# Filename: # fedora-livecd-security.ks # Description: # A fully functional live OS based on Fedora for use in security auditing, forensics research, and penetration testing. # Maintainers: # Luke Macken # Adam Miller # Acknowledgements: # Fedora LiveCD Xfce Spin team - some work here was inherited, many thanks! %include fedora-live-base.ks %packages -fedora-logos generic-logos firefox cups-pdf gnome-bluetooth alsa-plugins-pulseaudio pavucontrol # Command line ntfs-3g powertop wget irssi mutt yum-utils gdm Thunar gtk-xfce-engine thunar-volman xarchiver # dictionaries are big #-aspell-* #-man-pages-* # more fun with space saving -gimp-help # save some space -autofs -nss_db -sendmail ssmtp -acpid # system-config-printer does printer management better # xfprint has now been made as optional in comps. system-config-printer ###################### Security Stuffs ############################ # Reconnaissance dsniff hping3 nc6 nc nessus-client nessus-gui nessus-server ngrep nmap nmap-frontend p0f scanssh socat tcpdump tiger wireshark-gnome xprobe2 nbtscan tcpxtract firewalk hunt halberd argus nbtscan ettercap ettercap-gtk iptraf pcapdiff picviz etherape lynis # Forensics chkrootkit clamav dd_rescue gparted hexedit prelude-lml testdisk foremost mhonarc sectool-gui rkhunter scanmem sleuthkit unhide examiner dc3dd # Wireless aircrack-ng airsnort kismet # Code analysis splint pscan flawfinder rats # Intrusion detection snort aide tripwire labrea honeyd pads prewikka prelude-notify prelude-manager nebula # Password cracking john ophcrack # Anonymity tor # under review (#461385) #hydra # Useful tools lsof ntop # Other necessary components yum-fastestmirror screen openbox obconf obmenu desktop-backgrounds-basic feh vim-enhanced gnome-menus gnome-terminal PolicyKit-gnome # make sure debuginfo doesn't end up on the live image -*debuginfo %end %post sed -i -e 's/Fedora/Generic/g' /etc/fedora-release # create /etc/sysconfig/desktop (needed for installation) cat > /etc/sysconfig/desktop <> /home/liveuser/.config/openbox/autostart.sh << OBDONE # Run the system-wide support stuff . /etc/xdg/openbox/autostart.sh OBDONE cat >> /etc/rc.d/init.d/livesys << EOF chown -R liveuser:liveuser /home/liveuser restorecon -R /home/liveuser # rc.xml cp /etc/xdg/openbox/rc.xml /home/liveuser/.config/openbox sed -i -e 's/Clearlooks/Onyx/' /home/liveuser/.config/openbox/rc.xml # menu.xml cat >> /home/liveuser/.config/openbox/menu.xml << OBDONE gnome-terminal -e "su -c ettercap-gtk" gnome-terminal -e "sh -c 'hping3; bash'" gnome-terminal -e "sh -c 'nc6 -h; bash'" gnome-terminal -e "sh -c 'nc; bash'" gnome-terminal -e "sh -c 'ngrep -h; bash'" gnome-terminal -e "sh -c 'nessus; bash'" gnome-terminal -e "sh -c 'nmapfe; bash'" gnome-terminal -e "sh -c 'p0f -h; bash'" gnome-terminal -e "sh -c 'scanssh; bash'" gnome-terminal -e "sh -c 'socat; bash'" gnome-terminal -e "sh -c 'tcpdump -h; bash'" gnome-terminal -e "sh -c 'tiger; bash'" gnome-terminal -e "sh -c 'wireshark; bash'" gnome-terminal -e "sh -c 'xprobe2; bash'" gnome-terminal -e "sh -c 'nbtscan; bash'" gnome-terminal -e "sh -c 'tcpxtract; bash'" gnome-terminal -e "sh -c 'firewalk; bash'" gnome-terminal -e "sh -c 'hunt; bash'" gnome-terminal -e "sh -c 'halberd; bash'" gnome-terminal -e "sh -c 'iptraf; bash'" gnome-terminal -e "sh -c 'chkrootkit; bash'" gnome-terminal -e "sh -c 'rkhunter; bash'" gnome-terminal -e "sh -c 'clamscan; bash'" gnome-terminal -e "sh -c 'dd_rescue; bash'" gnome-terminal -e "sh -c 'dc3dd; bash'" gnome-terminal -e "sh -c 'gparted; bash'" gnome-terminal -e "sh -c 'hexedit; bash'" gnome-terminal -e "sh -c 'prelude; bash'" gnome-terminal -e "sh -c 'testdisk; bash'" gnome-terminal -e "sh -c 'foremost; bash'" gnome-terminal -e "sh -c 'mhonarc; bash'" gnome-terminal -e "sh -c 'aircrack-ng; bash'" airsnort kismet dsniff gnome-terminal -e "sh -c 'pscan; bash'" gnome-terminal -e "sh -c 'splint; bash'" gnome-terminal -e "sh -c 'flawfinder; bash'" gnome-terminal -e "rats; bash'" gnome-terminal -e "sh -c 'aide; bash'" gnome-terminal -e "sh -c 'snort; bash'" gnome-terminal -e "sh -c 'tripwire --help; bash'" gnome-terminal -e "sh -c 'labrea; bash'" gnome-terminal -e "sh -c 'john; bash'" ophcrack gnome-terminal firefox liveinst yesopenbox obconf OBDONE # workaround to start nm-applet automatically #cp /etc/xdg/autostart/nm-applet.desktop /usr/share/autostart/ # disable screensaver locking gconftool-2 --direct --config-source=xml:readwrite:/etc/gconf/gconf.xml.defaults -s -t bool /apps/gnome-screensaver/lock_enabled false >/dev/null # set up timed auto-login for after 60 seconds cat >> /etc/gdm/custom.conf << FOE [daemon] TimedLoginEnable=true TimedLogin=liveuser TimedLoginDelay=60 FOE EOF %end