View Issue Details

IDProjectCategoryView StatusLast Update
0006917Kali Linux[All Projects] Queued Tool Additionpublic2021-05-18 10:40
Reportertjnull Assigned To 
PrioritynormalSeverityminorReproducibilityalways
Status acknowledgedResolutionopen 
Product Version 
Target VersionFixed in Version 
Summary0006917: Kali Linux Cloud Pentesting Metapackage
DescriptionAs more corporations are moving there systems/networks in the cloud, pentesters will need to have a set of cloud tools to conduct assessments against a variety of cloud environments. Since Kali allows you to implement the OS in AWS, Azure, and in other places, they do not have the following cloud tools packaged. With that being said, I think the following tools should be packaged into Kali Linux to support the pentesters who assess these cloud environments for there clients.

Here are the following tools:
kubectl
Witnessme [https://github.com/byt3bl33d3r/WitnessMe]
postman [https://www.postman.com/downloads/]
insomnia [https://support.insomnia.rest/article/90-installation#linux]
pacu [https://github.com/RhinoSecurityLabs/pacu]
peirates [https://github.com/inguardians/peirates]
gitleaks [https://github.com/zricethezav/gitleaks]
Cloudbrute [https://github.com/0xsha/cloudbrute]


 
Steps To ReproduceSteps to install the tools (Some tools already have the packages in there that needed to be ported into the repo):

Kubectl:

sudo apt-get update && sudo apt-get install -y apt-transport-https gnupg2 curl
curl -s https://packages.cloud.google.com/apt/doc/apt-key.gpg | sudo apt-key add -
echo "deb https://apt.kubernetes.io/ kubernetes-xenial main" | sudo tee -a /etc/apt/sources.list.d/kubernetes.list
sudo apt-get update
sudo apt-get install -y kubectl

Witnessme:

python3 -m pip install --user pipx
pipx install witnessme

Postman:

Already have a deb package made that can be downloaded and added

Insomnia:

Already have a deb package made that can be downloaded and added

Pacu:

  git clone https://github.com/RhinoSecurityLabs/pacu
  cd pacu
  bash install.sh
  python3 pacu.py

Peirates:
golang will be needed for the installation
https://github.com/inguardians/peirates/releases

gitleaks:
https://github.com/zricethezav/gitleaks/releases
apt install golang
GO111MODULE=on go get github.com/zricethezav/gitleaks/v7

cloudbrute:
https://github.com/0xsha/cloudbrute/releases












Relationships

related to 0004575 resolvedsbrun gitleaks - Searches full repo history for secrets and keys 
related to 0007028 resolvedsbrun CloudBrute - Awesome cloud enumerator 
related to 0007029 resolvedsbrun peirates - Kubernetes Penetration Testing tool 
related to 0007030 resolvedsbrun pacu - The AWS exploitation framework, designed for testing the security of Amazon Web Services environments. 
related to 0007031 resolvedsbrun WitnessMe - Web Inventory tool, takes screenshots of webpages using Pyppeteer (headless Chrome/Chromium) and provides some extra 

Activities

g0tmi1k

2021-01-08 13:33

administrator   ~0014057

This needs to be broken down to individual requests rather than a bulk request

Issue History

Date Modified Username Field Change
2020-12-09 02:44 tjnull New Issue
2020-12-30 18:40 Hakan16 Issue cloned: 0006961
2021-01-08 13:24 g0tmi1k Priority urgent => normal
2021-01-08 13:33 g0tmi1k Note Added: 0014057
2021-01-08 13:57 g0tmi1k Status new => confirmed
2021-01-08 13:57 g0tmi1k Category New Tool Requests => Queued Tool Addition
2021-01-08 13:57 g0tmi1k Product Version 2020.4 =>
2021-02-02 21:15 g0tmi1k Relationship added related to 0004575
2021-02-02 23:24 g0tmi1k Relationship added related to 0007028
2021-02-02 23:34 g0tmi1k Relationship added related to 0007029
2021-02-02 23:36 g0tmi1k Relationship added related to 0007030
2021-02-02 23:41 g0tmi1k Relationship added related to 0007031
2021-05-18 10:40 g0tmi1k Severity major => minor
2021-05-18 10:40 g0tmi1k Status confirmed => acknowledged