Komunitas
discuss.tchncs.de
Purpose-built for Security Testing What makes Kali Linux unique is its purpose-built nature for security testing. While other Linux distributions may have security tools, Kali Linux integrates a vast array of them out of the box. This saves time for professionals who require a quick setup for penetration testing and ethical hacking tasks. Wide Array of Pre-installed Tools Kali Linux boasts a comprehensive selection of pre-installed tools, including but not limited to Wireshark, Nmap, Metasploit, and Aircrack-ng. These tools cover a broad spectrum of security assessments, from network scanning to vulnerability analysis and exploitation. https://www.jamesparker.dev/how-is-kali-linux-different-from-other-linux-distributions/###
Komunitas
programming.dev
Hey guys, i a am using ParrotOS and trying to install virtualbox from .deb package and i got the following warning dpkg: dependency problems prevent configuration of virtualbox-7.0: virtualbox-7.0 depends on libc6 (>= 2.34); however: Version of libc6:amd64 on system is 2.31-13+deb11u6. virtualbox-7.0 depends on libssl3 (>= 3.0.0~~alpha1); however: Package libssl3 is not installed. virtualbox-7.0 depends on libstdc++6 (>= 12); however: Version of libstdc++6:amd64 on system is 11.2.0-18really16parrot1. virtualbox-7.0 depends on libvpx7 (>= 1.10.0); however: Package libvpx7 is not installed. but it seems like ParrotOS repo outdated so i add http://archive.ubuntu.com jammy main universe to /etc/apt/sources.list update repo list apt-get update and then obtain libc6 package information apt-cache policy libc6 libc6: Installed: 2.31-13+deb11u7 Candidate: 2.31-13+deb11u7 Version table: 2.35-0ubuntu3 50 50 http://archive.ubuntu.com/ubuntu jammy/main amd64 Packages *** 2.31-13+deb11u7 600 600 https://deb.parrot.sh/parrot lts/main amd64 Packages 600 https://deb.parrot.sh/parrot parrot/main amd64 Packages 600 https://deb.parrot.sh/direct/parrot parrot-security/main amd64 Packages 100 /var/lib/dpkg/status then install libc6 via sudo apt-get install libc6=2.35-0ubuntu3 BUT i got Reading package lists... Done Building dependency tree... Done Reading state information... Done The following packages were automatically installed and are no longer required: afl++-doc docbook-to-man greenbone-security-assistant gtk-doc-tools gvmd-common hashcat-data intltool libapache2-mod-php libapache2-mod-php7.4 libc-devtools libclang-cpp11 libclang-cpp9 libclang1-11 libcrypt-dev libfakeroot libffi-dev libgc1 libgvm21 libhiredis0.14 libllvm9 libltdl-dev liblzf1 libmicrohttpd12 libnsl-dev libobjc-10-dev libobjc4 libomp-11-dev libomp5-11 libpfm4 libpocl2-common libradcli4 libtirpc-dev libucl1 libz3-dev llvm-9 llvm-9-runtime llvm-9-tools openvas-scanner oracle-instantclient-basic ospd-openvas php-common php7.4-cli php7.4-common php7.4-json php7.4-opcache php7.4-readline postgresql-common python3-defusedxml python3-qrcode python3-terminaltables redis-server redis-tools sysstat upx-ucl xsltproc Use 'sudo apt autoremove' to remove them. The following additional packages will be installed: libncurses6 libncursesw6 libtinfo6 Suggested packages: glibc-doc locales Recommended packages: libnss-nis libnss-nisplus The following packages will be REMOVED: afl afl++ afl++-clang armitage bluelog build-essential clang clang-11 clang-9 commix fakeroot g++ g++-10 gsad gvm gvm-tools gvmd hashcat lib32gcc-s1 lib32stdc++6 libbluetooth-dev libc-bin libc-dev-bin libc6-dev libc6-i386 libclang-common-11-dev libclang-common-9-dev libexpat1-dev libncurses-dev libpocl2 libpython3-dev libpython3.9-dev libstdc++-10-dev libtinfo-dev libtool llvm-9-dev locales mate-common metasploit-framework pocl-opencl-icd postgresql postgresql-13 python3-dev python3-gvm python3.9-dev set unicorn-magic zlib1g-dev The following packages will be upgraded: libc6 libncurses6 libncursesw6 libtinfo6 WARNING: The following essential packages will be removed. This should NOT be done unless you know exactly what you are doing! libc-bin 4 upgraded, 0 newly installed, 48 to remove and 180 not upgraded. Need to get 3,812 kB of archives. After this operation, 1,122 MB disk space will be freed. You are about to do something potentially harmful. To continue type in the phrase 'Yes, do as I say!' What should i do? Edit: format command output
Komunitas
programming.dev
I’m not really seeing much in the way of cybersecurity tools in this thread. These are all FOSS and usable without extra cost (although some have paid upgrades) Zed Attack Proxy is something I use pretty regularly. Snort is a great IPS. Metasploit works great with some extra tooling. ClamAV is the Linux standard. Fail2ban is great for hardening. Crowdsec has replaced Fail2ban for a lot of folks.
Komunitas
programming.dev
Another way to read a lot of adversarial code is digging into the Metasploit payloads. https://github.com/rapid7/metasploit-framework/tree/master/data
Komunitas
lemm.ee
I think the majority of exploits in metasploit are for Linux, but could be wrong.
Komunitas
lemmy.haigner.me
You’re SOL if you’re a spear phishing target. But otherwise? Also looking bad… Frankly, AVs must fulfill an impossible purpose, and they’re horrible at it. If you ask any AV dev how to bypass their AV at a conference, they can give you a magic file size above which their AV gives up. Don’t wanna tank the performance of your computer, let’s pray that that chunky file is safe. Guess why malware devs deliver their malware in a compressed archive with a suspiciously good compression rate. Many AV vendors spend a disproportionate amount of time on detection of public toolkits, such as Metasploit. But they suck at detecting everything else, literally. If it’s private, they don’t detect it for a long time. Malware devs have been using the same techniques to evade AVs over and over again, yet they can’t figure out a way to block it. Even if I rig the odds in AVs favor by uploading shit to VirusTotal, only one thinks that my malware with Metasploit payload is malicious, months after the upload. Now in fairness, VirusTotal only does static analysis. Sucks for AVs that you can call arbitrary, legit functions between malicious ones to confuse the behavioral analysis. Or wait a minute or two for the analysis to give up. Or embed malicious code into legit applications. Or hell, go wild with Java or other more exotic interpreter languages as most AVs don’t check for them at all. Or… hear me out… abuse legit apps for illegitimate purposes! If you’ve got AnyDesk, force it to give the attackers unattended access to your computer. Thank you for your time, and I hope your trust in AVs is forever shaken. As it should be.
Komunitas
lemmy.world
The use of MD5 becomes a bigger issue when paired with the lack of package signatures. You can inject code into a package and find a colliding digest absurdly fast. I and a friend from Threatlocker created a Metasploit module to use Deb packages for local privesc based on the concept. If it touches the filesystem outside of the APT cache it becomes a vector.
Komunitas
lemmy.ml
From cellebrite’s own documentation (on the first page, of a sales pdf, which was the second or third google result): Supported devices include Huawei H1611, Xiaomi Mi 5, ZTE Z832 Sonata 3 and ZTE Z981 ZMax Pro I’m, again, not as familiar with huawei and xiaomi product lines and whatnot as I am with the iphones and pixels so I can’t speak to the popularity of specific ones implicated in just that bullet point and the doc I quoted from is at least seven years old, however I do know that many more chinese devices are accessible with these cop metasploit tools. The idea that backdoors can be grouped by what nation state intelligence apparatus has control over the manufacturing of the device in question is good reasoning when we have no other information to go off of. In this case though, there is a wealth of information public, leaked and from people who just can’t help but warthunder their classified documents in fights online. I would never suggest American/israeli tech power should be accepted as a net positive or reasonable compromise. What I want is for people to critically and carefully consider the devices they trust based on what we know about intelligence apparatuses ability to compromise them as opposed to the fog of information war.
Komunitas
lemmy.ml
agh youtube nooo … please post peertube/odysee or other hacker ethics decentralized/libre platforms please, youtube is not anarchist friendly, is “centralized” not “decentralized”. do not promote that crap here most of those people 90% are script kiddies using metasploit and other kiddie tools anyways. learn to hack not to copy those people unless that was you looking is to make money and bunch of nation waver corporate sell outs, not actually learn hacking
Komunitas
ursal.zone
O que há no computador de uma criança? Pra todos os crianços, crianças e criances do fediverso 😅 #Linux #raquer #kali #tor #metasploit #meme @linux
Komunitas
lemmy.world
Comprehensive guide on writing your first metasploit remote code execution module::Comprehensive guide on how to convert your RCE vulnerability into a fully functional metasploit module, that will spawn any payload. We use CVE-2023-32781 as our example.
Komunitas
lemmy.world
Lihat kiriman asli pada platform media sosial terkait.
Komunitas
yiffit.net
Archived version: https://archive.ph/eSuy1 A few months ago, an engineer in a data center in Norway encountered some perplexing errors that caused a Windows server to suddenly reset its system clock to 55 days in the future. The engineer relied on the server to maintain a routing table that tracked cell phone numbers in real time as they moved from one carrier to the other. A jump of eight weeks had dire consequences because it caused numbers that had yet to be transferred to be listed as having already been moved and numbers that had already been transferred to be reported as pending. “With these updated routing tables, a lot of people were unable to make calls, as we didn’t have a correct state!” the engineer, who asked to be identified only by his first name, Simen, wrote in an email. “We would route incoming and outgoing calls to the wrong operators! This meant, e.g., children could not reach their parents and vice versa.” A show-stopping issue Simen had experienced a similar error last August when a machine running Windows Server 2019 reset its clock to January 2023 and then changed it back a short time later. Troubleshooting the cause of that mysterious reset was hampered because the engineers didn’t discover it until after event logs had been purged. The newer jump of 55 days, on a machine running Windows Server 2016, prompted him to once again search for a cause, and this time, he found it. The culprit was a little-known feature in Windows known as Secure Time Seeding. Microsoft introduced the time-keeping feature in 2016 as a way to ensure that system clocks were accurate. Windows systems with clocks set to the wrong time can cause disastrous errors when they can’t properly parse timestamps in digital certificates or they execute jobs too early, too late, or out of the prescribed order. Secure Time Seeding, Microsoft said, was a hedge against failures in the battery-powered onboard devices designed to keep accurate time even when the machine is powered down. “You may ask—why doesn’t the device ask the nearest time server for the current time over the network?” Microsoft engineers wrote. “Since the device is not in a state to communicate securely over the network, it cannot obtain time securely over the network as well, unless you choose to ignore network security or at least punch some holes into it by making exceptions.” To avoid making security exceptions, Secure Time Seeding sets the time based on data inside an SSL handshake the machine makes with remote servers. These handshakes occur whenever two devices connect using the Secure Sockets Layer protocol, the mechanism that provides encrypted HTTPS sessions (it is also known as Transport Layer Security). Because Secure Time Seeding (abbreviated as STS for the rest of this article) used SSL certificates Windows already stored locally, it could ensure that the machine was securely connected to the remote server. The mechanism, Microsoft engineers wrote, “helped us to break the cyclical dependency between client system time and security keys, including SSL certificates.” Simen wasn’t the only person encountering wild and spontaneous fluctuations in Windows system clocks used in mission-critical environments. Sometime last year, a separate engineer named Ken began seeing similar time drifts. They were limited to two or three servers and occurred every few months. Sometimes, the clock times jumped by a matter of weeks. Other times, the times changed to as late as the year 2159. “It has exponentially grown to be more and more servers that are affected by this,” Ken wrote in an email. “In total, we have around 20 servers (VMs) that have experienced this, out of 5,000. So it’s not a huge amount, but it is considerable, especially considering the damage this does. It usually happens to database servers. When a database server jumps in time, it wreaks havoc, and the backup won’t run, either, as long as the server has such a huge offset in time. For our customers, this is crucial.” Simen and Ken, who both asked to be identified only by their first names because they weren’t authorized by their employers to speak on the record, soon found that engineers and administrators had been reporting the same time resets since 2016. In 2017, for instance, a Reddit user in a sysadmin forum reported that some Windows 10 machines the user administered for a university were reporting inaccurate times, in some cases by as many as 31 hours in the past. The Reddit user eventually discovered that the time changes were correlated to a Windows registry key in HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\W32Time\SecureTimeLimits. Additional investigation showed that the time changes were also linked to errors that reported valid SSL certificates used by the university website were invalid when some people tried to access it. The admin reached the following conclusion: TLDR: Windows 10 has a feature called Secure Time which is on by default. It correlates time stamp metadata from SSL packets and matches them against time from the DCs. It processes these various times by means of black magic and sets the system clock accordingly. This feature has the potential to flip out and set the system time to a random time in the past. The flip out MIGHT be caused by issues with SSL traffic. Other examples of people reporting the same behavior—for example, here and here—date back to 2016, shortly after the rollout of STS. More recent reports of harmful STS-induced time changes are here, here, and here. “We’ve run into a show-stopping issue where time on a bunch of production systems jumped forward 17 hours,” one Reddit user wrote. “If you’ve been in the game more than a week, you know the havoc this can cause.” STS primer To determine the current time, STS pulls a set of metadata contained in the SSL handshake. Specifically, the data is: ServerUnixTime, a date and time representation showing the number of seconds that have elapsed since 00:00:00 UTC on January 1, 1970 Cryptographically signed data obtained from the remote server’s SSL certificate showing whether it has been revoked under a mechanism knowns as the Online Certificate Status Protocol. Microsoft engineers said they used the ServerUnixTime data “assuming it is somewhat accurate” but went on to acknowledge in the same sentence that it “can also be incorrect.” To prevent STS from resetting system clocks based on data provided by a single out-of-sync remote server, STS makes randomly interspersed SSL connections to multiple servers to arrive at a reliable range for the current time. The mechanism then merges the ServerUnixTime with the OCSP validity period to produce the smallest possible time range and assigns it a confidence score. When the score reaches a sufficiently high threshold, Windows classifies the data as an STSHC, short for Secure Time Seed of High Confidence. The STSHC is then used to monitor system clocks for “gross errors” and correct them. Despite the checks and balances built into STS to ensure it provides accurate time estimates, the time jumps indicate the feature sometimes makes wild guesses that are off by days, weeks, months, or even years. “At this point, we are not completely sure why secure time seeding is doing this,” Ken wrote in an email. “Being so seemingly random, it’s difficult to [understand]. Microsoft hasn’t really been helpful in trying to track this, either. I’ve sent over logs and information, but they haven’t really followed this up. They seem more interested in closing the case.” The logs Ken sent looked like the ones shown in the two screenshots below. They captured the system events that occurred immediately before and after the STS changed the times. The selected line in the first image shows the bounds of what STS calculates as the correct time based on data from SSL handshakes and the heuristics used to corroborate it. The “Projected Secure Time” entry immediately above the selected line shows that Windows estimates the current date to be October 20, 2023, more than four months later than the time shown in the system clock. STS then changes the system clock to match the incorrectly projected secure time, as shown in the “Target system time.” The second image shows a similar scenario in which STS changes the date from June 10, 2023, to July 5, 2023. Simen, meanwhile, said he has also reported the time resets to multiple groups at Microsoft. When reporting the problems on Microsoft’s feedback hub in May, he said, he received no company response. He then reported it through the Microsoft Security Response Center in June. The submission was closed as a “non-MSRC case" with no elaboration. The engineer then tapped a third party specializing in Microsoft cloud security to act as an intermediary. The intermediary relayed a response from Microsoft recommending STS be turned off when the server receives reliable timekeeping through the Network Time Protocol. “Unfortunately, this recommendation isn’t publicly available, and it is still far from enough to stop the wrongly designed feature to keep wreaking havoc around the world,” Simen wrote in an email. Warning: STS will “bite you in the butt” Simen said he believes the STS design is based on a fundamental misinterpretation of the TLS specification. Microsoft’s description of STS acknowledges that some SSL implementations don’t put the current system time of the server in the ServerUnixTime field at all. Instead, these implementations—most notably the widely used OpenSSL code library starting in 2014—populate the field with random values. Microsoft’s description goes on to say, “We have observed that most servers provide a fairly accurate value in this field and the rest provide random values.” “The false assumption is that most SSL implementations return the server time,” Simen said. “This was probably true in a Microsoft-only ecosystem back when they implemented it, but at that time [when STS was introduced], OpenSSL was already sending random data instead.” While official Microsoft talking points play down the unreliability of STS, Ryan Ries, whose LinkedIn profile indicates he is a senior Windows escalation engineer at Microsoft, wasn’t as reticent when discussing STS on social media last year. “Hey people,” he wrote. “If you manage Active Directory domain controllers, I want to give you some UNOFFICIAL advice that is solely my personal opinion: Disable Secure Time Seeding for w32time on your DCs.” When someone asked him why, Ries responded, “Because it’s just a matter of time—wink—before it bites you in the butt.” A Microsoft representative emailed the following statement several hours after this post went live on Ars: Secure Time Seeding feature is a heuristic-based method of time keeping that also helps correct system time in case of certain software/firmware/hardware timekeeping failures. The feature has been enabled by default in all default Windows configurations and has been shown to function as intended in default configurations. Time distribution is unique to each deployment and customers often configure their machines to their particular needs. Given the heuristic nature of Secure Time Seeding and the variety of possible deployments used by our customers, we have provided the ability to disable this feature if it does not suit their needs. Our understanding is that there are likely unique, proprietary, complex factors in deployments where customers are experiencing Secure Time Seeding issues and these customers do not benefit from this feature as it is currently implemented. In these isolated cases, the only course of action we can recommend is to disable this feature in their deployments. We agree that the overall direction of technology with the adaption of TLS v1.3 and other developments in this area could make Secure Time Seeding decreasingly effective over time, but we are not aware of any bugs arising from their use. This technology direction also makes heuristic calculation of time using SSL/TLS far less attractive when compared to deterministic, secure time synchronization. We continue to investigate how to best secure time synchronization on the Internet and welcome customer input on how to best meet their future needs. The mystery continues As Simen noted earlier, it’s not clear precisely what causes STS to make the errors sometimes but not always. “This is what really strikes me as odd,” Simen wrote. Microsoft “know the field they look at might contain random data, so my guess is that their implementation breaks down when this is skewed so that most/all implementations they communicate with contains random data rather than just some.” HD Moore, CTO and co-founder at runZero, speculated that the cause is some sort of logic bug in Microsoft code. On Signal, he wrote: If OpenSSL has been setting random unix times in TLS responses for a long period of time, but this bug is showing up infrequently, then it’s likely harder to trigger than just forcing a bunch of outbound TLS connections to a server with bogus timestamp replies—if it was that easy, it would happen far more frequently. Either the STS logic requires different root certificates as the signer, or some variety in the hostnames/IPs, or only triggers on certain flavors of random timestamp (like values dividable by 1024 or something). It smells like a logic bug that is triggered infrequently by fully random timestamps (32-bit) and likely just some subset of values and with some other conditions (like multiple requests in some period of time to multiple certs, etc.). There are other means to ensure server clocks remain accurate, Moore said: [Clock-setting] seems like something better handled through NTP, or at least through a trusted TLS connection to a known endpoint operated by the vendor (time.windows.com and friends). The super lazy (but arguably safer) way to get a trusted timestamp is something like: ❯ curl -s -vvv https://www.microsoft.com/4040 2>&1 | grep -i ‘< date:’< date: Wed, 16 Aug 2023 04:37:31 GMT. Second-ish precision, and if you lock the HTTP client to a short list of trusted CA roots for the target domain, pretty hard to mess with. I used something similar forever ago on Linux systems where the clock would go wrong often—set the hwclock to the HTTP response timestamp of a known good server, then run NTP, which would succeed since the clock was close enough to be within the boundary check—otherwise NTP would fail since the clock was too far off. As the creator and lead developer of the Metasploit exploit framework, a penetration tester, and a chief security officer, Moore has a deep background in security. He speculated that it might be possible for malicious actors to exploit STS to breach Windows systems that don’t have STS turned off. One possible exploit would work with an attack technique known as Server Side Request Forgery. Microsoft’s repeated refusal to engage with customers experiencing these problems means that for the foreseeable future, Windows will by default continue to automatically reset system clocks based on values that remote third parties include in SSL handshakes. Further, it means that it will be incumbent on individual admins to manually turn off STS when it causes problems. That, in turn, is likely to keep fueling criticism that the feature as it has existed for the past seven years does more harm than good. STS “is more like malware than an actual feature,” Simen wrote. “I’m amazed that the developers didn’t see it, that QA didn’t see it, and that they even wrote about it publicly without anyone raising a red flag. And that nobody at Microsoft has acted when being made aware of it.”
Komunitas
discuss.tchncs.de
SIMPLE DOCKER FULL OS ======== the git https://github.com/realsifocopypaste333/docker-full-os ==================== Assalamulaikum May peace be upon you Greating floss (free libre open source software ) gnu linux :) ============== This time we will talk about simple docker full os gnu linux os :) =========== What is docker full os ? Docker full os gnu linux os, in simple meaning, mean special kinds of docker that truely full gnu linux os which is running in the container in native performance. it’s like vm (virtual machine) or chroot or termux or proot with native perfomance. ========= The benefits of the docker full os gnu linux os it has native performance it very easy to make and to use we can make simple cloud gaming / cloud computing :) etc ========== the weakness of the docker full os gnu linux it need a lot of space there is no enough documentaries about docker full os etc ========= HOW TO MAKE DOCKER FULL OS GNU LINUX OS ====================== install gnu linux in laptop server for os host example = sparky linux kde plasma / xfce semi rolling :) ================== install gnu linux client’s laptop for client os ============== install docker in host os (server) via cli (command line interface) / terminal sudo apt update sudo apt install docker* docker-compose* xhost + =========== Make simple pulse audio fix in host os (server) 4a. install pulse audio in os host (server) 4b. make a config file for pulse audio in host os (server) example = /home/realsifo/Downloads/pulse/pulseaudio.socket default-server = unix://home/realsifo/Downloads/pulse/pulseaudio.socket Prevent a server running in the container autospawn = no daemon-binary = /bin/true Prevent the use of shared memory enable-shm = false Share socket and config file with docker and set environment variables PULSE_SERVER and PULSE_COOKIE. Container user must be same as on host: 4c. run this command in host os (server) pactl load-module module-native-protocol-unix socket=/home/realsifo/Downloads/pulse/pulseaudio.socket ===================== PULL IMAGE GNU LINUX for DOCKER OS FULL OS in host os (server) sudo docker pull kalilinux/kali-rolling sudo docker images =============== run the DOCKER IMAGE docker run -ti --device=/dev/dri:/dev/dri --privileged --cap-add=ALL --device /dev/snd --volume /dev:/dev -v /dev:/dev --group-add audio -v /var/run/docker.sock:/host/var/run/doc -v /:/media/prime --env PULSE_SERVER=unix:/home/realsifo/Downloads/pulse/pulseaudio.socket --env PULSE_COOKIE=/home/realsifo/Downloads/pulse/pulseaudio.cookie --volume /home/realsifo/Downloads/pulse/pulseaudio.socket:/home/realsifo/Downloads/pulse/pulseaudio.socket --volume /home/realsifo/Downloads/pulse/pulseaudio.client.conf --publish=0.0.0.0:3351:3351 --publish=0.0.0.0:51:51 --group-add video --volume=“/tmp/.X11-unix:/tmp/.X11-unix” --env=“DISPLAY” -e XAUTHORITY=/root/.Xauthority --name docker-full-os-001 93b4ab65e32a ================= UPDATE DAN UPGRADE the DOCKER FULL OS apt update apt full-upgrade ================== INSTALL APPS in DOCKER FULL OS apt install nano pulseaudio* neofetch vlc* smplayer* wget uget cairo-dock* alsa-utils* network-manager net-tools* cairo-dock-plug-ins* dbus dbus-x11 thunar* chromium* rofi* terminator* sudo kate* kwrite* geany* geany-plugin-addons* aptitude* qt5-style-kvantum-themes qt5-style-kvantum-l10n qt5-style-kvantum libreoffice krita* gimp* kdenlive* handbrake* yt-dlp* isomaster* k3b* apt-utils* git htop* compiz* compiz-boxmenu* compiz-plugins* compizconfig-settings-manager* emerald* emerald-themes* fusion-icon* simple-ccsm* usbutils* lxqt* nmap* wireshark* sqlmap* metasploit-framework* airgeddon* bleachbit* xfce4* xfce4-goodies* kde-full* plasma-nm if we use intel gpu , we need to install intel vulkan driver a. aktivate the i386 multi-arch dpkg --add-architecture i386 && sudo apt update b. install the necesary apps apt install libvulkan1 libvulkan1:i386 mesa-vulkan-drivers mesa-vulkan-drivers:i386 vulkan-tools* c. we can also install wine dan lutris apt install wine64 lutris* ====================== 7.add user for docker full os 7a. add user adduser namauser b. make the user become sudo usermod -aG sudo username =========================== how to save the DOCKER FULL OS 8a. cek the docker container that runing sudo docker ps -a B. save the docker container into docker image sudo docker container commit --pause=false id-container nama-image:label example sudo docker container commit --pause=false c092aa5afec0 kali-linux:kali-linux-joss C. to exite the docker container exit or sudo docker stop id-container D. tho run the docker container sudo docker start id-container E. to enter the running docker continer sudo docker exec -it id-container bash F. to erase the docker continer sudo docker container rm -f id-container G. to see the docker image sudo docker images H. to erase the docker image sudo docker rmi -f id-image I. to erase unessary docker image sudo docker rmi $(docker images -qa -f ‘dangling=true’) nb. all that comman must run in host os not inside the docker full os ======= =============== ========================= HOW TO ACESS DOCKER FULL OS how to access docker full os directly for host os we can access the apps gui in docker full os from the host OS using clie , rofi or cairo dock su user-name apps name su user-name rofi -show run select the apps su user-name cairo-dock =================== how to access docker full os FULL GUI / FULL DEKTOP directly for host os 2a. install xrdp server in docker full os 2b… edit nano /etc/xrpd/xrdp.ini edit the xrdp’s port 2c. sudo service xrpd restart 2.d. install the xrdp clinet like remmina , etc run remina apps in the host os (server) ================ how to make simple cloud gaming or cloud comping using docker full os 3a. install gnu linux os in other laptop (client’s laptop) 3b. install remmin client in client’s laptop 3c. run remmina xrdp client to start the cloud computing / cloud gaming :) ============== nb. wine / lutris sometimes will error in docker full os, how to fix it open lutris setting the game with lutris in the game menu , select wine regristry edit the hcu -------> wine add key X11 DRIVER add string “UseXVidMode”=“N” add string UseXVidMode -------> edit the VALUE to N add string “UseXRandR”=“N” add string UseXRandR -------> edit the VALUE to N close wine ============= ===================== ================= docker full os flatpak fix INSTALL FLATPAK a. enter root su b. install flatpak apt install flatpak c. install the flatpak components apt install --yes appstream-util G_DEBUG=fatal-criticals appstream-util validate-relax d. work around dbus-send --system /org/freedesktop/DBus org.freedesktop.DBus || dbus-daemon --system --fork rm -fr run/dbus/pid dbus-send --system /org/freedesktop/DBus org.freedesktop.DBus || dbus-daemon --system --fork dbus-send --system /org/freedesktop/DBus org.freedesktop.DBus || dbus-daemon --system --fork e. add flatpak flathub repo :) flatpak remote-add --if-not-exists flathub https://flathub.org/repo/flathub.flatpakrepo f. install the flatpak apps example peazip flatpak install flathub io.github.peazip.PeaZip g. run the flatpak’s apps in Mode user su userid flatpak run name-of-the-flapak’s-apps flatpak run io.github.peazip.PeaZip or we can run vaia the menu ================ ======================= this text is using the full creative common (cc) license ============================== thanks My Allah, The God bless you all. insya Allah ( by the God’s will ) ============ gretting floss (free libre open source software) gnu linux :) Wassalamulaikum peace be upon you ===============
Komunitas
discuss.tchncs.de
SIMPLE DOCKER FULL OS FOR SIMPLE CLOUD GAMING ======== the git https://github.com/realsifocopypaste333/docker-full-os ==================== Assalamulaikum May peace be upon you Greating floss (free libre open source software ) gnu linux :) ============== This time we will talk about simple docker full os gnu linux os :) =========== What is docker full os ? Docker full os gnu linux os, in simple meaning, mean special kinds of docker that truely full gnu linux os which is running in the container in native performance. it’s like vm (virtual machine) or chroot or termux or proot with native perfomance. ========= The benefits of the docker full os gnu linux os it has native performance it very easy to make and to use we can make simple cloud gaming / cloud computing :) etc ========== the weakness of the docker full os gnu linux it need a lot of space there is no enough documentaries about docker full os etc ========= HOW TO MAKE DOCKER FULL OS GNU LINUX OS ====================== install gnu linux in laptop server for os host example = sparky linux kde plasma / xfce semi rolling :) ================== install gnu linux client’s laptop for client os ============== install docker in host os (server) via cli (command line interface) / terminal sudo apt update sudo apt install docker* docker-compose* xhost + =========== Make simple pulse audio fix in host os (server) 4a. install pulse audio in os host (server) 4b. make a config file for pulse audio in host os (server) example = /home/realsifo/Downloads/pulse/pulseaudio.socket default-server = unix://home/realsifo/Downloads/pulse/pulseaudio.socket Prevent a server running in the container autospawn = no daemon-binary = /bin/true Prevent the use of shared memory enable-shm = false Share socket and config file with docker and set environment variables PULSE_SERVER and PULSE_COOKIE. Container user must be same as on host: 4c. run this command in host os (server) pactl load-module module-native-protocol-unix socket=/home/realsifo/Downloads/pulse/pulseaudio.socket ===================== PULL IMAGE GNU LINUX for DOCKER OS FULL OS in host os (server) sudo docker pull kalilinux/kali-rolling sudo docker images =============== run the DOCKER IMAGE docker run -ti --device=/dev/dri:/dev/dri --privileged --cap-add=ALL --device /dev/snd --volume /dev:/dev -v /dev:/dev --group-add audio -v /var/run/docker.sock:/host/var/run/doc -v /:/media/prime --env PULSE_SERVER=unix:/home/realsifo/Downloads/pulse/pulseaudio.socket --env PULSE_COOKIE=/home/realsifo/Downloads/pulse/pulseaudio.cookie --volume /home/realsifo/Downloads/pulse/pulseaudio.socket:/home/realsifo/Downloads/pulse/pulseaudio.socket --volume /home/realsifo/Downloads/pulse/pulseaudio.client.conf --publish=0.0.0.0:3351:3351 --publish=0.0.0.0:51:51 --group-add video --volume=“/tmp/.X11-unix:/tmp/.X11-unix” --env=“DISPLAY” -e XAUTHORITY=/root/.Xauthority --name docker-full-os-001 93b4ab65e32a ================= UPDATE DAN UPGRADE the DOCKER FULL OS apt update apt full-upgrade ================== INSTALL APPS in DOCKER FULL OS apt install nano pulseaudio* neofetch vlc* smplayer* wget uget cairo-dock* alsa-utils* network-manager net-tools* cairo-dock-plug-ins* dbus dbus-x11 thunar* chromium* rofi* terminator* sudo kate* kwrite* geany* geany-plugin-addons* aptitude* qt5-style-kvantum-themes qt5-style-kvantum-l10n qt5-style-kvantum libreoffice krita* gimp* kdenlive* handbrake* yt-dlp* isomaster* k3b* apt-utils* git htop* compiz* compiz-boxmenu* compiz-plugins* compizconfig-settings-manager* emerald* emerald-themes* fusion-icon* simple-ccsm* usbutils* lxqt* nmap* wireshark* sqlmap* metasploit-framework* airgeddon* bleachbit* xfce4* xfce4-goodies* kde-full* plasma-nm if we use intel gpu , we need to install intel vulkan driver a. aktivate the i386 multi-arch dpkg --add-architecture i386 && sudo apt update b. install the necesary apps apt install libvulkan1 libvulkan1:i386 mesa-vulkan-drivers mesa-vulkan-drivers:i386 vulkan-tools* c. we can also install wine dan lutris apt install wine64 lutris* ====================== 7.add user for docker full os 7a. add user adduser namauser b. make the user become sudo usermod -aG sudo username =========================== how to save the DOCKER FULL OS 8a. cek the docker container that runing sudo docker ps -a B. save the docker container into docker image sudo docker container commit --pause=false id-container nama-image:label example sudo docker container commit --pause=false c092aa5afec0 kali-linux:kali-linux-joss C. to exite the docker container exit or sudo docker stop id-container D. tho run the docker container sudo docker start id-container E. to enter the running docker continer sudo docker exec -it id-container bash F. to erase the docker continer sudo docker container rm -f id-container G. to see the docker image sudo docker images H. to erase the docker image sudo docker rmi -f id-image I. to erase unessary docker image sudo docker rmi $(docker images -qa -f ‘dangling=true’) nb. all that comman must run in host os not inside the docker full os ======= =============== ========================= HOW TO ACESS DOCKER FULL OS how to access docker full os directly for host os we can access the apps gui in docker full os from the host OS using clie , rofi or cairo dock su user-name apps name su user-name rofi -show run select the apps su user-name cairo-dock =================== how to access docker full os FULL GUI / FULL DEKTOP directly for host os 2a. install xrdp server in docker full os 2b… edit nano /etc/xrpd/xrdp.ini edit the xrdp’s port 2c. sudo service xrpd restart 2.d. install the xrdp clinet like remmina , etc run remina apps in the host os (server) ================ how to make simple cloud gaming or cloud comping using docker full os 3a. install gnu linux os in other laptop (client’s laptop) 3b. install remmin client in client’s laptop 3c. run remmina xrdp client to start the cloud computing / cloud gaming :) ============== nb. wine / lutris sometimes will error in docker full os, how to fix it open lutris setting the game with lutris in the game menu , select wine regristry edit the hcu -------> wine add key X11 DRIVER add string “UseXVidMode”=“N” add string UseXVidMode -------> edit the VALUE to N add string “UseXRandR”=“N” add string UseXRandR -------> edit the VALUE to N close wine ============= ===================== ================= docker full os flatpak fix INSTALL FLATPAK a. enter root su b. install flatpak apt install flatpak c. install the flatpak components apt install --yes appstream-util G_DEBUG=fatal-criticals appstream-util validate-relax d. work around dbus-send --system /org/freedesktop/DBus org.freedesktop.DBus || dbus-daemon --system --fork rm -fr run/dbus/pid dbus-send --system /org/freedesktop/DBus org.freedesktop.DBus || dbus-daemon --system --fork dbus-send --system /org/freedesktop/DBus org.freedesktop.DBus || dbus-daemon --system --fork e. add flatpak flathub repo :) flatpak remote-add --if-not-exists flathub https://flathub.org/repo/flathub.flatpakrepo f. install the flatpak apps example peazip flatpak install flathub io.github.peazip.PeaZip g. run the flatpak’s apps in Mode user su userid flatpak run name-of-the-flapak’s-apps flatpak run io.github.peazip.PeaZip or we can run vaia the menu ================ ======================= this text is using the full creative common (cc) license ============================== thanks My Allah, The God bless you all. insya Allah ( by the God’s will ) ============ gretting floss (free libre open source software) gnu linux :) Wassalamulaikum peace be upon you ===============
Komunitas
discuss.tchncs.de
SIMPLE DOCKER FULL OS ======== the git https://github.com/realsifocopypaste333/docker-full-os ==================== Assalamulaikum May peace be upon you Greating floss (free libre open source software ) gnu linux :) ============== This time we will talk about simple docker full os gnu linux os :) =========== What is docker full os ? Docker full os gnu linux os, in simple meaning, mean special kinds of docker that truely full gnu linux os which is running in the container in native performance. it’s like vm (virtual machine) or chroot or termux or proot with native perfomance. ========= The benefits of the docker full os gnu linux os it has native performance it very easy to make and to use we can make simple cloud gaming / cloud computing :) etc ========== the weakness of the docker full os gnu linux it need a lot of space there is no enough documentaries about docker full os etc ========= HOW TO MAKE DOCKER FULL OS GNU LINUX OS ====================== install gnu linux in laptop server for os host example = sparky linux kde plasma / xfce semi rolling :) ================== install gnu linux client’s laptop for client os ============== install docker in host os (server) via cli (command line interface) / terminal sudo apt update sudo apt install docker* docker-compose* xhost + =========== Make simple pulse audio fix in host os (server) 4a. install pulse audio in os host (server) 4b. make a config file for pulse audio in host os (server) example = /home/realsifo/Downloads/pulse/pulseaudio.socket default-server = unix://home/realsifo/Downloads/pulse/pulseaudio.socket Prevent a server running in the container autospawn = no daemon-binary = /bin/true Prevent the use of shared memory enable-shm = false Share socket and config file with docker and set environment variables PULSE_SERVER and PULSE_COOKIE. Container user must be same as on host: 4c. run this command in host os (server) pactl load-module module-native-protocol-unix socket=/home/realsifo/Downloads/pulse/pulseaudio.socket ===================== PULL IMAGE GNU LINUX for DOCKER OS FULL OS in host os (server) sudo docker pull kalilinux/kali-rolling sudo docker images =============== run the DOCKER IMAGE docker run -ti --device=/dev/dri:/dev/dri --privileged --cap-add=ALL --device /dev/snd --volume /dev:/dev -v /dev:/dev --group-add audio -v /var/run/docker.sock:/host/var/run/doc -v /:/media/prime --env PULSE_SERVER=unix:/home/realsifo/Downloads/pulse/pulseaudio.socket --env PULSE_COOKIE=/home/realsifo/Downloads/pulse/pulseaudio.cookie --volume /home/realsifo/Downloads/pulse/pulseaudio.socket:/home/realsifo/Downloads/pulse/pulseaudio.socket --volume /home/realsifo/Downloads/pulse/pulseaudio.client.conf --publish=0.0.0.0:3351:3351 --publish=0.0.0.0:51:51 --group-add video --volume=“/tmp/.X11-unix:/tmp/.X11-unix” --env=“DISPLAY” -e XAUTHORITY=/root/.Xauthority --name docker-full-os-001 93b4ab65e32a ================= UPDATE DAN UPGRADE the DOCKER FULL OS apt update apt full-upgrade ================== INSTALL APPS in DOCKER FULL OS apt install nano pulseaudio* neofetch vlc* smplayer* wget uget cairo-dock* alsa-utils* network-manager net-tools* cairo-dock-plug-ins* dbus dbus-x11 thunar* chromium* rofi* terminator* sudo kate* kwrite* geany* geany-plugin-addons* aptitude* qt5-style-kvantum-themes qt5-style-kvantum-l10n qt5-style-kvantum libreoffice krita* gimp* kdenlive* handbrake* yt-dlp* isomaster* k3b* apt-utils* git htop* compiz* compiz-boxmenu* compiz-plugins* compizconfig-settings-manager* emerald* emerald-themes* fusion-icon* simple-ccsm* usbutils* lxqt* nmap* wireshark* sqlmap* metasploit-framework* airgeddon* bleachbit* xfce4* xfce4-goodies* kde-full* plasma-nm if we use intel gpu , we need to install intel vulkan driver a. aktivate the i386 multi-arch dpkg --add-architecture i386 && sudo apt update b. install the necesary apps apt install libvulkan1 libvulkan1:i386 mesa-vulkan-drivers mesa-vulkan-drivers:i386 vulkan-tools* c. we can also install wine dan lutris apt install wine64 lutris* ====================== 7.add user for docker full os 7a. add user adduser namauser b. make the user become sudo usermod -aG sudo username =========================== how to save the DOCKER FULL OS 8a. cek the docker container that runing sudo docker ps -a B. save the docker container into docker image sudo docker container commit --pause=false id-container nama-image:label example sudo docker container commit --pause=false c092aa5afec0 kali-linux:kali-linux-joss C. to exite the docker container exit or sudo docker stop id-container D. tho run the docker container sudo docker start id-container E. to enter the running docker continer sudo docker exec -it id-container bash F. to erase the docker continer sudo docker container rm -f id-container G. to see the docker image sudo docker images H. to erase the docker image sudo docker rmi -f id-image I. to erase unessary docker image sudo docker rmi $(docker images -qa -f ‘dangling=true’) nb. all that comman must run in host os not inside the docker full os ======= =============== ========================= HOW TO ACESS DOCKER FULL OS how to access docker full os directly for host os we can access the apps gui in docker full os from the host OS using clie , rofi or cairo dock su user-name apps name su user-name rofi -show run select the apps su user-name cairo-dock =================== how to access docker full os FULL GUI / FULL DEKTOP directly for host os 2a. install xrdp server in docker full os 2b… edit nano /etc/xrpd/xrdp.ini edit the xrdp’s port 2c. sudo service xrpd restart 2.d. install the xrdp clinet like remmina , etc run remina apps in the host os (server) ================ how to make simple cloud gaming or cloud comping using docker full os 3a. install gnu linux os in other laptop (client’s laptop) 3b. install remmin client in client’s laptop 3c. run remmina xrdp client to start the cloud computing / cloud gaming :) ============== nb. wine / lutris sometimes will error in docker full os, how to fix it open lutris setting the game with lutris in the game menu , select wine regristry edit the hcu -------> wine add key X11 DRIVER add string “UseXVidMode”=“N” add string UseXVidMode -------> edit the VALUE to N add string “UseXRandR”=“N” add string UseXRandR -------> edit the VALUE to N close wine ============= ===================== ================= docker full os flatpak fix INSTALL FLATPAK a. enter root su b. install flatpak apt install flatpak c. install the flatpak components apt install --yes appstream-util G_DEBUG=fatal-criticals appstream-util validate-relax d. work around dbus-send --system /org/freedesktop/DBus org.freedesktop.DBus || dbus-daemon --system --fork rm -fr run/dbus/pid dbus-send --system /org/freedesktop/DBus org.freedesktop.DBus || dbus-daemon --system --fork dbus-send --system /org/freedesktop/DBus org.freedesktop.DBus || dbus-daemon --system --fork e. add flatpak flathub repo :) flatpak remote-add --if-not-exists flathub https://flathub.org/repo/flathub.flatpakrepo f. install the flatpak apps example peazip flatpak install flathub io.github.peazip.PeaZip g. run the flatpak’s apps in Mode user su userid flatpak run name-of-the-flapak’s-apps flatpak run io.github.peazip.PeaZip or we can run vaia the menu ================ ======================= this text is using the full creative common (cc) license ============================== thanks My Allah, The God bless you all. insya Allah ( by the God’s will ) ============ gretting floss (free libre open source software) gnu linux :) Wassalamulaikum peace be upon you ===============
Komunitas
yall.theatl.social
If you’re enjoying Sherlock, why not try Metasploit? In another direction, perhaps the most CLI fun I’ve had at work was using the phosphor hack of XScreenSaver and piping a lot of useful info to it. https://www.youtube.com/watch?v=G6ZWTrl7pV0
Komunitas
infosec.pub
A step-by-step guide explaining how to port a Metasploit Exploit to Ronin Exploits. Ronin Exploits is a simpler, more Object Orientated, micro-framework for writing and running exploits.
Komunitas
lemm.ee
The HTTPS everywhere extension only covers the browser. Other applications might be vulnerable. If he controls the network, he could hijack your DNS and intercept all other connections. He could also use a downgrade attack to force an insecure version of TLS and compromise that. But that’s extremely unlikely, unless he’s either a skilled attacker or can use tools like metasploit.
Komunitas
infosec.pub
Ever wanted to know more about the Ronin CLI, how to use ronin-repos or ronin-db, how to write Ruby scripts using ronin-support, or how to port Metasploit Payloads to ronin-payloads? We now have eight new Guides on those topics. Check it out!