Archive for March, 2009

marketing

This menufix took a lot of time to prepare and to check.there are 2 things in this tutorial.one for spoon kiddies & another who wants to know,what actual is going on.I mean step by step fixing.for automatic fixing the menu.download the package & copy the applications-kmenuedit.menu from package & overwrite to ~/.config/menus/applications-kmenuedit.menu & copy applications folder & overwrite to ~/.local/share/applications/

I have installed the following packages too and fixed menu according to them as I was missing some of interesting stuff from BT3.these things are optional to install & may vary on your wish.

apt-get install kppp
snort(Don’t use apt-get as it will install old version.2.7)
Nessus 3.2.1
apt-get install bluez(Those missing bluetooth)

from terminal type kmenuedit

expand BackTrack menu

Vulnerability Identification
All
smbclient.py
(For fixing this copy the smbclient.py to /usr/bin

expand BackTrack menu

VOIP
All
Erase_registrations
Command:./erase_registrations;sudo -s

expand BackTrack menu
apt-get install apt-get install gcc-4.2
Press Y
Download MDK3
wget http://homepages.tu-darmstadt.de/~p_larbig/wlan/mdk3-v5.tar.bz2
extract the mdk3-v5.tar.bz2
cd mdk3-v5/osdep
kwrite common.mak
find the lines
CC = $(TOOL_PREFIX)gcc & change to CC = $(TOOL_PREFIX)gcc-4.2
save & exit
cd ..
make && make install

Radio Network Analysis
80211
All
ctrl+n
type MDK3
command:/usr/local/sbin/mdk3;sudo -s
select Run in terminal

Radio Network Analysis
80211
Cracking
ctrl+n
type MDK3
command:/usr/local/sbin/mdk3;sudo -s
select Run in terminal

expand BackTrack menu

Privilege Escalation
All
ctrl+n
type Etherape
command:etherape;sudo -s

expand BackTrack menu

Privilege Escalation
Sniffers
ctrl+n
type Etherape
command:etherape;sudo -s

expand BackTrack menu

Miscellaneous
usbview
Error:cannot open the file /proc/bus/usb/devices
FIX:add these lines to /etc/fstab
none /proc/bus/usb usbfs defaults
save & exit

expand BackTrack menu

Install flash player for firefox

wget http://fpdownload.macromedia.com/get/flashplayer/current/install_flash_player_10_linux.deb
dpkg -i install_flash_player_10_linux.deb
Cut & paste the /pentest/web/swfintruder to /var/www/swfintruder
copy & paste the /var/www/swfintruder/testSwf/test.swf to /var/www/swfintruder/
Miscellaneous
swfintruder
command:firefox http://127.0.0.1/swfintruder

launch the tool and in flash movie:type http://127.0.0.1/swfintruder/test.swf & hit load
now further you can put the swf files in /var/www/swfintruder & can test

expand BackTrack menu

Miscellaneous
ctrl+n
RFIDIOt
command:ls;sudo -s
Work path:/pentest/rfid/RFIDIOt-0.1w
checkmark Run in terminal

expand documents->All

Ctrl+n
type wiki.remote-exploit.org (wait untill new bt4 wiki launches)
command:konqueror http://wiki.remote-exploit.org

Ctrl+n
type http://www.isecom.org
command:konqueror http://www.isecom.org/osstmm

ctrl+n
type http://www.oissg.org
command:konqueror http://www.oissg.org/content/view/71/71

expand documents->BackTrack

ctrl+n
type http://www.remote-exploit.org
command:konqueror http://www.remote-exploit.org

ctrl+n
type forums.remote-exploit.org
command:konqueror http://forums.remote-exploit.org

expand docuements->OSSTMM

Ctrl+n
type http://www.isecom.org
command:konqueror http://www.isecom.org/osstmm

expand documents->ISSAF

type http://www.oissg.org
command:konqueror http://www.oissg.org/content/view/71/71

expand Editors

ctrl+n
type kwrite
command:kwrite %U

ctrl+n
type kate
command:kate %U

ctrl+n
type nedit
command:nedit %U

expand Internet

ctrl+n
type Network Manager
command:/etc/init.d/NetworkManager;sudo -s

ctrl+n
type vncviewer
command:vncviewer

expand Services

Right click services & choose new submenu
type Nessus

ctrl+n
type Start Nessus
command:/etc/init.d/nessusd start;sudo -s

ctrl+n
type Stop Nessus
command:/etc/init.d/nessud stop;sudo -s

For using BeEF service download beef:
wget http://www.bindshell.net/tools/beef/beef-v0.3.2.tar.gz
extract to /var/www/
copy the supplied setup-beef.sh to /usr/bin folder
test using http://127.0.0.1/beef(run apache2 first)

select BEEF
ctrl+n
Setup BeEF
command:setup-beef.sh;sudo -s
checkmark Run in terminal

select HTTPD
ctrl+n
type Start HTTPD
command:service apache2 start;sudo -s

ctrl+n
type Stop HTTPD
command:service apache2 stop;sudo -s

ctrl+n
type Restart HTTPD
command:/etc/init.d/apache2 restart;sudo -s

For using service mysql do this
delete the folder mysql in /var/lib(e.g.the /var/lib/mysql folder)
then run
dpkg-reconfigure mysql-server-5.0
Enter the password you want to use for root user.

select Mysql
ctrl+n
type Start Mysql
command:service mysql start;sudo -s

ctrl+n
type Stop Mysql
command:service mysql stop;sudo -s

ctrl+n
type Restart mysql
command:service mysql restart;sudo -s

select snort
ctrl+n
type Snort
command:snort;sudo -s

for using SSH Services first use
sshd-generate

select SSH
ctrl+n
Start SSHD
command:/bin/bash /etc/init.d/ssh start;sudo -s

ctrl+n
Stop SSHD
command:/bin/bash /etc/init.d/ssh stop;sudo -s

for using TFTP Services
mkdir /var/lib/tftpboot
chmod 777 /var/lib/tftpboot

select TFTPD
ctrl+n
Start TFTPD
command:/usr/sbin/inetd;sudo -s

ctrl+n
Stop TFTPD
command:killall -e /usr/sbin/inetd;sudo -s

select VNC
ctrl+n
Start VNC Server
command:vncserver;sudo -s

Stop VNC Server
command:vncserver -kill :1;sudo -s

expand graphics

ctrl+n
type kghostview
command:kghostview %u -caption “%c” %i %m

expand Utilities

ctrl+n
type oclock
command:oclock;sudo -s

expand utilities->desktop

ctrl+n
type kpager
command:kpager;sudo -s

ctrl+n
type Clipboard Tool
command:klipper;sudo -s

right click Utilities & choose new submenu

type peripherals
ctrl+n
type FAX Utility
command:kdeprintfax;sudo -s

expand X-Utilities

ctrl+n
type X Calc
command:xcalc;sudo -s

ctrl+n
type X Clock
command:xclock;sudo -s

ctrl+n
type X Clipboard
command:xclipboard;sudo -s

ctrl+n
type X Console
command:xconsole;sudo -s

ctrl+n
type X Editor
command:xedit %f;sudo -s

ctrl+n
type X Kill
command:xkill;sudo -s

ctrl+n
type X Load
command:xload;sudo -s

ctrl+n
type X Magnifier
command:xmag

click on File menu->new Item

type Find File/Folders
command:kfind;sudo -s

click on File menu->new submenu

type Toys
ctrl+n
type X Eyes
command:xeyes;sudo -s

ctrl+s & exit

Those who want Ettercap GUI perform this

apt-get install ettercap-gtk
press Y(Yes I know it will try to remove fasttrack as fasttrack is depend on ettercap)
cd /pentest/exploits
svn co http://svn.thepentest.com/fasttrack/
cd fasttrack
python setup.py install (Now answer some of the Q accordingly & you have done)
./fasttrack -g & ettercap -G both working correctly.

I have not used any other tools except the one’s which are included by default in BT 4 Beta.extra tools have been mentioned above only.if still something left then please let me know.thanks for reading this.below is some files which you need to download.Please CLICK here.

updating apt-get update I was getting following error

: GPG error: http://ppa.launchpad.net intrepid Release: The following signatures couldn’t be verified because the public key is not available: NO_PUBKEY CB2F6C86F77B1CA9

Solution:
Add the GPG signing key:
wget http://apt.pearsoncomputing.net/public.gpg
sudo apt-key add public.gpg

now run apt-get update

“cannot lock media/.hal-mtab” .while try to access the device

Make appropriate directory e.g. /mnt/sda1 & then put automount entry in /etc/fstab
mkdir /media
touch /media/.hal-mtab

edb: error while loading shared libraries: libQtGui.so.4: cannot open shared object file: No such file or directory

Evan’s debugger uses qt libraries and thus missing dependencies.here is how to do
download getlibs
wget http://www.boundlesssupremacy.com/Cappy/getlibs/getlibs-all.deb
dpkg -i getlibs-all.deb
getlibs libQtGui.so.4 (it will check for dependencies & packages needed)
Press Y
now run edb

MYSQL Error in db_create Metasploit

msf > load db_mysql[*] Successfully loaded plugin: db_mysql

msf > db_create

mysqladmin: connect to server at ‘localhost’ failed
error: ‘Access denied for user ‘root’@’localhost’ (using password: NO)’
ERROR 1045 (28000): Access denied for user ‘root’@’localhost’ (using password: NO)[*] Database creation complete (check for errors)

msf > db_import_nmap_xml xpsp2.xml
[-] Error while running command db_import_nmap_xml: Access denied for user ‘root’@’localhost’ (using password: NO)
Kindly check the Entry above for fixing Mysql-server 5.0 & just don’t assign any password while dpkg-reconfigure

Inguma GUI FIX

python ingumagui.py
Traceback (most recent call last):
File “ingumagui.py”, line 28, in <module>
from qt import *
ImportError: No module named qt
apt-get install python-qt3

SSHatter Parallel-ForkManager & Net-SSH-Perl Dependency FIX

those who installed SSHatter
root@ThUNdErbOlt:/pentest/password/SSHatter-0.6/src# ./SSHatter.pl
Can’t locate Parallel/ForkManager.pm in @INC (@INC contains: /etc/perl /usr/local/ lib/perl/5.10.0 /usr/local/share/perl/5.10.0 /usr/lib/perl5 /usr/share/perl5 /usr/ lib/perl/5.10 /usr/share/perl/5.10 /usr/local/lib/site_perl .) at ./SSHatter.pl li ne 33.
BEGIN failed–compilation aborted at ./SSHatter.pl line 33.
FIX
wget http://search.cpan.org/CPAN/authors/id/D/DL/DLUX/Parallel-ForkManager-0.7.5.tar.gz
tar -zxvf Parallel-ForkManager-0.7.5.tar.gz
cd Parallel-ForkManager-0.7.5
perl Makefile.PL
make
make install
cd \
wget http://search.cpan.org/CPAN/authors/id/T/TU/TURNSTEP/Net-SSH-Perl-1.34.tar.gz
tar -zxvf Net-SSH-Perl-1.34.tar.gz
cd Net-SSH-Perl-1.34
perl Makefile.PL
make
make install



Advertisements

Hello to all the members & visitor to this forum.I have created a debian package for installing/updating the top-notch tools of BackTrack distro to make you stay latest one.
this tool has been created in shell programming as back-end & I have used the light one GUI tool zenity to support & looks thing good.this tool will install the bt4_tu file to /usr/bin so you can invoke it from anywhere on shell & it will create one folder in /pnetest/BackTrack Tool Updater having shell file,HELP,INSTALL,ICON file.kindly pay a look to both INSTALL & HELP File.
for working this you need a working Internet connection & zenity(Already with BT4).
this is fully automatic tool & need no user intervention.so feel free & update your security tools on day to day basis.here is list of tools which will be installed/updated.

1.Aircrack-ng
2.Metasploit Framework
3.Milw0rm Database
4.Nmap
5.Fast-Track
6.Nikto
7.Inguma
8.W3af
9.Nessus-Plugins(register yourself for getting home-feed first & using for using this you need to have nessus already installed in system)

10.Snort rules(Only version 2.8 support yet & downloading can be done with the interval of 15 mins after previous download)

11.All(All-In-One Tools Silent Updation)

The attach file is debian package.

DOWNLOAD HERE

Install it using

bt~#dpkg -i bt4_tool_updater1.0.deb

remove using

bt~#dpkg -r bt4-tu