RED}'[!]'${RESET}" Issue downloading 'Adblock Plus'" 1>&2 # Adblock Plus
- timeout 300 curl --progress -k -L -f "https://addons.mozilla.org/firefox/downloads/latest/92079/addon-92079-latest.xpi?src=dp-btn-primary" -o "$ffpath/{bb6bc1bb-f824-4702-90cd-35e2fb24f25d}.xpi" || echo -e ' '${RED}'[!]'${RESET}" Issue downloading 'Cookies Manager+'" 1>&2 # Cookies Manager+
- timeout 300 curl --progress -k -L -f "https://addons.mozilla.org/firefox/downloads/latest/1843/addon-1843-latest.xpi?src=dp-btn-primary" -o "$ffpath/firebug@software.joehewitt.com.xpi" || echo -e ' '${RED}'[!]'${RESET}" Issue downloading 'Firebug'" 1>&2 # Firebug
- timeout 300 curl --progress -k -L -f "https://addons.mozilla.org/firefox/downloads/latest/15023/addon-15023-latest.xpi?src=dp-btn-primary" -o "$ffpath/foxyproxy-basic@eric.h.jung.xpi" || echo -e ' '${RED}'[!]'${RESET}" Issue downloading 'FoxyProxy Basic'" 1>&2 # FoxyProxy Basic
- timeout 300 curl --progress -k -L -f "https://addons.mozilla.org/firefox/downloads/latest/429678/addon-429678-latest.xpi?src=dp-btn-primary" -o "$ffpath/useragentoverrider@qixinglu.com.xpi" || echo -e ' '${RED}'[!]'${RESET}" Issue downloading 'User Agent Overrider'" 1>&2 # User Agent Overrider
- timeout 300 curl --progress -k -L -f "https://www.eff.org/files/https-everywhere-latest.xpi" -o "$ffpath/https-everywhere@eff.org.xpi" || echo -e ' '${RED}'[!]'${RESET}" Issue downloading 'HTTPS Everywhere'" 1>&2 # HTTPS Everywhere
- timeout 300 curl --progress -k -L -f "https://addons.mozilla.org/firefox/downloads/latest/3829/addon-3829-latest.xpi?src=dp-btn-primary" -o "$ffpath/{8f8fe09b-0bd3-4470-bc1b-8cad42b8203a}.xpi" || echo -e ' '${RED}'[!]'${RESET}" Issue downloading 'Live HTTP Headers'" 1>&2 # Live HTTP Headers
- timeout 300 curl --progress -k -L -f "https://addons.mozilla.org/firefox/downloads/latest/966/addon-966-latest.xpi?src=dp-btn-primary" -o "$ffpath/{9c51bd27-6ed8-4000-a2bf-36cb95c0c947}.xpi" || echo -e ' '${RED}'[!]'${RESET}" Issue downloading 'Tamper Data'" 1>&2 # Tamper Data
- timeout 300 curl --progress -k -L -f "https://addons.mozilla.org/firefox/downloads/latest/300254/addon-300254-latest.xpi?src=dp-btn-primary" -o "$ffpath/check-compatibility@dactyl.googlecode.com.xpi" || echo -e ' '${RED}'[!]'${RESET}" Issue downloading 'Disable Add-on Compatibility Checks'" 1>&2 # Disable Add-on Compatibility Checks
- timeout 300 curl --progress -k -L -f "https://addons.mozilla.org/firefox/downloads/latest/3899/addon-3899-latest.xpi?src=dp-btn-primary" -o "$ffpath/{F5DDF39C-9293-4d5e-9AA8-E04E6DD5E9B4}.xpi" || echo -e ' '${RED}'[!]'${RESET}" Issue downloading 'HackBar'" 1>&2 # HackBar
- timeout 300 curl --progress -k -L -f "https://addons.mozilla.org/firefox/downloads/latest/607454/addon-607454-latest.xpi?src=dp-btn-primary" -o "$ffpath/{ec8030f7-c20a-464f-9b0e-13a3a9e97384}.xpi" || echo -e ' '${RED}'[!]'${RESET}" Issue downloading 'uBlock'" 1>&2 # uBlock
- #--- Installing extensions
- for FILE in $(find "${ffpath}" -maxdepth 1 -type f -name '*.xpi'); do
- d="$(basename "${FILE}" .xpi)"
- mkdir -p "${ffpath}/${d}/"
- unzip -q -o -d "${ffpath}/${d}/" "${FILE}"
- rm -f "${FILE}"
- done
- #--- Enable Iceweasel's addons/plugins/extensions
- timeout 15 iceweasel >/dev/null 2>&1 #iceweasel & sleep 15s; killall -q -w iceweasel >/dev/null
- sleep 3s
- file=$(find ~/.mozilla/firefox/*.default*/ -maxdepth 1 -type f -name 'extensions.sqlite' -print -quit) #&& [ -e "${file}" ] && cp -n $file{,.bkup}
- if [ ! -e "${file}" ] || [ -z "${file}" ]; then
- #echo -e ' '${RED}'[!]'${RESET}" Something went wrong enabling Iceweasel's extensions via method #1. Trying method #2..." 1>&2
- false
- else
- echo -e " ${YELLOW}[i]${RESET} Enabled ${YELLOW}Iceweasel's extensions${RESET} (via method #1!)"
- apt-get install -y -qq sqlite3 || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- rm -f /tmp/iceweasel.sql; touch /tmp/iceweasel.sql
- echo "UPDATE 'main'.'addon' SET 'active' = 1, 'userDisabled' = 0;" > /tmp/iceweasel.sql # Force them all!
- sqlite3 "${file}" < /tmp/iceweasel.sql #fuser extensions.sqlite
- fi
- file=$(find ~/.mozilla/firefox/*.default*/ -maxdepth 1 -type f -name 'extensions.json' -print -quit) #&& [ -e "${file}" ] && cp -n $file{,.bkup}
- if [ ! -e "${file}" ] || [ -z "${file}" ]; then
- #echo -e ' '${RED}'[!]'${RESET}" Something went wrong enabling Iceweasel's extensions via method #2. Did method #1 also fail?" 1>&2
- false
- else
- echo -e " ${YELLOW}[i]${RESET} Enabled ${YELLOW}Iceweasel's extensions${RESET} (via method #2!)"
- sed -i 's/"active":false,/"active":true,/g' "${file}" # Force them all!
- sed -i 's/"userDisabled":true,/"userDisabled":false,/g' "${file}" # Force them all!
- fi
- file=$(find ~/.mozilla/firefox/*.default*/ -maxdepth 1 -type f -name 'prefs.js' -print -quit) #&& [ -e "${file}" ] && cp -n $file{,.bkup}
- [ ! -z "${file}" ] && sed -i '/extensions.installCache/d' "${file}"
- timeout 5 iceweasel >/dev/null 2>&1 # For extensions that just work without restarting
- sleep 3s
- timeout 5 iceweasel >/dev/null 2>&1 # ...for (most) extensions, as they need iceweasel to restart
- sleep 5s
- #--- Configure HackBar
- file=$(find ~/.mozilla/firefox/*.default*/ -maxdepth 1 -type f -name 'xulstore.json' -print -quit) #&& [ -e "${file}" ] && cp -n $file{,.bkup}
- if [ -e "${file}" ]; then
- sed -i 's/"hackBarToolbar":{"collapsed":".*"},/"hackBarToolbar":{"collapsed":"true"},/g' "${file}" # Hide the bar on startup
- grep -q "hackBarToolbar" "${file}" 2>/dev/null || sed -i 's/"nav-bar"/"hackBarToolbar":{"collapsed":"true"},"nav-bar"/g' "${file}" # Hide the bar on startup
- fi
- #--- Configure foxyproxy
- file=$(find ~/.mozilla/firefox/*.default*/ -maxdepth 1 -type f -name 'foxyproxy.xml' -print -quit) #&& [ -e "${file}" ] && cp -n $file{,.bkup}
- if [ -z "${file}" ]; then
- echo -e ' '${RED}'[!]'${RESET}' Something went wrong with the FoxyProxy iceweasel extension (did any extensions install?). Skipping...' 1>&2
- elif [ -e "${file}" ]; then
- grep -q 'localhost:8080' "${file}" 2>/dev/null || sed -i 's#<proxy name="Default"#<proxy name="localhost:8080" id="1145138293" notes="e.g. Burp, w3af" fromSubscription="false" enabled="true" mode="manual" selectedTabIndex="0" lastresort="false" animatedIcons="true" includeInCycle="false" color="\#07753E" proxyDNS="true" noInternalIPs="false" autoconfMode="pac" clearCacheBeforeUse="true" disableCache="true" clearCookiesBeforeUse="false" rejectCookies="false"><matches/><autoconf url="" loadNotification="true" errorNotification="true" autoReload="false" reloadFreqMins="60" disableOnBadPAC="true"/><autoconf url="http://wpad/wpad.dat" loadNotification="true" errorNotification="true" autoReload="false" reloadFreqMins="60" disableOnBadPAC="true"/><manualconf host="127.0.0.1" port="8080" socksversion="5" isSocks="false" username="" password="" domain=""/></proxy><proxy name="Default"#' "${file}" # localhost:8080
- grep -q 'localhost:8081' "${file}" 2>/dev/null || sed -i 's#<proxy name="Default"#<proxy name="localhost:8081 (socket5)" id="212586674" notes="e.g. SSH" fromSubscription="false" enabled="true" mode="manual" selectedTabIndex="0" lastresort="false" animatedIcons="true" includeInCycle="false" color="\#917504" proxyDNS="true" noInternalIPs="false" autoconfMode="pac" clearCacheBeforeUse="true" disableCache="true" clearCookiesBeforeUse="false" rejectCookies="false"><matches/><autoconf url="" loadNotification="true" errorNotification="true" autoReload="false" reloadFreqMins="60" disableOnBadPAC="true"/><autoconf url="http://wpad/wpad.dat" loadNotification="true" errorNotification="true" autoReload="false" reloadFreqMins="60" disableOnBadPAC="true"/><manualconf host="127.0.0.1" port="8081" socksversion="5" isSocks="true" username="" password="" domain=""/></proxy><proxy name="Default"#' "${file}" # localhost:8081 (socket5)
- grep -q '"No Caching"' "${file}" 2>/dev/null || sed -i 's#<proxy name="Default"#<proxy name="No Caching" id="3884644610" notes="" fromSubscription="false" enabled="true" mode="system" selectedTabIndex="0" lastresort="false" animatedIcons="true" includeInCycle="false" color="\#990DA6" proxyDNS="true" noInternalIPs="false" autoconfMode="pac" clearCacheBeforeUse="true" disableCache="true" clearCookiesBeforeUse="false" rejectCookies="false"><matches/><autoconf url="" loadNotification="true" errorNotification="true" autoReload="false" reloadFreqMins="60" disableOnBadPAC="true"/><autoconf url="http://wpad/wpad.dat" loadNotification="true" errorNotification="true" autoReload="false" reloadFreqMins="60" disableOnBadPAC="true"/><manualconf host="" port="" socksversion="5" isSocks="false" username="" password="" domain=""/></proxy><proxy name="Default"#' "${file}" # No caching
- else
- echo -ne '<?xml version="1.0" encoding="UTF-8"?>\n<foxyproxy mode="disabled" selectedTabIndex="0" toolbaricon="true" toolsMenu="true" contextMenu="false" advancedMenus="false" previousMode="disabled" resetIconColors="true" useStatusBarPrefix="true" excludePatternsFromCycling="false" excludeDisabledFromCycling="false" ignoreProxyScheme="false" apiDisabled="false" proxyForVersionCheck=""><random includeDirect="false" includeDisabled="false"/><statusbar icon="true" text="false" left="options" middle="cycle" right="contextmenu" width="0"/><toolbar left="options" middle="cycle" right="contextmenu"/><logg enabled="false" maxSize="500" noURLs="false" header="<?xml version="1.0" encoding="UTF-8"?>\n<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">\n<html xmlns="http://www.w3.org/1999/xhtml"><head><title></title><link rel="icon" href="http://getfoxyproxy.org/favicon.ico"/><link rel="shortcut icon" href="http://getfoxyproxy.org/favicon.ico"/><link rel="stylesheet" href="http://getfoxyproxy.org/styles/log.css" type="text/css"/></head><body><table class="log-table"><thead><tr><td class="heading">${timestamp-heading}</td><td class="heading">${url-heading}</td><td class="heading">${proxy-name-heading}</td><td class="heading">${proxy-notes-heading}</td><td class="heading">${pattern-name-heading}</td><td class="heading">${pattern-heading}</td><td class="heading">${pattern-case-heading}</td><td class="heading">${pattern-type-heading}</td><td class="heading">${pattern-color-heading}</td><td class="heading">${pac-result-heading}</td><td class="heading">${error-msg-heading}</td></tr></thead><tfoot><tr><td/></tr></tfoot><tbody>" row="<tr><td class="timestamp">${timestamp}</td><td class="url"><a href="${url}">${url}</a></td><td class="proxy-name">${proxy-name}</td><td class="proxy-notes">${proxy-notes}</td><td class="pattern-name">${pattern-name}</td><td class="pattern">${pattern}</td><td class="pattern-case">${pattern-case}</td><td class="pattern-type">${pattern-type}</td><td class="pattern-color">${pattern-color}</td><td class="pac-result">${pac-result}</td><td class="error-msg">${error-msg}</td></tr>" footer="</tbody></table></body></html>"/><warnings/><autoadd enabled="false" temp="false" reload="true" notify="true" notifyWhenCanceled="true" prompt="true"><match enabled="true" name="Dynamic AutoAdd Pattern" pattern="*://${3}${6}/*" isRegEx="false" isBlackList="false" isMultiLine="false" caseSensitive="false" fromSubscription="false"/><match enabled="true" name="" pattern="*You are not authorized to view this page*" isRegEx="false" isBlackList="false" isMultiLine="true" caseSensitive="false" fromSubscription="false"/></autoadd><quickadd enabled="false" temp="false" reload="true" notify="true" notifyWhenCanceled="true" prompt="true"><match enabled="true" name="Dynamic QuickAdd Pattern" pattern="*://${3}${6}/*" isRegEx="false" isBlackList="false" isMultiLine="false" caseSensitive="false" fromSubscription="false"/></quickadd><defaultPrefs origPrefetch="null"/><proxies>' > "${file}"
- echo -ne '<proxy name="localhost:8080" id="1145138293" notes="e.g. Burp, w3af" fromSubscription="false" enabled="true" mode="manual" selectedTabIndex="0" lastresort="false" animatedIcons="true" includeInCycle="false" color="#07753E" proxyDNS="true" noInternalIPs="false" autoconfMode="pac" clearCacheBeforeUse="true" disableCache="true" clearCookiesBeforeUse="false" rejectCookies="false"><matches/><autoconf url="" loadNotification="true" errorNotification="true" autoReload="false" reloadFreqMins="60" disableOnBadPAC="true"/><autoconf url="http://wpad/wpad.dat" loadNotification="true" errorNotification="true" autoReload="false" reloadFreqMins="60" disableOnBadPAC="true"/><manualconf host="127.0.0.1" port="8080" socksversion="5" isSocks="false" username="" password="" domain=""/></proxy>' >> "${file}"
- echo -ne '<proxy name="localhost:8081 (socket5)" id="212586674" notes="e.g. SSH" fromSubscription="false" enabled="true" mode="manual" selectedTabIndex="0" lastresort="false" animatedIcons="true" includeInCycle="false" color="#917504" proxyDNS="true" noInternalIPs="false" autoconfMode="pac" clearCacheBeforeUse="true" disableCache="true" clearCookiesBeforeUse="false" rejectCookies="false"><matches/><autoconf url="" loadNotification="true" errorNotification="true" autoReload="false" reloadFreqMins="60" disableOnBadPAC="true"/><autoconf url="http://wpad/wpad.dat" loadNotification="true" errorNotification="true" autoReload="false" reloadFreqMins="60" disableOnBadPAC="true"/><manualconf host="127.0.0.1" port="8081" socksversion="5" isSocks="true" username="" password="" domain=""/></proxy>' >> "${file}"
- echo -ne '<proxy name="No Caching" id="3884644610" notes="" fromSubscription="false" enabled="true" mode="system" selectedTabIndex="0" lastresort="false" animatedIcons="true" includeInCycle="false" color="#990DA6" proxyDNS="true" noInternalIPs="false" autoconfMode="pac" clearCacheBeforeUse="true" disableCache="true" clearCookiesBeforeUse="false" rejectCookies="false"><matches/><autoconf url="" loadNotification="true" errorNotification="true" autoReload="false" reloadFreqMins="60" disableOnBadPAC="true"/><autoconf url="http://wpad/wpad.dat" loadNotification="true" errorNotification="true" autoReload="false" reloadFreqMins="60" disableOnBadPAC="true"/><manualconf host="" port="" socksversion="5" isSocks="false" username="" password="" domain=""/></proxy>' >> "${file}"
- echo -ne '<proxy name="Default" id="3377581719" notes="" fromSubscription="false" enabled="true" mode="direct" selectedTabIndex="0" lastresort="true" animatedIcons="false" includeInCycle="true" color="#0055E5" proxyDNS="true" noInternalIPs="false" autoconfMode="pac" clearCacheBeforeUse="false" disableCache="false" clearCookiesBeforeUse="false" rejectCookies="false"><matches><match enabled="true" name="All" pattern="*" isRegEx="false" isBlackList="false" isMultiLine="false" caseSensitive="false" fromSubscription="false"/></matches><autoconf url="" loadNotification="true" errorNotification="true" autoReload="false" reloadFreqMins="60" disableOnBadPAC="true"/><autoconf url="http://wpad/wpad.dat" loadNotification="true" errorNotification="true" autoReload="false" reloadFreqMins="60" disableOnBadPAC="true"/><manualconf host="" port="" socksversion="5" isSocks="false" username="" password=""/></proxy>' >> "${file}"
- echo -e '</proxies></foxyproxy>' >> "${file}"
- fi
- #--- Wipe session (due to force close)
- find ~/.mozilla/firefox/*.default*/ -maxdepth 1 -type f -name 'sessionstore.*' -delete
- #--- Remove old temp files
- rm -f /tmp/iceweasel.sql
- ##### Install exe2hex
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}exe2hex${RESET} ~ Inline file transfer"
- timeout 300 curl --progress -k -L -f "https://raw.githubusercontent.com/g0tmi1k/exe2hex/master/exe2hex.py" > /usr/local/bin/exe2hex || echo -e ' '${RED}'[!]'${RESET}" Issue downloading exe2hex" 1>&2
- chmod +x /usr/local/bin/exe2hex
- ##### Install MPC
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}MPC${RESET} ~ Msfvenom Payload Creator"
- timeout 300 curl --progress -k -L -f "https://raw.githubusercontent.com/g0tmi1k/mpc/master/mpc.sh" > /usr/local/bin/mpc || echo -e ' '${RED}'[!]'${RESET}" Issue downloading mpc" 1>&2
- chmod +x /usr/local/bin/mpc
- ##### Install PyCharm (Community Edition)
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}PyCharm (Community Edition)${RESET} ~ Python IDE"
- timeout 300 curl --progress -k -L -f "https://download.jetbrains.com/python/pycharm-community-5.0.tar.gz" > /tmp/pycharms-community.tar.gz || echo -e ' '${RED}'[!]'${RESET}" Issue downloading pycharms-community.tar.gz" 1>&2 #***!!! hardcoded version!
- tar -xf /tmp/pycharms-community.tar.gz -C /tmp/
- rm -rf /usr/share/pycharms/
- mv -f /tmp/pycharm-community-*/ /usr/share/pycharms
- ln -sf /usr/share/pycharms/bin/pycharm.sh /usr/local/bin/pycharms
- ##### Install wdiff
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}wdiff${RESET} ~ Compares two files word by word"
- apt-get -y -qq install wdiff wdiff-doc || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- ##### Install Meld
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}Meld${RESET} ~ GUI text compare"
- apt-get -y -qq install meld || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- #--- Configure meld
- gconftool-2 -t bool -s /apps/meld/show_line_numbers true
- gconftool-2 -t bool -s /apps/meld/show_whitespace true
- gconftool-2 -t bool -s /apps/meld/use_syntax_highlighting true
- gconftool-2 -t int -s /apps/meld/edit_wrap_lines 2
- ##### Configure python console - all users
- echo -e "\n ${GREEN}[+]${RESET} Configuring ${GREEN}python console${RESET} ~ tab complete & history support"
- export PYTHONSTARTUP=$HOME/.pythonstartup
- file=/etc/bash.bashrc; [ -e "${file}" ] && cp -n $file{,.bkup} #~/.bashrc
- grep -q PYTHONSTARTUP "${file}" || echo 'export PYTHONSTARTUP=$HOME/.pythonstartup' >> "${file}"
- #--- Python start up file
- cat <<EOF > ~/.pythonstartup || echo -e ' '${RED}'[!] Issue with writing file'${RESET} 1>&2
- import readline
- import rlcompleter
- import atexit
- import os
- ## Tab completion
- readline.parse_and_bind('tab: complete')
- ## History file
- histfile = os.path.join(os.environ['HOME'], '.pythonhistory')
- try:
- readline.read_history_file(histfile)
- except IOError:
- pass
- atexit.register(readline.write_history_file, histfile)
- ## Quit
- del os, histfile, readline, rlcompleter
- EOF
- #--- Apply new configs
- if [[ "${SHELL}" == "/bin/zsh" ]]; then source ~/.zshrc else source "${file}"; fi
- ##### Install go
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}go${RESET} ~ programming language"
- apt-get -y -qq install golang || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- ##### Install gitg
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}gitg${RESET} ~ GUI git client"
- apt-get -y -qq install gitg || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- ##### Install sparta (https://bugs.kali.org/view.php?id=2021)
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}sparta${RESET} ~ GUI automatic wrapper"
- apt-get -y -qq install sparta || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- #apt-get -y -qq install git || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- #git clone -q https://github.com/secforce/sparta.git /opt/sparta-git/ || echo -e ' '${RED}'[!] Issue when git cloning'${RESET} 1>&2
- #pushd /opt/sparta-git/ >/dev/null
- #git pull -q
- #popd >/dev/null
- ##--- Add to path
- #file=/usr/local/bin/sparta-git
- #cat <<EOF > "${file}" || echo -e ' '${RED}'[!] Issue with writing file'${RESET} 1>&2
- ##!/bin/bash
- #
- #cd /opt/sparta-git/ && python sparta.py "\$@"
- #EOF
- #chmod +x "${file}"
- ##### Install wireshark
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}Wireshark${RESET} ~ GUI network protocol analyzer"
- #--- Hide running as root warning
- mkdir -p ~/.wireshark/
- file=~/.wireshark/recent_common; #[ -e "${file}" ] && cp -n $file{,.bkup}
- [ -e "${file}" ] || echo "privs.warn_if_elevated: FALSE" > "${file}"
- #--- Hide 'Lua: Error during loading' warning
- file=/usr/share/wireshark/init.lua; [ -e "${file}" ] && cp -n $file{,.bkup}
- sed -i 's/^disable_lua = .*/disable_lua = true/' "${file}"
- ##### Install silver searcher
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}silver searcher${RESET} ~ code searching"
- apt-get -y -qq install silversearcher-ag || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- #apt-get -y -qq install git automake pkg-config libpcre3-dev zlib1g-dev liblzma-dev || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- #git clone -q https://github.com/ggreer/the_silver_searcher.git /usr/local/src/the_silver_searcher || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- #pushd /usr/local/src/the_silver_searcher/ >/dev/null
- #git pull -q
- #bash ./build.sh
- #make -s clean; make -s install
- #popd >/dev/null
- #ag <name>
- ##### Install graudit
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}graudit${RESET} ~ source code auditing"
- apt-get -y -qq install git || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- git clone -q https://github.com/wireghoul/graudit.git /opt/graudit-git/ || echo -e ' '${RED}'[!] Issue when git cloning'${RESET} 1>&2
- #--- Add to path
- file=/usr/local/bin/graudit-git
- cat <<EOF > "${file}" || echo -e ' '${RED}'[!] Issue with writing file'${RESET} 1>&2
- #!/bin/bash
- cd /opt/graudit-git/ && bash graudit.sh "\$@"
- EOF
- chmod +x "${file}"
- ##### Install libreoffice
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}LibreOffice${RESET} ~ GUI office suite"
- apt-get -y -qq install libreoffice || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- ##### Install cherrytree
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}cherrytree${RESET} ~ GUI note taking"
- apt-get -y -qq install cherrytree || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- ##### Install ipcalc & sipcalc
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}ipcalc${RESET} & ${GREEN}sipcalc${RESET} ~ CLI subnet calculators"
- apt-get -y -qq install ipcalc sipcalc || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- ##### Install recordmydesktop
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}RecordMyDesktop${RESET} ~ GUI video screen capture"
- apt-get -y -qq install recordmydesktop || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- #--- Installing GUI front end
- apt-get -y -qq install gtk-recordmydesktop || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- ##### Install asciinema
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}asciinema${RESET} ~ CLI terminal recorder"
- curl -s -L https://asciinema.org/install | sh
- ##### Install gimp
- #echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}gimp${RESET} ~ GUI image editing"
- #apt-get -y -qq install gimp || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- ##### Install shutter
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}shutter${RESET} ~ GUI static screen capture"
- apt-get -y -qq install shutter || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- ##### Install gdebi
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}gdebi${RESET} ~ GUI package installer"
- apt-get -y -qq install gdebi || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- ##### Install psmisc ~ allows for 'killall command' to be used
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}psmisc${RESET} ~ suite to help with running processes"
- apt-get -y -qq install psmisc || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- ###### Setup pipe viewer
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}pipe viewer${RESET} ~ CLI progress bar"
- apt-get install -y -qq pv || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- ##### Install ca-certificates
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}ca-certificates${RESET} ~ HTTPS/SSL/TLS"
- apt-get -y -qq install ca-certificates || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- ##### Install testssl
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}testssl${RESET} ~ Testing TLS/SSL encryption"
- apt-get -y -qq install git || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- git clone -q https://github.com/drwetter/testssl.sh.git /opt/testssl-git/ || echo -e ' '${RED}'[!] Issue when git cloning'${RESET} 1>&2
- ln -sf /opt/testssl-git/testssl.sh /usr/local/bin/testssl-git
- chmod +x /opt/testssl-git/testssl.sh
- ##### Install UACScript
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}UACScript${RESET} ~ UAC Bypass for Windows 7"
- apt-get -y -qq install git windows-binaries || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- git clone -q https://github.com/Vozzie/uacscript.git /opt/uacscript-git/ || echo -e ' '${RED}'[!] Issue when git cloning'${RESET} 1>&2
- ln -sf /usr/share/windows-binaries/uac-win7 /opt/uacscript-git/
- ##### Install MiniReverse_Shell_With_Parameters
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}MiniReverse_Shell_With_Parameters${RESET} ~ Generate shellcode for a reverse shell"
- apt-get -y -qq install git windows-binaries || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- git clone -q https://github.com/xillwillx/MiniReverse_Shell_With_Parameters.git /opt/minireverse-shell-with-parameters-git/ || echo -e ' '${RED}'[!] Issue when git cloning'${RESET} 1>&2
- ln -sf /usr/share/windows-binaries/MiniReverse /opt/minireverse-shell-with-parameters-git/
- ##### Install axel
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}axel${RESET} ~ CLI download manager"
- apt-get -y -qq install axel || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- #--- Setup alias
- file=~/.bash_aliases; [ -e "${file}" ] && cp -n $file{,.bkup} #/etc/bash.bash_aliases
- ([[ -e "${file}" && "$(tail -c 1 ${file})" != "" ]]) && echo >> "${file}"
- grep -q '^alias axel' "${file}" 2>/dev/null || echo -e '## axel\nalias axel="axel -a"\n' >> "${file}"
- #--- Apply new alias
- if [[ "${SHELL}" == "/bin/zsh" ]]; then source ~/.zshrc else source "${file}"; fi
- ##### Install html2text
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}html2text${RESET} ~ CLI html rendering"
- apt-get -y -qq install html2text || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- ##### Install daemonfs
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}daemonfs${RESET} ~ GUI file monitor"
- apt-get -y -qq install daemonfs || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- ##### Install filezilla (geany gets installed later)
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}FileZilla${RESET} ~ GUI file transfer"
- apt-get -y -qq install filezilla || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- #--- Configure filezilla
- export DISPLAY=:0.0 #[[ -z $SSH_CONNECTION ]] || export DISPLAY=:0.0
- timeout 5 filezilla >/dev/null 2>&1 #filezilla & sleep 5s; killall -q -w filezilla >/dev/null # Start and kill. Files needed for first time run
- mkdir -p ~/.config/filezilla/
- file=~/.config/filezilla/filezilla.xml; [ -e "${file}" ] && cp -n $file{,.bkup}
- sed -i 's#^.*"Default editor".*#\t<Setting name="Default editor">2/usr/bin/geany</Setting>#' "${file}"
- ##### Install remmina
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}remmina${RESET} ~ GUI remote desktop"
- apt-get -y -qq install remmina remmina-plugin-xdmcp remmina-plugin-rdp remmina-plugin-vnc || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- ##### Install lynx
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}lynx${RESET} ~ CLI web browser"
- apt-get -y -qq install lynx || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- ##### Install p7zip
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}p7zip${RESET} ~ CLI file extractor"
- apt-get -y -qq install p7zip-full || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- ##### Install zip & unzip
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}zip${RESET} & ${GREEN}unzip${RESET} ~ CLI file extractors"
- apt-get -y -qq install zip || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} # Compress
- apt-get -y -qq install unzip || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} # Decompress
- ##### Install file roller
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}file roller${RESET} ~ GUI file extractor"
- apt-get -y -qq install file-roller || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} # GUI program
- apt-get -y -qq install unace unrar rar unzip zip p7zip p7zip-full p7zip-rar || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} # Supported file compressions types
- ##### Install VPN support
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}VPN${RESET} support for Network-Manager"
- #*** I know its messy...
- for FILE in network-manager-openvpn network-manager-pptp network-manager-vpnc network-manager-openconnect network-manager-iodine; do
- apt-get -y -qq install "${FILE}" || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- done
- ##### Install hashid
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}hashid${RESET} ~ identify hash types"
- apt-get -y -qq install hashid || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- ##### Install httprint
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}httprint${RESET} ~ GUI web server fingerprint"
- apt-get -y -qq install httprint || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- ##### Install lbd
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}lbd${RESET} ~ load balancing detector"
- apt-get -y -qq install lbd || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- ##### Install wafw00f
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}wafw00f${RESET} ~ WAF detector"
- apt-get -y -qq install git python python-pip || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- git clone -q https://github.com/sandrogauci/wafw00f.git /opt/wafw00f-git/ || echo -e ' '${RED}'[!] Issue when git cloning'${RESET} 1>&2
- pushd /opt/wafw00f-git/ >/dev/null
- git pull -q
- python setup.py install
- popd >/dev/null
- ##### Install waffit
- #echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}waffit${RESET} ~ WAF detector"
- #apt-get -y -qq install waffit || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- ##### Install aircrack-ng
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}Aircrack-ng${RESET} ~ Wi-Fi cracking suite"
- apt-get -y -qq install aircrack-ng curl || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- #--- Setup hardware database
- mkdir -p /etc/aircrack-ng/
- (timeout 600 airodump-ng-oui-update 2>/dev/null) || timeout 600 curl --progress -k -L -f "http://standards.ieee.org/develop/regauth/oui/oui.txt" > /etc/aircrack-ng/oui.txt #***!!! hardcoded path! # || echo -e ' '${RED}'[!]'${RESET}" Issue downloading oui.txt" 1>&2
- [[ -e /etc/aircrack-ng/oui.txt ]] && (\grep "(hex)" /etc/aircrack-ng/oui.txt | sed 's/^[ \t]*//g;s/[ \t]*$//g' > /etc/aircrack-ng/airodump-ng-oui.txt)
- [[ ! -f /etc/aircrack-ng/airodump-ng-oui.txt ]] && echo -e ' '${RED}'[!]'${RESET}" Issue downloading oui.txt" 1>&2
- #--- Setup alias
- file=~/.bash_aliases; [ -e "${file}" ] && cp -n $file{,.bkup} #/etc/bash.bash_aliases
- ([[ -e "${file}" && "$(tail -c 1 ${file})" != "" ]]) && echo >> "${file}"
- grep -q '^## aircrack-ng' "${file}" 2>/dev/null || echo -e '## aircrack-ng\nalias aircrack-ng="aircrack-ng -z"\n' >> "${file}"
- grep -q '^## airodump-ng' "${file}" 2>/dev/null || echo -e '## airodump-ng \nalias airodump-ng="airodump-ng --manufacturer --wps --uptime"\n' >> "${file}" # aircrack-ng 1.2 rc2
- ##### Install reaver (Community Fork)
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}reaver (community fork)${RESET} ~ WPS pin brute force + Pixie Attack"
- apt-get -y -qq install reaver pixiewps || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- ##### Install bully
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}bully${RESET} ~ WPS pin brute force"
- apt-get -y -qq install bully || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- ##### Install wifite
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}wifite${RESET} ~ automated Wi-Fi tool"
- apt-get -y -qq install wifite || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- ##### Install vulscan script for nmap
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}vulscan script for nmap${RESET} ~ vulnerability scanner add-on"
- apt-get -y -qq install nmap curl || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- mkdir -p /usr/share/nmap/scripts/vulscan/
- timeout 300 curl --progress -k -L -f "http://www.computec.ch/projekte/vulscan/download/nmap_nse_vulscan-2.0.tar.gz" > /tmp/nmap_nse_vulscan.tar.gz || echo -e ' '${RED}'[!]'${RESET}" Issue downloading file" 1>&2 #***!!! hardcoded version! Need to manually check for updates
- gunzip /tmp/nmap_nse_vulscan.tar.gz
- tar -xf /tmp/nmap_nse_vulscan.tar -C /usr/share/nmap/scripts/
- #--- Fix permissions (by default its 0777)
- chmod -R 0755 /usr/share/nmap/scripts/; find /usr/share/nmap/scripts/ -type f -exec chmod 0644 {} \;
- #--- Remove old temp files
- rm -f /tmp/nmap_nse_vulscan.tar*
- ##### Install unicornscan
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}unicornscan${RESET} ~ fast port scanner"
- apt-get -y -qq install unicornscan || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- ##### Install onetwopunch
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}onetwopunch${RESET} ~ unicornscan & nmap wrapper"
- apt-get -y -qq install git nmap unicornscan || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- git clone -q https://github.com/superkojiman/onetwopunch.git /opt/onetwopunch-git/ || echo -e ' '${RED}'[!] Issue when git cloning'${RESET} 1>&2
- pushd /opt/onetwopunch-git/ >/dev/null
- git pull -q
- popd >/dev/null
- #--- Add to path
- file=/usr/local/bin/onetwopunch-git
- cat <<EOF > "${file}" || echo -e ' '${RED}'[!] Issue with writing file'${RESET} 1>&2
- #!/bin/bash
- cd /opt/onetwopunch-git/ && bash onetwopunch.sh "\$@"
- EOF
- chmod +x "${file}"
- ##### Install Gnmap-Parser (Fork)
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}Gnmap-Parser (Fork)${RESET} ~ Parse Nmap exports into various plain-text formats"
- apt-get -y -qq install git || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- git clone -q https://github.com/nullmode/gnmap-parser.git /opt/gnmap-parser-git/ || echo -e ' '${RED}'[!] Issue when git cloning'${RESET} 1>&2
- ln -sf /opt/gnmap-parser-git/Gnmap-Parser.sh /usr/local/bin/gnmap-parser-git
- chmod +x /opt/gnmap-parser-git/Gnmap-Parser.sh
- ##### Install udp-proto-scanner
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}udp-proto-scanner${RESET} ~ common UDP port scanner"
- apt-get -y -qq install curl || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- #mkdir -p /usr/share/udp-proto-scanner/
- timeout 300 curl --progress -k -L -f "https://labs.portcullis.co.uk/download/udp-proto-scanner-1.1.tar.gz" -o /tmp/udp-proto-scanner.tar.gz || echo -e ' '${RED}'[!]'${RESET}" Issue downloading udp-proto-scanner.tar.gz" 1>&2
- gunzip /tmp/udp-proto-scanner.tar.gz
- tar -xf /tmp/udp-proto-scanner.tar -C /opt/
- mv -f /opt/udp-proto-scanner{-1.1,}
- file=/usr/local/bin/udp-proto-scanner
- cat <<EOF > "${file}" || echo -e ' '${RED}'[!] Issue with writing file'${RESET} 1>&2
- #!/bin/bash
- cd /opt/udp-proto-scanner/ && perl udp-proto-scanner.pl "\$@"
- EOF
- chmod +x "${file}"
- #--- Remove old temp files
- rm -f /tmp/udp-proto-scanner.tar*
- ##### Install clusterd
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}clusterd${RESET} ~ clustered attack toolkit (JBoss, ColdFusion, WebLogic, Tomcat etc)"
- apt-get -y -qq install clusterd || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- ##### Install webhandler
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}webhandler${RESET} ~ shell TTY handler"
- apt-get -y -qq install webhandler || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- ln -sf /usr/bin/webhandler /usr/local/bin/wh
- ##### Install azazel
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}azazel${RESET} ~ Linux userland rootkit"
- apt-get -y -qq install git || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- git clone -q https://github.com/chokepoint/azazel.git /opt/azazel-git/ || echo -e ' '${RED}'[!] Issue when git cloning'${RESET} 1>&2
- pushd /opt/azazel-git/ >/dev/null
- git pull -q
- popd >/dev/null
- ##### Install Babadook
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}Babadook${RESET} ~ connection-less powershell backdoor"
- apt-get -y -qq install git || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- git clone -q https://github.com/jseidl/Babadook.git /opt/babadook-git/ || echo -e ' '${RED}'[!] Issue when git cloning'${RESET} 1>&2
- ##### Install pupy
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}pupy${RESET} ~ Remote Administration Tool"
- apt-get -y -qq install git || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- git clone -q https://github.com/n1nj4sec/pupy.git /opt/pupy-git/ || echo -e ' '${RED}'[!] Issue when git cloning'${RESET} 1>&2
- ##### Install gobuster (https://bugs.kali.org/view.php?id=2438)
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}gobuster${RESET} ~ Directory/File/DNS busting tool"
- apt-get -y -qq install git golang || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- git clone -q https://github.com/OJ/gobuster.git /opt/gobuster-git/ || echo -e ' '${RED}'[!] Issue when git cloning'${RESET} 1>&2
- pushd /opt/gobuster-git/ >/dev/null
- go build
- popd >/dev/null
- #--- Add to path
- file=/usr/local/bin/gobuster-git
- cat <<EOF > "${file}" || echo -e ' '${RED}'[!] Issue with writing file'${RESET} 1>&2
- #!/bin/bash
- cd /opt/gobuster-git/ && ./gobuster "\$@"
- EOF
- chmod +x "${file}"
- ##### Install reGeorg
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}reGeorg${RESET} ~ pivot via web shells"
- git clone -q https://github.com/sensepost/reGeorg.git /opt/reGeorg-git || echo -e ' '${RED}'[!] Issue when git cloning'${RESET} 1>&2
- #--- Link to others
- apt-get -y -qq install webshells || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- ln -sf /opt/reGeorg-git /usr/share/webshells/reGeorg
- ##### Install bridge-utils
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}bridge-utils${RESET} ~ bridge network interfaces"
- apt-get -y -qq install bridge-utils || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- ##### Install FruityWifi
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}FruityWifi${RESET} ~ wireless network auditing tool"
- apt-get -y -qq install fruitywifi || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- # URL: https://localhost:8443
- if [[ -e /var/www/html/index.nginx-debian.html ]]; then
- grep -q '<title>Welcome to nginx on Debian!</title>' /var/www/html/index.nginx-debian.html && echo 'Permission denied.' > /var/www/html/index.nginx-debian.html
- fi
- ##### Install WPA2-HalfHandshake-Crack
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}WPA2-HalfHandshake-Crack${RESET} ~ rogue AP to do WPA2 handshakes without AP"
- apt-get -y -qq install git || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- git clone -q https://github.com/dxa4481/WPA2-HalfHandshake-Crack.git /opt/wpa2-halfhandshake-crack-git/ || echo -e ' '${RED}'[!] Issue when git cloning'${RESET} 1>&2
- pushd /opt/wpa2-halfhandshake-crack-git/ >/dev/null
- git pull -q
- popd >/dev/null
- ##### Install HT-WPS-Breaker
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}HT-WPS-Breaker${RESET} ~ Auto WPS tool"
- apt-get -y -qq install git || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- git clone -q https://github.com/SilentGhostX/HT-WPS-Breaker.git /opt/ht-wps-breaker-git/ || echo -e ' '${RED}'[!] Issue when git cloning'${RESET} 1>&2
- ##### Install dot11decrypt
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}dot11decrypt${RESET} ~ On-the-fly WEP/WPA2 decrypter"
- apt-get -y -qq install git || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- git clone -q https://github.com/mfontanini/dot11decrypt.git /opt/dot11decrypt-git/ || echo -e ' '${RED}'[!] Issue when git cloning'${RESET} 1>&2
- ##### Install mana toolkit
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}MANA toolkit${RESET} ~ rogue AP to do MITM Wi-Fi"
- apt-get -y -qq install mana-toolkit || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- mkdir -p /usr/share/mana-toolkit/www/facebook/
- #--- Disable profile
- a2dissite 000-mana-toolkit; a2ensite 000-default
- #--- Setup alias
- file=~/.bash_aliases; [ -e "${file}" ] && cp -n $file{,.bkup} #/etc/bash.bash_aliases
- ([[ -e "${file}" && "$(tail -c 1 ${file})" != "" ]]) && echo >> "${file}"
- grep -q '^## mana-toolkit' "${file}" 2>/dev/null || echo -e '## mana-toolkit\nalias mana-toolkit-start="a2ensite 000-mana-toolkit;a2dissite 000-default;systemctl apache2 restart"\n\nalias mana-toolkit-stop="a2dissite 000-mana-toolkit;a2ensite 000-default;systemctl apache2 restart"\n' >> "${file}"
- #cd /usr/share/mana-toolkit/www/
- ##### Install wifiphisher
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}wifiphisher${RESET} ~ automated Wi-Fi phishing"
- apt-get -y -qq install git || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- git clone -q https://github.com/sophron/wifiphisher.git /opt/wifiphisher-git/ || echo -e ' '${RED}'[!] Issue when git cloning'${RESET} 1>&2
- pushd /opt/wifiphisher-git/ >/dev/null
- git pull -q
- popd >/dev/null
- #--- Add to path
- file=/usr/local/bin/wifiphisher-git
- cat <<EOF > "${file}" || echo -e ' '${RED}'[!] Issue with writing file'${RESET} 1>&2
- #!/bin/bash
- cd /opt/wifiphisher-git/ && python wifiphisher.py "\$@"
- EOF
- chmod +x "${file}"
- ##### Install hostapd-wpe-extended
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}hostapd-wpe-extended${RESET} ~ rogue AP for WPA-Enterprise"
- apt-get -y -qq install git || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- git clone -q https://github.com/NerdyProjects/hostapd-wpe-extended.git /opt/hostapd-wpe-extended-git/ || echo -e ' '${RED}'[!] Issue when git cloning'${RESET} 1>&2
- pushd /opt/hostapd-wpe-extended-git/ >/dev/null
- git pull -q
- popd >/dev/null
- ##### Install proxychains-ng (https://bugs.kali.org/view.php?id=2037)
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}proxychains-ng${RESET} ~ proxifier"
- apt-get -y -qq install git gcc || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- git clone -q https://github.com/rofl0r/proxychains-ng.git /opt/proxychains-ng-git/ || echo -e ' '${RED}'[!] Issue when git cloning'${RESET} 1>&2
- pushd /opt/proxychains-ng-git/ >/dev/null
- git pull -q
- make -s clean
- ./configure --prefix=/usr --sysconfdir=/etc >/dev/null
- make -s 2>/dev/null && make -s install # bad, but it gives errors which might be confusing (still builds)
- popd >/dev/null
- #--- Add to path (with a 'better' name)
- ln -sf /usr/bin/proxychains4 /usr/local/bin/proxychains-ng
- ##### Install httptunnel
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}httptunnel${RESET} ~ tunnels data streams in HTTP requests"
- apt-get -y -qq install http-tunnel || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- ##### Install sshuttle
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}sshuttle${RESET} ~ VPN over SSH"
- apt-get -y -qq install sshuttle || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- #--- Example
- #sshuttle --dns --remote root@123.9.9.9 0/0 -vv
- ##### Install pfi
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}pfi${RESET} ~ Port Forwarding Interceptor"
- apt-get -y -qq install git || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- git clone -q https://github.com/s7ephen/pfi.git /opt/pfi-git/ || echo -e ' '${RED}'[!] Issue when git cloning'${RESET} 1>&2
- ##### Install icmpsh
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}icmpsh${RESET} ~ reverse ICMP shell"
- apt-get -y -qq install git || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- git clone -q https://github.com/inquisb/icmpsh.git /opt/icmpsh-git/ || echo -e ' '${RED}'[!] Issue when git cloning'${RESET} 1>&2
- ##### Install dnsftp
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}dnsftp${RESET} ~ transfer files over DNS"
- apt-get -y -qq install git || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- git clone -q https://github.com/breenmachine/dnsftp.git /opt/dnsftp-git/ || echo -e ' '${RED}'[!] Issue when git cloning'${RESET} 1>&2
- ##### Install iodine
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}iodine${RESET} ~ DNS tunneling (IP over DNS)"
- apt-get -y -qq install iodine || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- #--- Example
- #iodined -f -P password1 10.0.0.1 dns.mydomain.com
- #iodine -f -P password1 123.9.9.9 dns.mydomain.com; ssh -C -D 8081 root@10.0.0.1
- ##### Install dns2tcp
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}dns2tcp${RESET} ~ DNS tunneling (TCP over DNS)"
- apt-get -y -qq install dns2tcp || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- #file=/etc/dns2tcpd.conf; [ -e "${file}" ] && cp -n $file{,.bkup}; echo -e "listen = 0.0.0.0\nport = 53\nuser = nobody\nchroot = /tmp\ndomain = dnstunnel.mydomain.com\nkey = password1\nressources = ssh:127.0.0.1:22" > "${file}"; dns2tcpd -F -d 1 -f /etc/dns2tcpd.conf
- #file=/etc/dns2tcpc.conf; [ -e "${file}" ] && cp -n $file{,.bkup}; echo -e "domain = dnstunnel.mydomain.com\nkey = password1\nresources = ssh\nlocal_port = 8000\ndebug_level=1" > "${file}"; dns2tcpc -f /etc/dns2tcpc.conf 178.62.206.227; ssh -C -D 8081 -p 8000 root@127.0.0.1
- ##### Install ptunnel
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}ptunnel${RESET} ~ ICMP tunneling"
- apt-get -y -qq install ptunnel || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- #--- Example
- #ptunnel -x password1
- #ptunnel -x password1 -p 123.9.9.9 -lp 8000 -da 127.0.0.1 -dp 22; ssh -C -D 8081 -p 8000 root@127.0.0.1
- ##### Install stunnel
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}stunnel${RESET} ~ SSL wrapper"
- apt-get -y -qq install stunnel || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- #--- Remove from start up
- systemctl disable stunnel4
- ##### Install zerofree
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}zerofree${RESET} ~ CLI nulls free blocks on a HDD"
- apt-get -y -qq install zerofree || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- #--- Example
- #fdisk -l
- #zerofree -v /dev/sda1 #for i in $(mount | grep sda | grep ext | cut -b 9); do mount -o remount,ro /dev/sda${i} && zerofree -v /dev/sda${i} && mount -o remount,rw /dev/sda${i}; done
- ##### Install gcc & multilib
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}gcc${RESET} & ${GREEN}multilibc${RESET} ~ compiling libraries"
- #*** I know its messy...
- for FILE in cc gcc g++ gcc-multilib make automake libc6 libc6-dev libc6-amd64 libc6-dev-amd64 libc6-i386 libc6-dev-i386 libc6-i686 libc6-dev-i686 build-essential dpkg-dev; do
- apt-get -y -qq install "${FILE}" 2>/dev/null
- done
- ##### Install MinGW ~ cross compiling suite
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}MinGW${RESET} ~ cross compiling suite"
- #*** I know its messy...
- for FILE in mingw-w64 binutils-mingw-w64 gcc-mingw-w64 cmake mingw-w64-dev mingw-w64-tools gcc-mingw-w64-i686 gcc-mingw-w64-x86-64 mingw32; do
- apt-get -y -qq install "${FILE}" 2>/dev/null
- done
- ##### Install WINE
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}WINE${RESET} ~ run Windows programs on *nix"
- apt-get -y -qq install wine winetricks || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- #--- Using x64?
- if [[ "$(uname -m)" == 'x86_64' ]]; then
- echo -e " ${GREEN}[+]${RESET} Configuring ${GREEN}WINE (x64)${RESET}"
- dpkg --add-architecture i386
- apt-get -qq update
- apt-get -y -qq install wine-bin:i386 || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- #apt-get -y -qq remove wine64
- apt-get -y -qq install wine32 || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- fi
- #--- Mono
- timeout 300 curl --progress -k -L -f "http://winezeug.googlecode.com/svn/trunk/install-addons.sh" | sed 's/^set -x$//' | bash - # || echo -e ' '${RED}'[!]'${RESET}" Issue downloading install-addons.sh" 1>&2
- apt-get -y -qq install mono-vbnc || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} #mono-complete || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- #--- Run WINE for the first time
- [ -e /usr/share/windows-binaries/whoami.exe ] && wine /usr/share/windows-binaries/whoami.exe &>/dev/null
- #--- Winetricks: Disable 'axel' support - BUG too many redirects.
- file=/usr/bin/winetricks; #[ -e "${file}" ] && cp -n $file{,.bkup}
- sed -i 's/which axel /which axel_disabled /' "${file}"
- #--- Setup default file association for .exe
- file=~/.local/share/applications/mimeapps.list; [ -e "${file}" ] && cp -n $file{,.bkup}
- ([[ -e "${file}" && "$(tail -c 1 ${file})" != "" ]]) && echo >> "${file}"
- echo -e 'application/x-ms-dos-executable=wine.desktop' >> "${file}"
- ##### Install MinGW (Windows) ~ cross compiling suite
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}MinGW (Windows)${RESET} ~ cross compiling suite"
- #curl --progress -k -L -f "http://sourceforge.net/projects/mingw/files/Installer/mingw-get-setup.exe/download" > /tmp/mingw-get-setup.exe || echo -e ' '${RED}'[!]'${RESET}" Issue downloading mingw-get-setup.exe" 1>&2 #***!!! hardcoded path!
- timeout 300 curl --progress -k -L -f "http://sourceforge.net/projects/mingw/files/Installer/mingw-get/mingw-get-0.6.2-beta-20131004-1/mingw-get-0.6.2-mingw32-beta-20131004-1-bin.zip/download" > /tmp/mingw-get.zip || echo -e ' '${RED}'[!]'${RESET}" Issue downloading mingw-get.zip" 1>&2 #***!!! hardcoded path!
- mkdir -p ~/.wine/drive_c/MinGW/bin/
- unzip -q -o -d ~/.wine/drive_c/MinGW/ /tmp/mingw-get.zip
- pushd ~/.wine/drive_c/MinGW/ >/dev/null
- for FILE in mingw32-base mingw32-gcc-g++ mingw32-gcc-objc; do #msys-base
- wine ./bin/mingw-get.exe install "${FILE}"
- done
- popd >/dev/null
- grep '^"PATH"=.*C:\\\\MinGW\\\\bin' ~/.wine/system.reg || sed -i '/^"PATH"=/ s_"$_;C:\\\\MinGW\\\\bin"_' ~/.wine/system.reg
- #wine cmd /c "set path=\"%path%;C:\MinGW\bin\" && reg ADD \"HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\Environment\" /v Path /t REG_EXPAND_SZ /d %path% /f"
- ##### Install veil framework
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}veil-evasion framework${RESET} ~ bypassing anti-virus"
- if [[ "$(uname -m)" == 'x86_64' ]]; then
- #dpkg --add-architecture i386 && apt-get -qq update
- #apt-get -y -qq install veil-evasion:i386 || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- echo -e ' '${RED}'[!]'${RESET}" veil-evasion has issues with x64. Skipping..." 1>&2 # (https://bugs.kali.org/view.php?id=2673)
- else
- apt-get -y -qq install veil-evasion || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- bash /usr/share/veil-evasion/setup/setup.sh --silent
- touch /etc/veil/settings.py
- sed -i 's/TERMINAL_CLEAR=".*"/TERMINAL_CLEAR="false"/' /etc/veil/settings.py
- fi
- ##### Install OP packers
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}OP packers${RESET} ~ bypassing anti-virus"
- apt-get -y -qq install upx-ucl curl || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} #wget -q "http://upx.sourceforge.net/download/upx309w.zip" -P /usr/share/packers/ && unzip -q -o -d /usr/share/packers/ /usr/share/packers/upx309w.zip; rm -f /usr/share/packers/upx309w.zip
- mkdir -p /usr/share/packers/
- timeout 300 curl --progress -k -L -f "http://www.eskimo.com/~scottlu/win/cexe.exe" > /usr/share/packers/cexe.exe || echo -e ' '${RED}'[!]'${RESET}" Issue downloading cexe.exe" 1>&2 #***!!! hardcoded path! #***!!! hardcoded version! Need to manually check for updates
- timeout 300 curl --progress -k -L -f "http://www.farbrausch.de/~fg/kkrunchy/kkrunchy_023a2.zip" > /usr/share/packers/kkrunchy.zip && unzip -q -o -d /usr/share/packers/ /usr/share/packers/kkrunchy.zip|| echo -e ' '${RED}'[!]'${RESET}" Issue downloading kkrunchy.zip" 1>&2 #***!!! hardcoded version! Need to manually check for updates
- timeout 300 curl --progress -k -L -f "https://pescrambler.googlecode.com/files/PEScrambler_v0_1.zip" > /usr/share/packers/PEScrambler.zip && unzip -q -o -d /usr/share/packers/ /usr/share/packers/PEScrambler.zip|| echo -e ' '${RED}'[!]'${RESET}" Issue downloading PEScrambler.zip" 1>&2 #***!!! hardcoded version! Need to manually check for updates
- #*** Need to make a bash script like hyperion...
- #--- Remove old temp files
- rm -f /usr/share/packers/kkrunchy*.zip
- rm -f /usr/share/packers/PEScrambler*.zip
- ##### Install shellter
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}shellter${RESET} ~ dynamic shellcode injector"
- apt-get -y -qq install shellter || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- ##### Install the backdoor factory
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}Backdoor Factory${RESET} ~ bypassing anti-virus"
- apt-get -y -qq install backdoor-factory || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- ##### Install the Backdoor Factory Proxy (BDFProxy)
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}Backdoor Factory Proxy (BDFProxy)${RESET} ~ patches binaries files during a MITM"
- apt-get -y -qq install git || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- git clone -q https://github.com/secretsquirrel/BDFProxy.git /opt/bdfproxy-git/ || echo -e ' '${RED}'[!] Issue when git cloning'${RESET} 1>&2
- pushd /opt/bdfproxy-git/ >/dev/null
- git pull -q
- popd >/dev/null
- ##### Install the BetterCap
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}BetterCap${RESET} ~ MITM framework"
- apt-get -y -qq install git ruby-dev libpcap-dev || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- git clone -q https://github.com/evilsocket/bettercap.git /opt/bettercap-git/ || echo -e ' '${RED}'[!] Issue when git cloning'${RESET} 1>&2
- pushd /opt/bettercap-git/ >/dev/null
- git pull -q
- gem build bettercap.gemspec
- gem install bettercap*.gem
- popd >/dev/null
- ##### Install the MITMf (GIT)
- #echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}MITMf${RESET} (GIT) ~ framework for MITM attacks"
- ##apt-get -y -qq install mitmf || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} # repo version. stable, but dated
- #apt-get -y -qq install git || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} # git version. bleeding edge
- #git clone -q https://github.com/byt3bl33d3r/MITMf.git /opt/mitmf-git/
- #pushd /opt/mitmf-git/ >/dev/null
- #git pull -q
- #bash kali_setup.sh
- #popd >/dev/null
- ##### Install FuzzDB
- #echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}FuzzDB${RESET} ~ multiple types of (word)lists (and similar things)"
- #svn -q checkout "http://fuzzdb.googlecode.com/svn/trunk/" /usr/share/fuzzdb-svn/
- ##### Install seclist
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}seclist${RESET} ~ multiple types of (word)lists (and similar things)"
- apt-get -y -qq install seclists || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- [ -e /usr/share/seclists ] && ln -sf /usr/share/seclists /usr/share/wordlists/seclists
- ##### Update wordlists
- echo -e "\n ${GREEN}[+]${RESET} Updating ${GREEN}wordlists${RESET} ~ collection of wordlists"
- apt-get -y -qq install curl || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- #--- Extract rockyou wordlist
- [ -e /usr/share/wordlists/rockyou.txt.gz ] && gzip -dc < /usr/share/wordlists/rockyou.txt.gz > /usr/share/wordlists/rockyou.txt #gunzip rockyou.txt.gz
- #rm -f /usr/share/wordlists/rockyou.txt.gz
- #--- Extract sqlmap wordlist
- #unzip -o -d /usr/share/sqlmap/txt/ /usr/share/sqlmap/txt/wordlist.zip
- #--- Add 10,000 Top/Worst/Common Passwords
- mkdir -p /usr/share/wordlists/
- (curl --progress -k -L -f "http://xato.net/files/10k most common.zip" > /tmp/10kcommon.zip 2>/dev/null || curl --progress -k -L -f "http://download.g0tmi1k.com/wordlists/common-10k_most_common.zip" > /tmp/10kcommon.zip 2>/dev/null) || echo -e ' '${RED}'[!]'${RESET}" Issue downloading 10kcommon.zip" 1>&2
- unzip -q -o -d /usr/share/wordlists/ /tmp/10kcommon.zip 2>/dev/null #***!!! hardcoded version! Need to manually check for updates
- mv -f /usr/share/wordlists/10k{\ most\ ,_most_}common.txt
- #--- Linking to more - folders
- [ -e /usr/share/dirb/wordlists ] && ln -sf /usr/share/dirb/wordlists /usr/share/wordlists/dirb
- #[ -e /usr/share/seclists ] && ln -sf /usr/share/seclists /usr/share/wordlists/seclists
- #--- Linking to more - files
- #ln -sf /usr/share/sqlmap/txt/wordlist.txt /usr/share/wordlists/sqlmap.txt
- ##--- Not enough? Want more? Check below!
- ##apt-cache search wordlist
- ##find / \( -iname '*wordlist*' -or -iname '*passwords*' \) #-exec ls -l {} \;
- #--- Remove old temp files
- rm -f /tmp/10kcommon.zip
- ##### Install apt-file
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}apt-file${RESET} ~ which package includes a specific file"
- apt-get -y -qq install apt-file || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- apt-file update
- ##### Install apt-show-versions
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}apt-show-versions${RESET} ~ which package version in repo"
- apt-get -y -qq install apt-show-versions || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- ##### Install Debian weak SSH keys
- #echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}Debian weak SSH keys${RESET} ~ OpenSSL predictable PRNG"
- #dpkg --remove --force-depends openssh-blacklist
- #grep -q '^PermitBlacklistedKeys yes' /etc/ssh/sshd_config || echo PermitBlacklistedKeys yes >> /etc/ssh/sshd_config
- #apt-get -y -qq install git || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- #git clone -q https://github.com/g0tmi1k/debian-ssh.git /opt/exploit-debianssh-git/
- #pushd /opt/exploit-debianssh/ >/dev/null
- #git pull -q
- #popd >/dev/null
- ##### Install Exploit-DB binaries
- #echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}Installing Exploit-DB binaries${RESET} ~ pre-compiled exploits"
- #apt-get -y -qq install git || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- #git clone -q https://github.com/offensive-security/exploit-database-bin-sploits.git /opt/exploitdb-bin-git/
- #pushd /opt/exploitdb-bin/ >/dev/null
- #git pull -q
- #popd >/dev/null
- ##### Install Babel scripts
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}Babel scripts${RESET} ~ post exploitation scripts"
- apt-get -y -qq install git || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- git clone -q https://github.com/attackdebris/babel-sf.git /opt/babel-sf-git/ || echo -e ' '${RED}'[!] Issue when git cloning'${RESET} 1>&2
- pushd /opt/babel-sf-git/ >/dev/null
- git pull -q
- popd >/dev/null
- ##### Install pwntools (https://bugs.kali.org/view.php?id=1236)
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}pwntools${RESET} ~ handy CTF tools"
- apt-get -y -qq install git || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- git clone -q https://github.com/Gallopsled/pwntools.git /opt/pwntools-git/ || echo -e ' '${RED}'[!] Issue when git cloning'${RESET} 1>&2
- pushd /opt/pwntools-git/ >/dev/null
- git pull -q
- popd >/dev/null
- ##### Install nullsecurity tool suite
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}nullsecurity tool suite${RESET} ~ collection of tools"
- apt-get -y -qq install git || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- git clone -q https://github.com/nullsecuritynet/tools.git /opt/nullsecuritynet-git/ || echo -e ' '${RED}'[!] Issue when git cloning'${RESET} 1>&2
- pushd /opt/nullsecuritynet-git/ >/dev/null
- git pull -q
- popd >/dev/null
- ##### Install gdb-peda (https://bugs.kali.org/view.php?id=2327)
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}gdb-peda${RESET} ~ GDB exploit development assistance"
- apt-get -y -qq install git gdb || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- git clone -q https://github.com/longld/peda.git /opt/gdb-peda-git/ || echo -e ' '${RED}'[!] Issue when git cloning'${RESET} 1>&2
- pushd /opt/gdb-peda-git/ >/dev/null
- git pull -q
- popd >/dev/null
- echo "source ~/peda/peda.py" >> ~/.gdbinit
- ##### Install radare2 (https://bugs.kali.org/view.php?id=2169)
- #echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}radare2${RESET} ~ reverse engineering framework"
- #apt-get -y -qq install git gdb || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- #git clone -q https://github.com/radare/radare2.git /opt/radare2-git/
- #pushd /opt/radare2-git/ >/dev/null
- #git pull -q
- #bash sys/install.sh
- #popd >/dev/null
- ##### Install ropeme (https://bugs.kali.org/view.php?id=2328)
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}ropeme${RESET} ~ generate ROP gadgets and payload"
- apt-get -y -qq install git python-distorm3 libdistorm64-1 libdistorm64-dev binutils || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- git clone -q https://github.com/packz/ropeme.git /opt/ropeme-git/ || echo -e ' '${RED}'[!] Issue when git cloning'${RESET} 1>&2
- pushd /opt/ropeme-git/ >/dev/null
- git reset --hard HEAD
- git pull -q
- sed -i 's/distorm/distorm3/g' ropeme/gadgets.py
- popd >/dev/null
- #--- Add to path
- file=/usr/local/bin/ropeme-git
- cat <<EOF > "${file}" || echo -e ' '${RED}'[!] Issue with writing file'${RESET} 1>&2
- #!/bin/bash
- cd /opt/ropeme-git/ && python ropeme/ropshell.py "\$@"
- EOF
- chmod +x "${file}"
- ##### Install ropper (https://bugs.kali.org/view.php?id=2329)
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}ropper${RESET} ~ generate ROP gadgets and payload"
- apt-get -y -qq install git python-capstone || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- git clone -q https://github.com/sashs/Ropper.git /opt/ropper-git/ || echo -e ' '${RED}'[!] Issue when git cloning'${RESET} 1>&2
- pushd /opt/ropper-git/ >/dev/null
- git pull -q
- python setup.py install
- popd >/dev/null
- ##### Install dissy
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}dissy${RESET} ~ GUI objdump"
- apt-get -y -qq install dissy binutils || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- ##### Install shellnoob
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}shellnoob${RESET} ~ shellcode writing toolkit"
- apt-get -y -qq install shellnoob || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- ##### Install checksec
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}checksec${RESET} ~ check *nix OS for security features"
- apt-get -y -qq install curl || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- mkdir -p /usr/share/checksec/
- file=/usr/share/checksec/checksec.sh
- timeout 300 curl --progress -k -L -f "http://www.trapkit.de/tools/checksec.sh" > "${file}" || echo -e ' '${RED}'[!]'${RESET}" Issue downloading checksec.zip" 1>&2 #***!!! hardcoded patch
- chmod +x "${file}"
- ##### Install shellconv
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}shellconv${RESET} ~ shellcode disassembler"
- apt-get -y -qq install git || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- git clone -q https://github.com/hasherezade/shellconv.git /opt/shellconv-git/ || echo -e ' '${RED}'[!] Issue when git cloning'${RESET} 1>&2
- pushd /opt/shellconv-git/ >/dev/null
- git pull -q
- popd >/dev/null
- #--- Add to path
- file=/usr/local/bin/shellconv-git
- cat <<EOF > "${file}" || echo -e ' '${RED}'[!] Issue with writing file'${RESET} 1>&2
- #!/bin/bash
- cd /opt/shellconv-git/ && python shellconv.py "\$@"
- EOF
- chmod +x "${file}"
- ##### Install bless
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}bless${RESET} ~ GUI hex editor"
- apt-get -y -qq install bless || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- ##### Install dhex
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}dhex${RESET} ~ CLI hex compare"
- apt-get -y -qq install dhex || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- ##### Install firmware-mod-kit
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}firmware-mod-kit${RESET} ~ customize firmware"
- apt-get -y -qq install firmware-mod-kit || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- if [[ "$(uname -m)" == "x86_64" ]]; then
- ##### Install lnav
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}lnav${RESET} (x64) ~ CLI log veiwer"
- # apt-get -y -qq install git ncurses-dev libsqlite3-dev libgpm-dev || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- # git clone -q https://github.com/tstack/lnav.git /usr/local/src/tstack-git/
- # pushd /usr/local/src/tstack-git >/dev/null
- # git pull -q
- # make -s clean
- # bash autogen.sh
- # ./configure
- # make -s && make -s install
- # popd >/dev/null
- curl --progress -k -L -f "https://github.com/tstack/lnav/releases/download/v0.7.3/lnav-0.7.3-linux-64bit.zip" > /tmp/lnav.zip || echo -e ' '${RED}'[!]'${RESET}" Issue downloading lnav.zip" 1>&2 #***!!! hardcoded version! Need to manually check for updates
- unzip -q -o -d /tmp/ /tmp/lnav.zip
- #--- Add to path
- mv -f /tmp/lnav-*/lnav /usr/local/bin/
- fi
- ##### Install sqlmap (GIT)
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}sqlmap${RESET} (GIT) ~ automatic SQL injection"
- apt-get -y -qq install git || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- git clone -q https://github.com/sqlmapproject/sqlmap.git /opt/sqlmap-git/ || echo -e ' '${RED}'[!] Issue when git cloning'${RESET} 1>&2
- pushd /opt/sqlmap-git/ >/dev/null
- git pull -q
- popd >/dev/null
- #--- Add to path
- file=/usr/local/bin/sqlmap-git
- cat <<EOF > "${file}" || echo -e ' '${RED}'[!] Issue with writing file'${RESET} 1>&2
- #!/bin/bash
- cd /opt/sqlmap-git/ && python sqlmap.py "\$@"
- EOF
- chmod +x "${file}"
- ##### Install commix (https://bugs.kali.org/view.php?id=2201)
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}commix${RESET} ~ automatic command injection"
- apt-get -y -qq install git || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- git clone -q https://github.com/stasinopoulos/commix.git /opt/commix-git/ || echo -e ' '${RED}'[!] Issue when git cloning'${RESET} 1>&2
- pushd /opt/commix-git/ >/dev/null
- git pull -q
- popd >/dev/null
- #--- Add to path
- file=/usr/local/bin/commix-git
- cat <<EOF > "${file}" || echo -e ' '${RED}'[!] Issue with writing file'${RESET} 1>&2
- #!/bin/bash
- cd /opt/commix-git/ && python commix.py "\$@"
- EOF
- chmod +x "${file}"
- ##### Install fimap
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}fimap${RESET} ~ automatic LFI/RFI tool"
- apt-get -y -qq install fimap || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- ##### Install smbmap
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}smbmap${RESET} ~ SMB enumeration tool"
- apt-get -y -qq install smbmap || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- ##### Install smbspider
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}smbspider${RESET} ~ search network shares"
- apt-get -y -qq install git || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- git clone -q https://github.com/T-S-A/smbspider.git /opt/smbspider-git/ || echo -e ' '${RED}'[!] Issue when git cloning'${RESET} 1>&2
- ##### Install CrackMapExec
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}CrackMapExec${RESET} ~ Swiss army knife for Windows environments"
- apt-get -y -qq install git || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- git clone -q https://github.com/byt3bl33d3r/CrackMapExec.git /opt/crackmapexec-git/ || echo -e ' '${RED}'[!] Issue when git cloning'${RESET} 1>&2
- ##### Install credcrack
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}credcrack${RESET} ~ credential harvester via Samba"
- apt-get -y -qq install git || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- git clone -q https://github.com/gojhonny/CredCrack.git /opt/credcrack-git/ || echo -e ' '${RED}'[!] Issue when git cloning'${RESET} 1>&2
- ##### Install Empire
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}Empire${RESET} ~ PowerShell post-exploitation"
- apt-get -y -qq install git || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- git clone -q https://github.com/PowerShellEmpire/Empire.git /opt/empire-git/ || echo -e ' '${RED}'[!] Issue when git cloning'${RESET} 1>&2
- ##### Install wig (https://bugs.kali.org/view.php?id=1932)
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}wig${RESET} ~ web application detection"
- apt-get -y -qq install git || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- git clone -q https://github.com/jekyc/wig.git /opt/wig-git/ || echo -e ' '${RED}'[!] Issue when git cloning'${RESET} 1>&2
- pushd /opt/wig-git/ >/dev/null
- git pull -q
- popd >/dev/null
- #--- Add to path
- file=/usr/local/bin/wig-git
- cat <<EOF > "${file}" || echo -e ' '${RED}'[!] Issue with writing file'${RESET} 1>&2
- #!/bin/bash
- cd /opt/wig-git/ && python wig.py "\$@"
- EOF
- chmod +x "${file}"
- ##### Install CMSmap
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}CMSmap${RESET} ~ CMS detection"
- apt-get -y -qq install git || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- git clone -q https://github.com/Dionach/CMSmap.git /opt/cmsmap-git/ || echo -e ' '${RED}'[!] Issue when git cloning'${RESET} 1>&2
- pushd /opt/cmsmap-git/ >/dev/null
- git pull -q
- popd >/dev/null
- #--- Add to path
- file=/usr/local/bin/cmsmap-git
- cat <<EOF > "${file}" || echo -e ' '${RED}'[!] Issue with writing file'${RESET} 1>&2
- #!/bin/bash
- cd /opt/cmsmap-git/ && python cmsmap.py "\$@"
- EOF
- chmod +x "${file}"
- ##### Install CMSScanner
- #echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}CMSScanner${RESET} ~ CMS detection"
- #apt-get -y -qq install git || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- #git clone -q https://github.com/wpscanteam/CMSScanner.git /opt/cmsscanner-git/
- #pushd /opt/cmsscanner-git/ >/dev/null
- #git pull -q
- #bundle install
- #popd >/dev/null
- ##### Install droopescan
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}DroopeScan${RESET} ~ Drupal vulnerability scanner"
- apt-get -y -qq install git || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- git clone -q https://github.com/droope/droopescan.git /opt/droopescan-git/ || echo -e ' '${RED}'[!] Issue when git cloning'${RESET} 1>&2
- pushd /opt/droopescan-git/ >/dev/null
- git pull -q
- popd >/dev/null
- #--- Add to path
- file=/usr/local/bin/droopescan-git
- cat <<EOF > "${file}" || echo -e ' '${RED}'[!] Issue with writing file'${RESET} 1>&2
- #!/bin/bash
- cd /opt/droopescan-git/ && python droopescan "\$@"
- EOF
- chmod +x "${file}"
- ##### Install wpscan (GIT)
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}WPScan${RESET} (GIT) ~ WordPress vulnerability scanner"
- apt-get -y -qq install git || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- git clone -q https://github.com/wpscanteam/wpscan.git /opt/wpscan-git/ || echo -e ' '${RED}'[!] Issue when git cloning'${RESET} 1>&2
- pushd /opt/wpscan-git/ >/dev/null
- git pull -q
- popd >/dev/null
- #--- Add to path
- file=/usr/local/bin/wpscan-git
- cat <<EOF > "${file}" || echo -e ' '${RED}'[!] Issue with writing file'${RESET} 1>&2
- #!/bin/bash
- cd /opt/wpscan-git/ && ruby wpscan.rb "\$@"
- EOF
- chmod +x "${file}"
- ##### Install BeEF XSS
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}BeEF XSS${RESET} ~ XSS framework"
- apt-get -y -qq install beef-xss || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- #--- Configure beef
- file=/usr/share/beef-xss/config.yaml; [ -e "${file}" ] && cp -n $file{,.bkup}
- username="root"
- password="toor"
- sed -i 's/user:.*".*"/user: "'${username}'"/' "${file}"
- sed -i 's/passwd:.*".*"/passwd: "'${password}'"/' "${file}"
- echo -e " ${YELLOW}[i]${RESET} BeEF username: ${username}"
- echo -e " ${YELLOW}[i]${RESET} BeEF password: ${password} ***${BOLD}CHANGE THIS ASAP${RESET}***. Edit: /usr/share/beef-xss/config.yaml"
- #--- Example hook
- #<script src="http://192.168.155.175:3000/hook.js" type="text/javascript"></script>
- ##### Install sonar.js
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}sonar.js${RESET} ~ Internal network framework"
- apt-get -y -qq install git || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- git clone -q https://github.com/mandatoryprogrammer/sonar.js.git /opt/sonar-js-git/ || echo -e ' '${RED}'[!] Issue when git cloning'${RESET} 1>&2
- ##### Install patator (GIT)
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}patator${RESET} (GIT) ~ brute force"
- apt-get -y -qq install git || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- git clone -q https://github.com/lanjelot/patator.git /opt/patator-git/ || echo -e ' '${RED}'[!] Issue when git cloning'${RESET} 1>&2
- pushd /opt/patator-git/ >/dev/null
- git pull -q
- popd >/dev/null
- #--- Add to path
- file=/usr/local/bin/patator-git
- cat <<EOF > "${file}" || echo -e ' '${RED}'[!] Issue with writing file'${RESET} 1>&2
- #!/bin/bash
- cd /opt/patator-git/ && python patator.py "\$@"
- EOF
- chmod +x "${file}"
- ##### Install crowbar
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}crowbar${RESET} ~ brute force"
- apt-get -y -qq install git || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- git clone -q https://github.com/galkan/crowbar.git /opt/crowbar-git/ || echo -e ' '${RED}'[!] Issue when git cloning'${RESET} 1>&2
- pushd /opt/crowbar-git/ >/dev/null
- git pull -q
- popd >/dev/null
- #--- Add to path
- file=/usr/local/bin/crowbar-git
- cat <<EOF > "${file}" || echo -e ' '${RED}'[!] Issue with writing file'${RESET} 1>&2
- #!/bin/bash
- cd /opt/crowbar-git/ && python crowbar.py "\$@"
- EOF
- chmod +x "${file}"
- ##### Install xprobe
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}xprobe${RESET} ~ os fingerprinting"
- apt-get install -y -qq xprobe || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- ##### Install p0f
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}p0f${RESET} ~ os fingerprinting"
- apt-get install -y -qq p0f || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- #p0f -i eth0 -p & curl 192.168.0.1
- ##### Install nbtscan ~ http://unixwiz.net/tools/nbtscan.html vs http://inetcat.org/software/nbtscan.html (see http://sectools.org/tool/nbtscan/)
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}nbtscan${RESET} (${GREEN}inetcat${RESET} & ${GREEN}unixwiz${RESET}) ~ netbios scanner"
- #--- inetcat - 1.5.x
- apt-get install -y -qq nbtscan || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- #nbtscan -r 192.168.0.1/24
- #nbtscan -r 192.168.0.1/24 -v
- #--- unixwiz - 1.0.x
- mkdir -p /usr/local/src/nbtscan-unixwiz/
- timeout 300 curl --progress -k -L -f "http://unixwiz.net/tools/nbtscan-source-1.0.35.tgz" > /usr/local/src/nbtscan-unixwiz/nbtscan.tgz || echo -e ' '${RED}'[!]'${RESET}" Issue downloading nbtscan.tgz" 1>&2 #***!!! hardcoded version! Need to manually check for updates
- tar -zxf /usr/local/src/nbtscan-unixwiz/nbtscan.tgz -C /usr/local/src/nbtscan-unixwiz/
- pushd /usr/local/src/nbtscan-unixwiz/ >/dev/null
- make -s clean; make -s 2>/dev/null # bad, but it gives errors which might be confusing (still builds)
- popd >/dev/null
- ln -sf /usr/local/src/nbtscan-unixwiz/nbtscan /usr/local/bin/nbtscan-uw
- #nbtscan-uw -f 192.168.0.1/24
- ##### Setup tftp client & server
- echo -e "\n ${GREEN}[+]${RESET} Setting up ${GREEN}tftp client${RESET} & ${GREEN}server${RESET} ~ file transfer methods"
- apt-get -y -qq install tftp || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} # tftp client
- apt-get -y -qq install atftpd || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} # tftp server
- #--- Configure atftpd
- file=/etc/default/atftpd; [ -e "${file}" ] && cp -n $file{,.bkup}
- echo -e 'USE_INETD=false\nOPTIONS="--tftpd-timeout 300 --retry-timeout 5 --maxthread 100 --verbose=5 --daemon --port 69 /var/tftp"' > "${file}"
- mkdir -p /var/tftp/
- chown -R nobody\:root /var/tftp/
- chmod -R 0755 /var/tftp/
- #--- Setup alias
- file=~/.bash_aliases; [ -e "${file}" ] && cp -n $file{,.bkup} #/etc/bash.bash_aliases
- ([[ -e "${file}" && "$(tail -c 1 ${file})" != "" ]]) && echo >> "${file}"
- grep -q '^## tftp' "${file}" 2>/dev/null || echo -e '## tftp\nalias tftproot="cd /var/tftp/"\n' >> "${file}" # systemctl atftpd start
- #--- Remove from start up
- systemctl disable atftpd
- #--- Disabling IPv6 can help
- #echo 1 > /proc/sys/net/ipv6/conf/all/disable_ipv6
- #echo 1 > /proc/sys/net/ipv6/conf/default/disable_ipv6
- ##### Install Pure-FTPd
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}Pure-FTPd${RESET} ~ FTP server/file transfer method"
- apt-get -y -qq install pure-ftpd || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- #--- Setup pure-ftpd
- mkdir -p /var/ftp/
- groupdel ftpgroup 2>/dev/null; groupadd ftpgroup
- userdel ftp 2>/dev/null; useradd -r -M -d /var/ftp/ -s /bin/false -c "FTP user" -g ftpgroup ftp
- chown -R ftp\:ftpgroup /var/ftp/
- chmod -R 0755 /var/ftp/
- pure-pw userdel ftp 2>/dev/null; echo -e '\n' | pure-pw useradd ftp -u ftp -d /var/ftp/
- pure-pw mkdb
- #--- Configure pure-ftpd
- echo "no" > /etc/pure-ftpd/conf/UnixAuthentication
- echo "no" > /etc/pure-ftpd/conf/PAMAuthentication
- echo "yes" > /etc/pure-ftpd/conf/NoChmod
- echo "yes" > /etc/pure-ftpd/conf/ChrootEveryone
- #echo "yes" > /etc/pure-ftpd/conf/AnonymousOnly
- echo "no" > /etc/pure-ftpd/conf/NoAnonymous
- echo "yes" > /etc/pure-ftpd/conf/AnonymousCanCreateDirs
- echo "yes" > /etc/pure-ftpd/conf/AllowAnonymousFXP
- echo "no" > /etc/pure-ftpd/conf/AnonymousCantUpload
- echo "30768 31768" > /etc/pure-ftpd/conf/PassivePortRange #cat /proc/sys/net/ipv4/ip_local_port_range
- echo "/etc/pure-ftpd/welcome.msg" > /etc/pure-ftpd/conf/FortunesFile #/etc/motd
- echo "FTP" > /etc/pure-ftpd/welcome.msg
- #--- 'Better' MOTD
- apt-get install -y -qq cowsay || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- echo "Moo" | /usr/games/cowsay > /etc/pure-ftpd/welcome.msg
- #--- SSL
- #mkdir -p /etc/ssl/private/
- #openssl req -x509 -nodes -newkey rsa:4096 -keyout /etc/ssl/private/pure-ftpd.pem -out /etc/ssl/private/pure-ftpd.pem
- #chmod -f 0600 /etc/ssl/private/*.pem
- ln -sf /etc/pure-ftpd/conf/PureDB /etc/pure-ftpd/auth/50pure
- #--- Apply settings
- #systemctl restart pure-ftpd
- echo -e " ${YELLOW}[i]${RESET} Pure-FTPd username: anonymous"
- echo -e " ${YELLOW}[i]${RESET} Pure-FTPd password: anonymous"
- #--- Setup alias
- file=~/.bash_aliases; [ -e "${file}" ] && cp -n $file{,.bkup} #/etc/bash.bash_aliases
- ([[ -e "${file}" && "$(tail -c 1 ${file})" != "" ]]) && echo >> "${file}"
- grep -q '^## ftp' "${file}" 2>/dev/null || echo -e '## ftp\nalias ftproot="cd /var/ftp/"\n' >> "${file}" # systemctl pure-ftpd start
- #--- Remove from start up
- systemctl disable pure-ftpd
- ##### Install samba
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}samba${RESET} ~ file transfer method"
- #--- Installing samba
- apt-get -y -qq install samba || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- apt-get -y -qq install cifs-utils || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- #--- Create samba user
- groupdel smbgroup 2>/dev/null; groupadd smbgroup
- userdel samba 2>/dev/null; useradd -r -M -d /nonexistent -s /bin/false -c "Samba user" -g smbgroup samba
- #--- Use the samba user
- file=/etc/samba/smb.conf; [ -e "${file}" ] && cp -n $file{,.bkup}
- sed -i 's/guest account = .*/guest account = samba/' "${file}" 2>/dev/null
- grep -q 'guest account' "${file}" 2>/dev/null || sed -i 's#\[global\]#\[global\]\n guest account = samba#' "${file}"
- #--- Setup samba paths
- grep -q '^\[shared\]' "${file}" 2>/dev/null || cat <<EOF >> "${file}"
- [shared]
- comment = Shared
- path = /var/samba/
- browseable = yes
- guest ok = yes
- #guest only = yes
- read only = no
- writable = yes
- create mask = 0644
- directory mask = 0755
- EOF
- #--- Create samba path and configure it
- mkdir -p /var/samba/
- chown -R samba\:smbgroup /var/samba/
- chmod -R 0755 /var/samba/ #chmod 0777 /var/samba/
- #--- Bug fix
- touch /etc/printcap
- #--- Check result
- #systemctl restart samba
- #smbclient -L \\127.0.0.1 -N
- #mount -t cifs -o guest //192.168.1.2/share /mnt/smb mkdir -p /mnt/smb
- #--- Disable samba at startup
- systemctl stop samba
- systemctl disable samba
- echo -e " ${YELLOW}[i]${RESET} Samba username: guest"
- echo -e " ${YELLOW}[i]${RESET} Samba password: <blank>"
- #--- Setup alias
- file=~/.bash_aliases; [ -e "${file}" ] && cp -n $file{,.bkup} #/etc/bash.bash_aliases
- ([[ -e "${file}" && "$(tail -c 1 ${file})" != "" ]]) && echo >> "${file}"
- grep -q '^## smb' "${file}" 2>/dev/null || echo -e '## smb\nalias sambaroot="cd /var/samba/"\n#alias smbroot="cd /var/samba/"\n' >> "${file}"
- ##### Install apache2 & php5
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}apache2${RESET} & ${GREEN}php5${RESET} ~ web server"
- apt-get -y -qq install apache2
- touch /var/www/html/favicon.ico
- if [[ -e /var/www/html/index.html ]]; then
- grep -q '<title>Apache2 Debian Default Page: It works</title>' /var/www/html/index.html && rm -f /var/www/html/index.html && echo '<?php echo "Access denied for " . $_SERVER["REMOTE_ADDR"]; ?>' > /var/www/html/index.php
- fi
- #sed -i 's/^display_errors = .*/display_errors = on/' /etc/php5/apache2/php.ini
- #--- Setup alias
- file=~/.bash_aliases; [ -e "${file}" ] && cp -n $file{,.bkup} #/etc/bash.bash_aliases
- ([[ -e "${file}" && "$(tail -c 1 ${file})" != "" ]]) && echo >> "${file}"
- grep -q '^## www' "${file}" 2>/dev/null || echo -e '## www\nalias wwwroot="cd /var/www/html/"\n' >> "${file}" # systemctl apache2 start
- #--- php fu
- apt-get -y -qq install php5 php5-cli php5-curl
- ##### Install mysql
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}MySQL${RESET} ~ database"
- apt-get -y -qq install mysql-server
- echo -e " ${YELLOW}[i]${RESET} MySQL username: root"
- echo -e " ${YELLOW}[i]${RESET} MySQL password: <blank> ***${BOLD}CHANGE THIS ASAP${RESET}***"
- if [[ ! -e ~/.my.cnf ]]; then
- cat <<EOF > ~/.my.cnf
- [client]
- user=root
- host=localhost
- password=
- EOF
- fi
- ##### Install phpmyadmin
- #echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}phpmyadmin${RESET} ~ database web ui"
- #apt-get -y -qq install phpmyadmin
- #sed -i "s_^// \$cfg\['Servers'\]\[\$i\]\['AllowNoPassword'\] = .*;_\$cfg\['Servers'\]\[\$i\]\['AllowNoPassword'\] = yes;_" /etc/phpmyadmin/config.inc.php
- ##### Install rsh-client
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}rsh-client${RESET} ~ remote shell connections"
- apt-get -y -qq install rsh-client || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- ##### Install sshpass
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}sshpass${RESET} ~ automating SSH connections"
- apt-get -y -qq install sshpass || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- ##### Install DBeaver
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}DBeaver${RESET} ~ GUI DB manager"
- apt-get -y -qq install curl || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- arch="i386"
- [[ "$(uname -m)" == "x86_64" ]] && arch="amd64"
- timeout 300 curl --progress -k -L -f "http://dbeaver.jkiss.org/files/dbeaver-ce_latest_${arch}.deb" > /tmp/dbeaver.deb || echo -e ' '${RED}'[!]'${RESET}" Issue downloading dbeaver.deb" 1>&2 #***!!! hardcoded version! Need to manually check for updates
- dpkg -i /tmp/dbeaver.deb
- #--- Add to path
- ln -sf /usr/share/dbeaver/dbeaver /usr/local/bin/dbeaver
- ##### Install ashttp
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}ashttp${RESET} ~ Share your terminal via the web"
- apt-get -y -qq install git || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- git clone -q https://github.com/JulienPalard/ashttp.git /opt/ashttp-git/ || echo -e ' '${RED}'[!] Issue when git cloning'${RESET} 1>&2
- ##### Install gotty
- echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}gotty${RESET} ~ Share your terminal via the web"
- apt-get -y -qq install git || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- git clone -q https://github.com/yudai/gotty.git /opt/gotty-git/ || echo -e ' '${RED}'[!] Issue when git cloning'${RESET} 1>&2
- ##### Setup a jail ~ http://allanfeid.com/content/creating-chroot-jail-ssh-access
- echo -e "\n ${GREEN}[+]${RESET} Setting up a ${GREEN}jail${RESET} ~ testing environment"
- apt-get -y -qq install debootstrap curl || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- #mkdir -p /var/jail/
- #debootstrap wheezy /var/jail/
- #SHELL=/bin/bash
- #chroot /var/jail
- #---
- #mkdir -p /var/jail/{dev,etc,lib,usr,bin}/
- #mkdir -p /var/jail/{,usr/}bin/
- #chown root\:root /var/jail
- #mknod -m 666 /var/jail/dev/null c 1 3
- #cp -f /etc/ld.so.cache /etc/ld.so.cache /etc/ld.so.conf /etc/nsswitch.conf /etc/hosts /var/jail/etc/
- #cp -f /bin/ls /bin/bash /var/jail/bin/
- ##ldd /bin/ls
- #curl --progress -k -L -f "http://www.cyberciti.biz/files/lighttpd/l2chroot.txt" > /usr/sbin/l2chroot || echo -e ' '${RED}'[!]'${RESET}" Issue downloading l2chroot" 1>&2 #***!!! hardcoded path!
- #sed -i 's#^BASE=".*"#BASE="/var/jail"#' /usr/sbin/l2chroot
- #chmod +x /usr/sbin/l2chroot
- ##### Setup SSH
- echo -e "\n ${GREEN}[+]${RESET} Setting up ${GREEN}SSH${RESET} ~ CLI access"
- apt-get -y -qq install openssh-server || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- #--- Wipe current keys
- rm -f /etc/ssh/ssh_host_*
- find ~/.ssh/ -type f ! -name authorized_keys -delete 2>/dev/null #rm -f "~/.ssh/!(authorized_keys)" 2>/dev/null
- #--- Generate new keys
- #ssh-keygen -A # Automatic method - we lose control of amount of bits used
- ssh-keygen -b 4096 -t rsa1 -f /etc/ssh/ssh_host_key -P ""
- ssh-keygen -b 4096 -t rsa -f /etc/ssh/ssh_host_rsa_key -P ""
- ssh-keygen -b 1024 -t dsa -f /etc/ssh/ssh_host_dsa_key -P ""
- ssh-keygen -b 521 -t ecdsa -f /etc/ssh/ssh_host_ecdsa_key -P ""
- ssh-keygen -b 4096 -t rsa -f ~/.ssh/id_rsa -P ""
- #--- Change MOTD
- apt-get install -y -qq cowsay || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- echo "Moo" | /usr/games/cowsay > /etc/motd
- #--- Change SSH settings
- file=/etc/ssh/sshd_config; [ -e "${file}" ] && cp -n $file{,.bkup}
- sed -i 's/^PermitRootLogin .*/PermitRootLogin yes/g' "${file}" # Accept password login (overwrite Debian 8's more secuire default option...)
- sed -i 's/^#AuthorizedKeysFile /AuthorizedKeysFile /g' "${file}" # Allow for key based login
- #sed -i 's/^Port .*/Port 2222/g' "${file}"
- #--- Enable ssh at startup
- #systemctl enable ssh
- #--- Setup alias (handy for 'zsh: correct 'ssh' to '.ssh' [nyae]? n')
- file=~/.bash_aliases; [ -e "${file}" ] && cp -n $file{,.bkup} #/etc/bash.bash_aliases
- ([[ -e "${file}" && "$(tail -c 1 ${file})" != "" ]]) && echo >> "${file}"
- grep -q '^## ssh' "${file}" 2>/dev/null || echo -e '## ssh\nalias ssh-start="systemctl restart ssh"\nalias ssh-stop="systemctl stop ssh"\n' >> "${file}"
- ###### Setup G/UFW
- #echo -e "\n ${GREEN}[+]${RESET} Installing ${GREEN}G/UFW${RESET} ~ firewall rule generator"
- #apt-get -y -qq install ufw gufw || echo -e ' '${RED}'[!] Issue with apt-get'${RESET} 1>&2
- ##### Custom insert point
- ##### Clean the system
- echo -e "\n ${GREEN}[+]${RESET} ${GREEN}Cleaning${RESET} the system"
- #--- Clean package manager
- for FILE in clean autoremove; do apt-get -y -qq "${FILE}"; done # Clean up - clean remove autoremove autoclean
- apt-get -y -qq purge $(dpkg -l | tail -n +6 | egrep -v '^(h|i)i' | awk '{print $2}') # Purged packages
- #--- Update slocate database
- updatedb
- #--- Reset folder location
- cd ~/ &>/dev/null
- #--- Remove any history files (as they could contain sensitive info)
- [[ "${SHELL}" == "/bin/zsh" ]] || history -c
- for i in $(cut -d: -f6 /etc/passwd | sort -u); do
- [ -e "${i}" ] && find "${i}" -type f -name '.*_history' -delete
- done
- if [ "${freezeDEB}" != "false" ]; then
- ##### Don't ever update these packages (during this install!)
- echo -e "\n ${GREEN}[+]${RESET} ${GREEN}Don't upgrade${RESET} these packages:"
- for x in metasploit-framework; do
- echo -e " ${YELLOW}[i]${RESET} + ${x}"
- echo "${x} install" | dpkg --set-selections
- done
- fi
- ##### Time taken
- finish_time=$(date +%s)
- echo -e "\n ${YELLOW}[i]${RESET} Time (roughly) taken: ${YELLOW}$(( $(( finish_time - start_time )) / 60 )) minutes${RESET}"
- #-Done-----------------------------------------------------------------#
- ##### Done!
- echo -e "\n ${YELLOW}[i]${RESET} Don't forget to:"
- echo -e " ${YELLOW}[i]${RESET} + Check the above output (Did everything install? Any errors? (${RED}HINT: What's in RED${RESET}?)"
- echo -e " ${YELLOW}[i]${RESET} + Manually install: Nessus, Nexpose, and/or Metasploit Community"
- echo -e " ${YELLOW}[i]${RESET} + Agree/Accept to: Maltego, OWASP ZAP, w3af, etc"
- echo -e " ${YELLOW}[i]${RESET} + Setup git: git config --global user.name <name>;git config --global user.email <email>"
- #echo -e " ${YELLOW}[i]${RESET} + ${YELLOW}Change time zone${RESET} & ${YELLOW}keyboard layout${RESET} (...if not ${BOLD}${timezone}${RESET} & ${BOLD}${keyboardLayout}${RESET})"
- echo -e " ${YELLOW}[i]${RESET} + ${YELLOW}Change default passwords${RESET}: PostgreSQL/MSF, MySQL, OpenVAS, BeEF XSS, etc"
- echo -e " ${YELLOW}[i]${RESET} + ${YELLOW}Reboot${RESET}"
- (dmidecode | grep -iq virtual) && echo -e " ${YELLOW}[i]${RESET} + Take a snapshot (Virtual machine detected!)"
- echo -e '\n'${BLUE}'[*]'${RESET}' '${BOLD}'Done!'${RESET}'\n\a'
- exit 0
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement