The Kali Linux Dojo - Ultimate Kali USB

Before We Begin
If You Havent Generated Your Own ISO, Download One.
USE YOUR OWN KALI 2.0 ISO
If you participated in the first workshop, use your own
custom ISO for this next module.

DOWNLOAD A PRE-BUILT ISO

If youve just joined, download a Kali 2.0 light ISO from
the address below. This is a smaller, lighter version of
Kali based on XFCE4.

wget http://archive.kali.org/sana.iso

Get Your Usb Drives Ready

Get a Kali 2.0 ISO and dd it to Your USB Drive.
If you don't have your own Kali ISO : wget http://archive.kali.org/sana.iso
Find the storage path of your USB device. Its most likely NOT /dev/sda.
Once discovered : dd if=sana.iso of=/dev/sdb bs=1M
If you need help with syntax : http://archive.kali.org/workshop02.txt

Kali Linux Dojo - Introduction

A Tale of Two Workshops
Mati Aharoni, Kali Linux, Offensive Security.

USB

ISO

Kali Linux is more than a collection of tools.

Back to back workshops around the Kali Linux OS.
Dojo 01 - Rolling Your Own.
Dojo 02 - Ultimate Kali on USB.
Big thanks to Black Hat & DEF CON for hosting us!

WORKSHOP 01

WORKSHOP 02

Rolling Your Own ISOs

Ultimate Kali USB

Customize all aspects of the

Kali 2.0 ISO build using Live
Build.

Create Kali 2.0 Live USB

images with persistence and
encrypted storage.

Kali Linux 2.0 - Whats New?

Now a Rolling Distribution
Kernel 4.0, Gnome 3.14
Based on Debian Jessie
Now a rolling distribution - big implications
Upstream monitoring of tool updates
Better workflow, new UI, reworked menus

If Kali 1.0 was focused on building a solid

infrastructure then Kali 2.0 is focused on overhauling
the user experience and maintaining updated
packages and tool repositories.

Kali Linux Live Boot

Several Ways to Run Kali (isohybrid) in a Live USB Setup
LIVE BOOT

PERSISTENCE

ENCRYPTED PERSISTENCE

FORENSICS MODE

Kali boots into a fresh

ISO each time (to RAM),
changes are not saved
across reboots.

A partition is set for

overlayed files. Changes
are saved across
reboots.

The persistence partition

is encrypted and requires
a password to load the
persistence partition.

A live boot option which

does not mount any
target partitions, allowing
for forensics work.

Multiple Persistent Stores

Squeeze Out More From Your USB Drive

Selecting The Persistence Partition

By default, the partition labeled persistence is
chosen.
Can be changed using a persistence-label boot
parameter.
Additional persistence stores can be defined and
chosen at boot time.

Lets Get Busy

http://archive.kali.org/workshop02.txt
Once the ISO is dded
We create two additional partitions on our 8GB USB drive.
Format the first with ext3fs and then label it persistence.
Create a persistence.conf file on the non-encrypted store.
Use cryptsetup to setup and format the 4th partition and define a password.
Create a persistence.conf file on the encrypted store.
Optionally set up a LUKS Nuke password.

LUKS Nuke Use Case

Squeeze Out More From Your USB Drive

QUESTIONS
and
ANSWERS

Go ahead. Ask away.

THANK
YOU

FOR JOINING