Tools & Techniques - Kali Linux of a Raspberry Pi

There are a couple of reasons why you might want to install Kali linux on an inexpensive hardware platform that you can deploy, abandon or hide somewhere. An obvious use might be to serve as an 'Evil AP' in support of wireless assessments. Kali linux is officially supported on a number of low-cost ARM based devices, with Offensive Security maintaining minimal, streamlined pre-built images which can be copied across to an SD card, installed and then configured with the packages you need for the task you have in mind. 


Installing Kali Linux on a Raspberry Pi 


Offensive Security maintain good documentation here. For the our needs:
  • Download and verify the image from here.
    • $ shasum -a 256 /Volumes/SANDISK/kali-2017.01-rpi2.img.xz
  • DD the image over the SD cards
    • $ sudo dd if=kali-2017.01-rpi2.img of=/dev/disk2 bs=1m
  • Insert the SD cards after the dd has completed and boot the rpi. I had a DHCP reservation set on my router so I knew what IP it would get. I also made sure I plugged in the extra wireless adaptor with a high gain antenna. 
  • Login to your new Kali install with the default credentials (U:root,P:toor) and change the password (passwd)
  • Update Kali
    • $ apt-get upgrade && apt-get update

Installing WifiPhisher (for an Evil AP)

Because the ARM pre-builds are streamlined you'll probably need to install some packages to get everything you want. For example, to install WifiPhisher

  • $ apt-get install wifiphisher

Then to run it:

Check for the AP on a wireless device:
Connect to the AP:
Fall for the 'upgrade':


Back on the Kali-pi, you should see the password provided:

A crude demonstration, but not bad for ~20 minutes work with zero customisation. 

Links

  • Kali on ARM page: https://docs.kali.org/category/kali-on-arm 
  • Kali Install Guide: https://docs.kali.org/kali-on-arm/install-kali-linux-arm-raspberry-pi 
  • Kali Tools Listing: https://tools.kali.org/tools-listing 

Popular posts from this blog

Tools & Techniques - Suricata 4.0 (High-performance Network IDS, IPS & NSM engine)

Splunk Security Cheat Sheet