Install Metasploit 4.6-1 on ArchLinux

Published on 2013-05-25, in Security System

Context

During the HackGyver's session last Friday, jvoisin presented metasploit.
Setting up a metasploitable machine, he explained the basic uses of this amazing tool.

To sum up, let's say that for basic pentesting, the steps are:

Use nmap to find the working services
Use metasploit to find already existing vulnerabilities if there is any:
- search <related service tags>
- use <found module name>
- show options
- set <option>
- exploit

Metasploit on Archlinux

First step was to install metasploit (you don't say?) and it was funny to hear something like: "It's kind of borring to install mestasploit on Debian because you have to get a .deb here, then dpkg (insert option here), then... I'll give you 15 minutes to take care of that then we start.".

Hum? Difficulties on Debian for metasploit installation? Who cares? I'm on Arch \o/
I just have to write 'yaourt metasploit' and AUR takes care of everything!

depierre$ yaourt metasploit
1 aur/armitage-svn 841-1 (69)
    A graphical cyber attack management tool for Metasploit
2 aur/bionic-svn 2011.03.12-5 (3)
    The Android BSD-licenced lightweight Bionic libc, libm and libdl made into a stand-alone lib by the metasploit project
3 aur/metasploit 4.6-1 (Out of Date) (442)
    An advanced open-source platform for developing, testing, and using exploit code
4 aur/metasploit-git 20130417.17805.4e8d32a-1 (11)
    A development platform for creating security tools and exploits.
5 aur/ratproxy-wmap 1.58-1 (8)
    A passive web application security assessment tool, patched for usage with the Metasploit WMAP plugin
6 aur/ruby-msfrpc-client 1.0.1-1 (7)
    Provides a Ruby client API to access the Rapid7 Metasploit Pro RPC service
==> Numéro(s) des paquets à installer (ex: 1 2 3 ou 1-3)
==> ----------------------------------------------------
==> 3

Everything seems perfect! But some times it's just GFTO.

First get back

When yaourt tries to download framework-latest.tar.bz2, the md5 hashes compare fails :/

==> Validating source files with md5sums...
    framework-latest.tar.bz2 ... FAILED

So let's get the correct md5 one using wget the download the current framework-latest.tar.bz2 from https://metasploit.com.
Then we modify the md5sums variable from the PKGBUILD file.

depierre$ wget updates.metasploit.com/data/releases/framework-latest.tar.bz2
depierre$ md5sum framework-latest.tar.bz2 
366cdeb510795fe1a763db87d869396b  framework-latest.tar.bz2

==> Validating source files with md5sums...
    framework-latest.tar.bz2 ... Success

Good :)
I finish then the installation because I'm really exited to get started with metasploit!

The next things to install are bundler 2.0 (ruby-bundler 1.3.5-1) and postgresql (9.2.4-1) and no problem here.
Last command before launching metasploit: 'sudo bundle install'.

So far so good! So one question, why this post? An incorrect md5 hash doesn't deserve a full post :/

Ruby2.0, not so far not so good anymore

Everything's installed, so let's start metasploit.

depierre$ sudo ./msfconsole
/usr/lib/ruby/2.0.0/x86_64-linux/openssl.so: warning: already initialized constant OpenSSL::VERSION
/usr/lib/ruby/2.0.0/x86_64-linux/openssl.so: warning: already initialized constant OpenSSL::OPENSSL_VERSION
/usr/lib/ruby/2.0.0/x86_64-linux/openssl.so: warning: already initialized constant OpenSSL::OPENSSL_VERSION_NUMBER
[. . .]
/usr/lib/ruby/2.0.0/openssl/cipher.rb:41: warning: already initialized constant OpenSSL::Cipher::AES256
/usr/lib/ruby/2.0.0/openssl/cipher.rb:41: warning: previous definition of AES256 was here
[-] ***
[-] * WARNING: No database support: TypeError superclass mismatch for class Cipher
[-] ***
/usr/lib/ruby/2.0.0/openssl/cipher.rb:30: warning: already initialized constant OpenSSL::Cipher::AES
/usr/lib/ruby/2.0.0/openssl/cipher.rb:30: warning: previous definition of AES was here
[. . .]
/usr/lib/ruby/2.0.0/openssl/cipher.rb:41: warning: already initialized constant OpenSSL::Cipher::AES256
/usr/lib/ruby/2.0.0/openssl/cipher.rb:41: warning: previous definition of AES256 was here
/usr/lib/ruby/2.0.0/openssl/cipher.rb:61:in `<class:Cipher>': superclass mismatch for class Cipher (TypeError)
	from /usr/lib/ruby/2.0.0/openssl/cipher.rb:22:in `<module:OpenSSL>'
	from /usr/lib/ruby/2.0.0/openssl/cipher.rb:21:in `<top (required)>'
	from /usr/lib/ruby/2.0.0/openssl.rb:20:in `require'
	from /usr/lib/ruby/2.0.0/openssl.rb:20:in `<top (required)>'
	from /opt/metasploit/msf3/lib/msf/ui/console/driver.rb:144:in `require'
	from /opt/metasploit/msf3/lib/msf/ui/console/driver.rb:144:in `initialize'
	from ./msfconsole:169:in `new'
	from ./msfconsole:169:in `<main>'

GTFO or get back the second!

Crawling the web, looking for information about that error, informed me that since the upgrade from ruby1.9 to ruby2.0, metasploit fails to start.
So there is the problem!

Let's redo the installation with ruby1.9 as dependency, instead of 2.0.
You can go for a drink because the compilation of ruby takes long time...

depends=('ruby1.9' 'libcap')

Don't forget to change again the md5sums variable.
I also have to install bundler 1.9 instead of the lastest version to be compatible with ruby version.

Finally, last thing to do is to create a symbolic link from ruby1.9 to ruby in order to force metasploit to use the older version.

depierre$ sudo bundler-1.9 install
depierre$ sudo ln -s /usr/bin/ruby-1.9 /usr/bin/ruby

Metasploit, here I am!

After these little rectifications, I can start metasploit, finally :)

depierre$ sudo ./msfconsole 
# cowsay++
 ____________
< metasploit >
 ------------
       \   ,__,
        \  (oo)____
           (__)    )\
              ||--|| *


       =[ metasploit v4.6.1-1 [core:4.6 api:1.0]
+ -- --=[ 1099 exploits - 621 auxiliary - 178 post
+ -- --=[ 298 payloads - 29 encoders - 8 nops

msf >

Like always, Arch is too fast updating its paquets for everyone :)

Postgresql on arch

PostgreSQL is an open source, community driven, standard compliant object-relational database system.

This document describes how to set up PostgreSQL. It also describes how to configure PostgreSQL to be accessible from a remote client. If you need help setting up the rest of a web stack, see the LAMP page and follow all of the sections except the one related to MySQL.

Before you start

Several sections have instructions stating "become the postgres user". Execute the following to get a shell as the postgres user:

su root
su - postgres

Otherwise sudo can be used:

sudo -i -u postgres

Installing PostgreSQL

Install postgresql from the official repositories. Before PostgreSQL can function correctly, the postgres user needs to be given ownership of several files and directories, and the database cluster must be initialized. The following steps set sane defaults.

Create "volatile and temporary files and directories".

# systemd-tmpfiles --create postgresql.conf

Create a directory to house the database cluster, give it correct permissions and initialize the database cluster:

# mkdir /var/lib/postgres/data
# chown -c -R postgres:postgres /var/lib/postgres
# sudo su - postgres -c "initdb --locale en_US.UTF-8 -E UTF8 -D '/var/lib/postgres/data'"

Start PostgreSQL and, optionally, add it to the list of daemons that start on system startup:

# systemctl start postgresql
# systemctl enable postgresql

Create your first database/user

Become the postgres user. Add a new database-user using the createuser command.

If you create a user as per your login user ($USER) it allows you to access the postgresql database shell without having to specify a user to login (which makes it quite convenient).

e.g. to create a superuser

$ createuser -s -U postgres --interactive

Enter name of role to add: myUsualArchLoginName

Create a new database over which the above user has read/write privileges using the createdb command.

From your login shell (not the postrgres user's):

$ createdb myDatabaseName

Familiarize with PostgreSQL

Access the database shell

Become the postgres user. Start the primary db shell, psql, where you can do all your creation of databases/tables, deletion, set permissions, and run raw SQL commands. Use the "-d" option to connect to the database you created (without specifying a database, psql will try to access a database that matches your username)

$ psql -d myDatabaseName

Some helpful commands:

Connect to a particular database

=> \c <database>

List all users and their permission levels

=> \du

Shows summary information about all tables in the current database

=> \dt

exit/quit the psql shell

=> \q or CTRL+d

There are of course many more meta-commands, but these should help you get started.

Configure PostgreSQL to be accessible from remote hosts

The PostgreSQL database server configuration file is postgresql.conf. This file is located in the data directory of the server, typically /var/lib/postgres/data. This folder also houses the other main config files, including the pg_hba.conf.

Note: By default this folder will not even be browseable (or searchable) by a regular user, if you are wondering why find or locate is not finding the conf files, this is the reason.

As root user edit the file /var/lib/postgres/data/postgresql.conf. In the connections and authentications section uncomment or edit the listen_addresses line to your needs:

listen_addresses = '*'

Take a careful look at the other lines. Hereafter insert the following line in the host-based authentication file /var/lib/postgres/data/pg_hba.conf. This file controls which hosts are allowed to connect, so be careful.

# IPv4 local connections:
host   all   all   your_desired_ip_address/32   trust

where your_desired_ip_address is the IP address of the client. After this you should restart the daemon process for the changes to take effect with:

# systemctl restart postgresql

Note: Postgresql uses port 5432 by default for remote connections. So make sure this port is open and able to receive incoming connections.

For troubleshooting take a look in the server log file

tail /var/log/postgresql.log

Install PDF reader on arch linux

If you want to read PDF file you need a PDF reader. There are lot pdf reader application on Archlinux. Like adobe reader, foxit reader, okular, epdf, xpdf, etc.

On this post i want to share pdf application that i have try on Archlinux:

1. XPDF

Xpdf is an open source viewer for Portable Document Format (PDF) files. (These are also sometimes also called 'Acrobat' files, from the name of Adobe's PDF software.) The Xpdf project also includes a PDF text extractor, PDF-to-PostScript converter, and various other utilities.

Xpdf runs under the X Window System on UNIX, VMS, and OS/2. The non-X components (pdftops, pdftotext, etc.) also run on Win32 systems and should run on pretty much any system with a decent C++ compiler.

Xpdf is designed to be small and efficient. It can use Type 1, TrueType, or standard X fonts.

Sites:http://www.foolabs.com/xpdf/

Installation on Archlinux:

$sudo pacman -S xpdf

Screenshots:

It's lightweight and only 1.x MB to download the packages. :D

2. Apvlv

apvlv is a PDF/DJVU/UMD/TXT Viewer Under Linux/WIN32 and its behaviour like Vim.

Sites:http://naihe2010.github.com/apvlv/

Installation on Archlinux:

$sudo pacman -S apvlv

Screenshots:

It's same as xpdf, lightweight too, but larger mb to download is about 2MB. And the navigation same as VIM behaviour.

3. EPDFView

A free lightweight PDF document viewer using the Poppler and GTK+ libraries.

Installation on Archlinux:

$sudo pacman -S epdfview

Screenshots:

It's lightweight and size to download is only 0.9mb. Have better navigation than xpdf & apvlv

4. Evince

Evince is a document viewer for multiple document formats. The goal of evince is to replace the multiple document viewers that exist on the GNOME Desktop with a single simple application.

Sites:http://projects.gnome.org/evince/

Installation on Archlinux:

$sudo pacman -S evince

Screenshots

It's still lightweight, better graphics navigation, page navigation on left, and have tools for bookmarking. Size to download is 5.xx MB

5. Mupdf

A very fast PDF and XPS viewer and toolkit written in portable C. Features CJK font support.

The renderer in MuPDF is tailored for high quality anti-aliased graphics. It renders text with metrics and spacing accurate to within fractions of a pixel for the highest fidelity in reproducing the look of a printed page on screen.

MuPDF is also small, fast, and yet complete. It supports PDF 1.7 with transparency, encryption, hyperlinks, annotations, searching and more. It also reads OpenXPS documents. MuPDF is written modularly, so features can be added on by integrators if they so desire.

Sites: http://mupdf.com/

Installation on Archlinux:

$sudo pacman -S mupdf

screenshot:

Mupdf is simple, same as apvlv. Installation size is 2.xx MB.

6. Xournal

Xournal is an application for notetaking, sketching, keeping a journal using a stylus. It is free software (GNU GPL) and runs on Linux (recent distributions) and other GTK+/Gnome platforms. It is similar to Microsoft Windows Journal or to other alternatives such as Jarnal, Gournal, and NoteLab.

Sites:

http://xournal.sourceforge.net/

Screenshot:

Xournal packages is only 2xx Kb sizes to download, but have rich features, like taking notes, marking with colour, save and also can be exported to PDF, and more features. :D

7. QPDFView

qpdfview is a tabbed PDF viewer.

It uses the Poppler library for rendering and CUPS for printing. It provides a clear and simple graphical user interface using the Qt framework.
Current features include:
* Outline, properties and thumbnail panes
* Scale, rotate and fit
* Fullscreen and presentation views
* Continuous and multiple-page layouts
* Search for text
* Configurable tool bars
* Persistent per-file settings
* SyncTeX support
* Rudimentary annotation support (with Poppler version 0.20.1 or higher)
* Rudimentary form support
Sites:https://launchpad.net/qpdfview
Installation on Archlinux (AUR):
https://aur.archlinux.org/packages/qpdfview/

$wget https://aur.archlinux.org/packages/qp/qpdfview/qpdfview.tar.gz
$tar -xvzf qpdfview.tar.gz
$cd qpdfview
$makepkg -s
$sudo pacman -U *.pkg.tar.xz
Screenshot:

QPDFView package that created from AUR, is 1.1 MB.

8. Foxit Reader

Foxit Reader is a free PDF document viewer for the Linux platform, with a new streamlined interface, user-customized toolbar, incredibly small size, breezing-fast launch speed and rich features. This empowers PDF document users with Zoom function, Navigation function, Bookmarks, Thumbnails, Text Selection Tool, Snapshot, and Full Screen capabilities. Foxit Reader for Desktop Linux is provided by Foxit Corporation free for non-commercial use.

Sites:http://www.foxitsoftware.com/pdf/desklinux/

Installation on archlinux (AUR):

https://aur.archlinux.org/packages/foxitreader/

$wget https://aur.archlinux.org/packages/fo/foxitreader/foxitreader.tar.gz

$tar -xvzf foxitreader.tar.gz

$cd foxitreader

$makepkg -s

$sudo pacman -U *.pkg.tar.xz

Screenshot:

Size to download is 3.6x MB. Have rich features & better user interface. It's lightweight than Adobe Reader.

9. Okular

Okular is a universal document viewer based on KPDF for KDE 4. This means Okular works on multiple platforms, including but not limited to Linux, Windows, Mac OS X, *BSD, etc.

Okular combines the excellent functionalities of KPDF with the versatility of supporting different kind of documents, like PDF, Postscript, DjVu, CHM, XPS, ePub and others.

sites: http://okular.kde.org/

Installation on Archlinux:

$sudo pacman -S kdegraphics-okular

Screenshot:

Size to download is 37.x MB if you dont Use KDE desktop, if you using KDE, the okular size is 1.8MB, Have rich features to, and also can to taking a note too, like xournal.

10. Adobe Reader

Adobe® Reader® software is the free trusted standard for reliably viewing, printing, and annotating PDF documents. It's the only PDF file viewer that can open and interact with all types of PDF content, including forms and multimedia.

Sites:http://www.adobe.com/products/reader.html

Installation on Archlinux (AUR):

https://aur.archlinux.org/packages/acroread/

$wget https://aur.archlinux.org/packages/ac/acroread/acroread.tar.gz

$tar -xvzf acroread.tar.gz

$cd acroread

$makepkg -s

$sudo pacman -U *.pkg.tar.xz

Screenshot:

Selamat Datang di

UniX Class

TENTANG KAMI

UniX Class

Materi yang di pelajari

Materi

IT Essential

Desain Grafis dan Animasi

Algoritma Pemrograman

LAN dan Wireless

Desain Web

Pemrograman web

Portfolio