2010-02-19 14:32:02 +00:00
|
|
|
# Filename:
|
|
|
|
# fedora-livecd-security.ks
|
|
|
|
# Description:
|
|
|
|
# A fully functional live OS based on Fedora for use in security auditing, forensics research, and penetration testing.
|
|
|
|
# Maintainers:
|
|
|
|
# Hiemanshu Sharma <hiemanshu [AT] fedoraproject <dot> org>
|
|
|
|
# Christoph Wickert <cwickert [AT] fedoraproject <dot> org>
|
|
|
|
# Joerg Simon <jsimon [AT] fedoraproject <dot> org>
|
|
|
|
# Acknowledgements:
|
|
|
|
# Fedora LiveCD Xfce Spin team - some work here was inherited, many thanks!
|
|
|
|
# Fedora LXDE Spin - Copied over stuff to make LXDE Default
|
|
|
|
# Luke Macken, Adam Miller for the original OpenBox Security ks and all the Security Applications!
|
|
|
|
|
|
|
|
|
|
|
|
%include fedora-live-base.ks
|
2010-03-23 13:14:04 +00:00
|
|
|
%include fedora-live-minimization.ks
|
2010-02-19 14:32:02 +00:00
|
|
|
|
|
|
|
%packages
|
|
|
|
|
2010-04-22 09:03:47 +00:00
|
|
|
# internet
|
2010-02-19 14:32:02 +00:00
|
|
|
firefox
|
2010-04-22 09:03:47 +00:00
|
|
|
claws-mail
|
|
|
|
|
2010-02-19 14:32:02 +00:00
|
|
|
|
|
|
|
# Command line
|
2010-04-22 09:03:47 +00:00
|
|
|
cnetworkmanager
|
|
|
|
irssi
|
|
|
|
mutt
|
2010-02-19 14:32:02 +00:00
|
|
|
ntfs-3g
|
|
|
|
powertop
|
|
|
|
wget
|
|
|
|
yum-utils
|
2010-04-22 09:03:47 +00:00
|
|
|
yum-presto
|
2010-02-19 14:32:02 +00:00
|
|
|
|
|
|
|
# dictionaries are big
|
|
|
|
#-aspell-*
|
2010-04-22 09:03:47 +00:00
|
|
|
#-hunspell-*
|
2010-02-19 14:32:02 +00:00
|
|
|
#-man-pages-*
|
2010-04-22 09:03:47 +00:00
|
|
|
#-words
|
2010-02-19 14:32:02 +00:00
|
|
|
|
|
|
|
# more fun with space saving
|
|
|
|
-gimp-help
|
|
|
|
|
|
|
|
#GUI Stuff
|
|
|
|
@lxde
|
2010-04-22 09:03:47 +00:00
|
|
|
Thunar
|
|
|
|
thunar-volman
|
|
|
|
xarchiver
|
|
|
|
gnome-bluetooth
|
|
|
|
alsa-plugins-pulseaudio
|
|
|
|
pavucontrol
|
|
|
|
system-config-printer
|
2010-02-19 14:32:02 +00:00
|
|
|
|
|
|
|
# save some space
|
|
|
|
-autofs
|
|
|
|
-nss_db
|
|
|
|
-sendmail
|
|
|
|
ssmtp
|
|
|
|
-acpid
|
|
|
|
|
|
|
|
###################### Security Stuffs ############################
|
2010-04-22 09:03:47 +00:00
|
|
|
security-menus
|
|
|
|
|
2010-02-19 14:32:02 +00:00
|
|
|
# Reconnaissance
|
|
|
|
dsniff
|
|
|
|
hping3
|
|
|
|
nc6
|
|
|
|
nc
|
|
|
|
ncrack
|
|
|
|
nessus-client
|
|
|
|
nessus-gui
|
|
|
|
nessus-server
|
|
|
|
ngrep
|
|
|
|
nmap
|
|
|
|
nmap-frontend
|
|
|
|
p0f
|
|
|
|
sing
|
|
|
|
scanssh
|
|
|
|
scapy
|
|
|
|
socat
|
|
|
|
tcpdump
|
|
|
|
tiger
|
|
|
|
unicornscan
|
|
|
|
wireshark-gnome
|
|
|
|
xprobe2
|
|
|
|
nbtscan
|
|
|
|
tcpxtract
|
|
|
|
firewalk
|
|
|
|
hunt
|
2010-02-19 19:43:55 +00:00
|
|
|
|
|
|
|
## Apparently missing from the repositories and fails the build
|
|
|
|
#halberd
|
|
|
|
|
2010-02-19 14:32:02 +00:00
|
|
|
argus
|
|
|
|
nbtscan
|
|
|
|
ettercap
|
|
|
|
ettercap-gtk
|
|
|
|
iptraf
|
|
|
|
pcapdiff
|
|
|
|
picviz
|
|
|
|
etherape
|
|
|
|
lynis
|
|
|
|
|
|
|
|
# Forensics
|
|
|
|
chkrootkit
|
|
|
|
clamav
|
|
|
|
dd_rescue
|
|
|
|
gparted
|
|
|
|
hexedit
|
|
|
|
prelude-lml
|
|
|
|
testdisk
|
|
|
|
foremost
|
|
|
|
mhonarc
|
|
|
|
sectool-gui
|
|
|
|
rkhunter
|
|
|
|
scanmem
|
|
|
|
sleuthkit
|
|
|
|
unhide
|
|
|
|
examiner
|
|
|
|
dc3dd
|
|
|
|
|
|
|
|
# Wireless
|
|
|
|
aircrack-ng
|
|
|
|
airsnort
|
|
|
|
kismet
|
|
|
|
|
|
|
|
# Code analysis
|
|
|
|
splint
|
|
|
|
pscan
|
|
|
|
flawfinder
|
|
|
|
rats
|
|
|
|
|
|
|
|
# Intrusion detection
|
|
|
|
snort
|
|
|
|
aide
|
|
|
|
tripwire
|
|
|
|
labrea
|
|
|
|
honeyd
|
|
|
|
pads
|
|
|
|
prewikka
|
|
|
|
prelude-notify
|
|
|
|
prelude-manager
|
|
|
|
nebula
|
|
|
|
|
|
|
|
# Password cracking
|
|
|
|
john
|
|
|
|
ophcrack
|
|
|
|
|
|
|
|
# Anonymity
|
|
|
|
tor
|
|
|
|
|
|
|
|
# under review (#461385)
|
|
|
|
#hydra
|
|
|
|
|
|
|
|
# Useful tools
|
|
|
|
lsof
|
|
|
|
ntop
|
|
|
|
scrot
|
|
|
|
mc
|
|
|
|
|
|
|
|
# Other necessary components
|
|
|
|
screen
|
|
|
|
desktop-backgrounds-basic
|
|
|
|
feh
|
|
|
|
vim-enhanced
|
|
|
|
gnome-menus
|
|
|
|
gnome-terminal
|
|
|
|
PolicyKit-gnome
|
|
|
|
|
|
|
|
# make sure debuginfo doesn't end up on the live image
|
|
|
|
-\*debug
|
|
|
|
%end
|
|
|
|
|
|
|
|
%post
|
2010-03-23 18:42:50 +00:00
|
|
|
# LXDE and LXDM configuration
|
2010-02-19 14:32:02 +00:00
|
|
|
|
|
|
|
# create /etc/sysconfig/desktop (needed for installation)
|
2010-03-23 18:42:50 +00:00
|
|
|
cat > /etc/sysconfig/desktop <<EOF
|
2010-02-19 14:32:02 +00:00
|
|
|
PREFERRED=/usr/bin/startlxde
|
2010-03-23 18:42:50 +00:00
|
|
|
DISPLAYMANAGER=/usr/sbin/lxdm
|
2010-02-19 14:32:02 +00:00
|
|
|
EOF
|
|
|
|
|
|
|
|
cat >> /etc/rc.d/init.d/livesys << EOF
|
|
|
|
# disable screensaver locking and make sure gamin gets started
|
2010-03-23 18:42:50 +00:00
|
|
|
cat > /etc/xdg/lxsession/LXDE/autostart << FOE
|
2010-02-19 14:32:02 +00:00
|
|
|
/usr/libexec/gam_server
|
|
|
|
@lxpanel --profile LXDE
|
2010-04-22 09:03:47 +00:00
|
|
|
@pcmanfm2 --desktop --profile lxde
|
2010-03-23 18:42:50 +00:00
|
|
|
@pulseaudio -D
|
2010-02-19 14:32:02 +00:00
|
|
|
FOE
|
|
|
|
|
2010-04-22 09:03:47 +00:00
|
|
|
# set up preferred apps
|
|
|
|
cat > /etc/xdg/libfm/pref-apps.conf << FOE
|
|
|
|
[Preferred Applications]
|
|
|
|
WebBrowser=mozilla-firefox.desktop
|
|
|
|
MailClient=fedora-claws-mail.desktop
|
|
|
|
FOE
|
|
|
|
|
2010-03-23 18:42:50 +00:00
|
|
|
# set up auto-login for liveuser
|
|
|
|
sed -i 's|# autologin=dgod|autologin=liveuser|g' /etc/lxdm/lxdm.conf
|
|
|
|
|
2010-02-19 14:32:02 +00:00
|
|
|
# Show harddisk install on the desktop
|
|
|
|
sed -i -e 's/NoDisplay=true/NoDisplay=false/' /usr/share/applications/liveinst.desktop
|
|
|
|
mkdir /home/liveuser/Desktop
|
|
|
|
cp /usr/share/applications/liveinst.desktop /home/liveuser/Desktop
|
|
|
|
|
|
|
|
# Add autostart for parcellite
|
|
|
|
cp /usr/share/applications/fedora-parcellite.desktop /etc/xdg/autostart
|
|
|
|
|
2010-03-23 18:42:50 +00:00
|
|
|
# this goes at the end after all other changes.
|
2010-02-19 14:32:02 +00:00
|
|
|
chown -R liveuser:liveuser /home/liveuser
|
|
|
|
restorecon -R /home/liveuser
|
2010-03-23 18:42:50 +00:00
|
|
|
|
2010-02-19 14:32:02 +00:00
|
|
|
EOF
|
|
|
|
|
|
|
|
%end
|
|
|
|
|