# Filename: # fedora-livecd-security.ks # Description: # A fully functional live OS based on Fedora for use in security auditing, forensics research, and penetration testing. # Maintainers: # Luke Macken # Acknowledgements: %include fedora-live-base.ks # --enforcing once rawhide is less broke #selinux --permissive firewall --enabled # We do not want to touch the swap partition on the box we are running on, # to keep it forensically sound. bootloader --append noswap %packages # remove trademarks -fedora-logos generic-logos # Reconnaissance dsniff hping3 nc6 nc nessus-client nessus-gui nessus-server ngrep nmap nmap-frontend p0f scanssh socat tcpdump tiger wireshark-gnome xprobe2 nbtscan tcpxtract firewalk hunt halberd argus nbtscan ettercap ettercap-gtk iptraf pcapdiff picviz etherape lynis # Forensics chkrootkit clamav dd_rescue gparted hexedit prelude-lml testdisk foremost sectool-gui rkhunter scanmem sleuthkit unhide examiner # Wireless aircrack-ng airsnort kismet # Code analysis splint pscan flawfinder rats # Intrusion detection snort aide tripwire labrea honeyd pads prewikka prelude-notify prelude-manager nebula # Password cracking john # Anonymity tor # under review (#461385) #hydra # Useful tools lsof ntop # Other necessary components yum-fastestmirror screen openbox obconf obmenu desktop-backgrounds-basic feh vim-enhanced gnome-terminal gnome-menus # make sure debuginfo doesn't end up on the live image -*debuginfo %end %post # remove trademarks sed -i -e 's/Fedora/Generic/g' /etc/fedora-release # useful stuff echo "alias grep='grep --color'" >> /home/fedora/.bashrc # create /etc/sysconfig/desktop (needed for installation) cat > /etc/sysconfig/desktop <> /etc/rc.d/init.d/fedora-live << EOF #if [ -e /usr/share/icons/hicolor/96x96/apps/fedora-logo-icon.png ] ; then # use image also for kdm # mkdir -p /usr/share/apps/kdm/faces # cp /usr/share/icons/hicolor/96x96/apps/fedora-logo-icon.png /usr/share/apps/kdm/faces/fedora.face.icon #fi # openbox configuration echo "openbox-session" > /home/fedora/.xsession chmod a+x /home/fedora/.xsession chown fedora:fedora /home/fedora/.xsession mkdir -p /home/fedora/.config/openbox cat >> /home/fedora/.config/openbox/autostart.sh << OBDONE # Run the system-wide support stuff . /etc/xdg/openbox/autostart.sh OBDONE # rc.xml cp /etc/xdg/openbox/rc.xml /home/fedora/.config/openbox sed -i -e 's/Clearlooks/Onyx/' /home/fedora/.config/openbox/rc.xml # menu.xml cat >> /home/fedora/.config/openbox/menu.xml << OBDONE gnome-terminal -e "su -c ettercap-gtk" gnome-terminal -e "sh -c 'hping3; bash'" gnome-terminal -e "sh -c 'nc6 -h; bash'" gnome-terminal -e "sh -c 'nc; bash'" gnome-terminal -e "sh -c 'ngrep -h; bash'" gnome-terminal -e "sh -c 'nessus; bash'" gnome-terminal -e "sh -c 'nmapfe; bash'" gnome-terminal -e "sh -c 'p0f -h; bash'" gnome-terminal -e "sh -c 'scanssh; bash'" gnome-terminal -e "sh -c 'socat; bash'" gnome-terminal -e "sh -c 'tcpdump -h; bash'" gnome-terminal -e "sh -c 'tiger; bash'" gnome-terminal -e "sh -c 'wireshark; bash'" gnome-terminal -e "sh -c 'xprobe2; bash'" gnome-terminal -e "sh -c 'nbtscan; bash'" gnome-terminal -e "sh -c 'tcpxtract; bash'" gnome-terminal -e "sh -c 'firewalk; bash'" gnome-terminal -e "sh -c 'hunt; bash'" gnome-terminal -e "sh -c 'halberd; bash'" gnome-terminal -e "sh -c 'iptraf; bash'"