Benedict Slade

I maintain a modified version of Kali I use as the basis for my testing which includes a variety of extra tools, preference, references, etc.  If you want a copy yourself, you can find one here:

https://drive.google.com/open?id=1X0IHNuRCWjHoQdvQUaEwWoDLKEB1_5ti

Each version is named for a different character played by Henry Winkler, for the record.

Changelog:

#########################################
#
# Hermit’s Haxorin’ VM
#
# Version: 2.0 (codename: Benedict Slade)
# Updated: 2018-05-08
#
#########################################
# Changelog
#########################################
#
#
# 2.0: Benedict Slade
# ——————————
# > Fixed GPG key issue on Kali
# > Full dist-upgrade for all Kali tools
# > Added /pentest/screenshots directory
# > Created new default terminal profile (Hermit Default) to remove transparency
# > Added multiple SANS cheat sheets and quick references to References/SANS
# > Added PentestMonkey’s Unix Privilege Escalation check script to /pentest/helpers and alias (unixpe)
# > Added gnome-screenshot and placed in favorites bar
# > Added httpscreenshot to /pentest/helpers and alias (httpscreenshot)
# > Added jxplorer (LDAP browser) to /pentest/helpers
# > Added basic buffer overflow fuzzer (bbof) to /pentest/helpers and alias (bbof)
# > Added Steganography Toolkit (Docker-based steg tools) with /root/stegdata as
# the /data directory and alias (run-stego-toolkit)

#########################################
# 1.0: The Fonz (Initial Relase)
# ——————————
# > Added VMWare tools
# > Added crackmapexec
# > Added backup-engagement.sh to /pentest/helpers
# > Added setup-engagement.sh to /pentest/helpers
# > Added takenote.sh to /pentest/helpers
# > Added find-nmap-targets.sh to /pentest/helpers
# > Added runptcommand.sh to /pentest/helpers
# > Added standard VMWare share mount alias (cdshared)
# > Added standard log alias (cdptlogs)
# > Added aliases for helpers (runptc, nms, tn, begin-engagement, backup-engagement)
# > Added cron job to automatically backup keepnote records
# > Added OWASP cheat sheets to /root/References (Attack Surface, REST, WebApp, XML, XSS)
# > Reconfigured task bar settings and display
# > Disabled grouped window ALT+TAB behavior
# > Added CGI-BIN exploit reference to /root/References
# > Added auto_xor_decryptor to /pentest/helpers and alias (autoxor)
# > Added webpwn3r to /pentest/helpers and alias (webpwn3r)
# > Added passivedns to /pentest/helpers, not configured
# > Added Stegsolve to /pentest/helpers and alias (stegsolve)
# > Added ParanoiDF to /pentest/helpers and alias (paranoidf)
# > Added pdfTools to /pentest/helpers
# > Added hashdeep to /pentest/helpers, not configured
# > Added MainEnglishDictionary from Probable-Wordlists to /usr/share/wordlists
# > Pre-exploded /usr/share/wordlists/rockyou.txt
# > Added my standard RFI PHP webshell generator to /usr/share/webshells/php
# > Added OpenSSL common commands to /root/References
# > Added HTML and XHTML Escape Code Reference to /root/References
# > Added LFI via PHP Bypass reference to /root/References
# > Added link to Firefox for CVE POCs
# > Configured msfdb to start at boot, initiated/built database
# > Configured msfconsole to use msfdb
# > Added password cracking format search cheat sheet to /root/References
# > Built install_history in /root/References in case all of this has to be done again
# > Added PTES references to /root/References/PTES
# > Added Penetration Testing Tools Cheat Sheet to /root/References
# > Added LFI Cheat Sheet to /root/References

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

Create a website or blog at WordPress.com

Up ↑

%d bloggers like this: