Being a Network engineer I never understood why Network/Cyber Security people or Pentesters always buy an expensive Macbook Pro and then completely ignore
the BSD fundamentals and power of the Terminal.
As most guides will tell you , to pentest you either need to install Kali Linux natively or in a Virtual Machine or another Pentest Linux Distro ( ParotSec for ex.).
Most tools either are available via Macports (or Homebrew on Intel) or can be compiled from source.
To make this an even more interesting topic during the Winter challenge , I decided to install these tools on a PowerPC (iBook G4 12",iBook G4 14",PB G4 12" 1.5 Ghz and last but not least my G5), running with mSATA/PATA/SATA SSD's and full memory specs.
The list of tools I installed was gathered from following resources :
======Active Reconnaisance
nmap 7.6
Official site :
nmap.org
Installation via Macports :
sudo port install nmap
Mas scan NOK
Official site :
https://github.com/robertdavidgraham/masscan
git clone https://github.com/robertdavidgraham/masscan
Tried to install the prerequisites via Macports but the build will fqil
sudo port install clang-3.3
sudo port select --set clang mp-clang-3.3
udp-proto-scanner
Official site:
https://labs.portcullis.co.uk/tools/udp-proto-scanner
requires Perl , which can be installed via Macports
sudo port install perl
OpenVAS
Official site:
http://www.openvas.org/
Server and client can be installed via Macports, to see what is available
sudo port list | grep openvas
======Active Reconnaisance==Web
Nikto 2
Official site :
https://cirt.net/nikto2
Download source-code here :
https://github.com/sullo/nikto/archive/master.zip
unzip , cd program
Requires Perl which can be installed via Macports
sudo port install perl
WPS SCAN NOK
Official site :
https://wpscan.org
Looks like it can only run via docker or a lot of required ruby gems
SQLMAP
Official site :
http://sqlmap.org
Can be installed via Macports but requires Python 2.7
sudo port install python27
sudo port install sqlmap
The python script will be located under :
/opt/local/Library/Frameworks/Python.framework/Versions/2.7/lib/python2.7/site-packages/sqlmap/sqlmap.py
Burp Suite
Official site :
https://portswigger.net/burp/
Download the JAR file here
https://portswigger.net/burp/releases/download?product=community&version=1.7.30&type=jar
Requires JAVA 1.7 , see this guide how to install it OpenJDK 1.7 Java install on OS X 10.5.8
Then start it with , does need 1 Gb of RAM
java -Djava.awt.headless=false -jar burpsuite_community_v1.7.29.jar -Xmx1G
OWASP ZAPP NOK
Official site :
https://www.owasp.org/index.php/OWASP_Zed_Attack_Proxy_Project
Requires JAVA 1.8 which is unavailable on OSX 10.5 PPC
======Passive Reconnaisance
Took some links from here:
https://chrislazari.com/ethical-hacking-passive-footprinting/
Belati
Official site :
https://github.com/aancw/Belati
Requires GIT which can be installed via Macports
sudo port install git
git clone https://github.com/aancw/Belati.git
cd Belati
git submodule update --init --recursive
Requires Pip and Python 2.7 which can be installed via Macports
sudo port install python27
sudo port install py27-pip
Django 2.0 will produce an error for the requirements.txt
sudo pip-2.7 install Django==1.10.6
Pyexifinfo will produce an error for the requirements.txt
sudo port install p5.24-image-exiftool
cd /opt/local/bin
sudo cp exiftool-5.24 exiftool
Then finally install the requirements
sudo pip-2.7 install -r requirements.txt
And run it via :
python2.7 Belati.py
theHarvester
Official site :
https://github.com/laramies/theHarvester
Requires Python 2.7 which can be installed via Macports
sudo port install python27
And run it via :
python2.7 theHarvester.py
Dmitry
Official site :
https://www.aldeid.com/wiki/Dmitry
DNS SCAN
Official site :
https://github.com/rbsec/dnscan
Requires Python 3.6 which can be installed via Macports
sudo port install python36
sudo port install py36-pip
Requires dnspython module
sudo pip-3.6 install dnspython
Then run it via :
python3.6 dnscan.py
DNS RECON
Official site :
https://github.com/darkoperator/dnsrecon
Requires Python 3.6 which can be installed via Macports
sudo port install python36
sudo port install py36-pip
sudo pip-3.6 install -r requirements.txt
Then run it via :
python3.6 dnsrecon.py
RECON-NG
Official site :
https://bitbucket.org/LaNMaSteR53/recon-ng
Requires Python 2.7 which can be installed via Macports
sudo port install python27
sudo port install py27-pip
sudo pip-2.7 install -r REQUIREMENTS
Then run it via :
python2.7 recon-ng
=======Networking
YERSINIA
Official site :
http://www.yersinia.net/doc.htm
Can be installed via Macports
sudo port install yersinia
Some more info about Yersinia
http://www.yersinia.net/contrib/hacking.txt
http://blackhat.com/presentations/bh-europe-05/BH_EU_05-Berrueta_Andres/BH_EU_05_Berrueta_Andres.pdf
And then from the following resources , I gathered and installed more tools
http://rfsperra.tumblr.com/post/68654132591/capturing-80211-traffic-with-os-x
Wireshark monitor mode
https://wiki.wireshark.org/CaptureSetup/WLAN#Mac_OS_X
PacketPeeper
Official site :
http://packetpeeper.org/release-notes/
2007 Review :
https://www.helpnetsecurity.com/2007/07/03/easy-packet-sniffing-on-mac-os-x/
Download Link :
https://sourceforge.net/projects/pa...es/PacketPeeper_WIP_20061119.tar.bz2/download
Cocoa Packet Analyzer
Official site :
http://www.tastycocoabytes.com/cpa/
Wireshark
Official site :
wireshark.org
Latest working version on Macports 2.3.4
https://www.macports.org/ports.php?by=name&substr=wireshark
wireshark 1.1.2.8
wireshark-devel 1.9.0
sudo port install wireshark-devel
As of version 2.2.9 needs Qt5-mac , not available on PPC
Official release history , PPC support dropped from version 1.8
ngrep
Official version 1.47 :
https://github.com/jpr5/ngrep
sudo port install libpcap
./configure
make
sudo make install
(DOES NOT WORK ON MY Powerbook only on G5)
Macports 2.3.4 also has version 1.45
sudo port install ngrep
Ettercap
Official site :
https://ettercap.github.io/ettercap/downloads.html
Can only be installed via Macports 2.3.4 , version 0.8.2
sudo port install ettercap
Installs X11,GTK2 but will only work in -Curses or -Textmode
Bettercap
Official site :
https://www.bettercap.org
Requires Ruby , can be installed via Macports
sudo port install ruby22
sudo gem install bettercap !!! eventmachine from BeeF needed , see hereunder
sudo bettercap
Cowpatty
Official site :
http://www.willhackforsushi.com/?page_id=50
4.3 compiles , 4.6 NOT :
http://www.willhackforsushi.com/code/cowpatty/4.3/cowpatty-4.3.tgz
make
sudo make install
Pyrit NOK
Official site :
https://pyrit.wordpress.com/about/
https://code.google.com/archive/p/pyrit/downloads
Doesn't work
===Network Emulation
GNS3
Already explained in this thread :
https://forums.macrumors.com/threads/wip-gns3-1-3-13-on-a-g5-running-os-x-10-5-8.2062763/
Cisco IOL / QEMU Networking
Already explained in this thread :
https://forums.macrumors.com/threads/qemu-on-os-x-10-5-running-linux-guest-with-networking.1974866/
===Networking Tools
Nmap already mentioned above
Kismet
Kismet 2011 available via Macports 2.3.4
Metasploit
Official site :
metasploit.com
Already did a thread on how to install this here => Metasploit 4.16.10 + Armitage OS X 10.5.8
Armitage
Official site :
http://fastandeasyhacking.com/
http://hackerforhire.com.au/installing-metasploit-framework-on-os-x-el-capitan/
Already did a thread on how to install this here => Metasploit 4.16.10 + Armitage OS X 10.5.8
BeeF
Official site :
https:///github.com/beefproject/
git clone git://github.com/beefproject/beef.git
sudo port install ruby2.2
cd beef
bundle install => installs eventmachine for Bettercap !!!
ruby beef
===
Hydra
Official site :
https://github.com/vanhauser-thc/thc-hydra
Can be installed via Macports which has version 7.5 (depends libssh)
sudo port install hydra
Official version 8.6 , will not compile :
https://github.com/vanhauser-thc/thc-hydra
To conclude my giant Day 2 post, off course some of these tools will be slow on our old hardware but
you don't need an Intel processor , VMware,VirtualBox or Kali Linux , never underestimate the Power(PC)
the BSD fundamentals and power of the Terminal.
As most guides will tell you , to pentest you either need to install Kali Linux natively or in a Virtual Machine or another Pentest Linux Distro ( ParotSec for ex.).
Most tools either are available via Macports (or Homebrew on Intel) or can be compiled from source.
To make this an even more interesting topic during the Winter challenge , I decided to install these tools on a PowerPC (iBook G4 12",iBook G4 14",PB G4 12" 1.5 Ghz and last but not least my G5), running with mSATA/PATA/SATA SSD's and full memory specs.
The list of tools I installed was gathered from following resources :
- http://www.ciscopress.com/store/security-penetration-testing-the-art-of-hacking-series-9780134834498
- https://the-art-of-hacking.github.io/web/
======Active Reconnaisance
nmap 7.6
Official site :
nmap.org
Installation via Macports :
sudo port install nmap
Mas scan NOK
Official site :
https://github.com/robertdavidgraham/masscan
git clone https://github.com/robertdavidgraham/masscan
Tried to install the prerequisites via Macports but the build will fqil
sudo port install clang-3.3
sudo port select --set clang mp-clang-3.3
udp-proto-scanner
Official site:
https://labs.portcullis.co.uk/tools/udp-proto-scanner
requires Perl , which can be installed via Macports
sudo port install perl
OpenVAS
Official site:
http://www.openvas.org/
Server and client can be installed via Macports, to see what is available
sudo port list | grep openvas
======Active Reconnaisance==Web
Nikto 2
Official site :
https://cirt.net/nikto2
Download source-code here :
https://github.com/sullo/nikto/archive/master.zip
unzip , cd program
Requires Perl which can be installed via Macports
sudo port install perl
WPS SCAN NOK
Official site :
https://wpscan.org
Looks like it can only run via docker or a lot of required ruby gems
SQLMAP
Official site :
http://sqlmap.org
Can be installed via Macports but requires Python 2.7
sudo port install python27
sudo port install sqlmap
The python script will be located under :
/opt/local/Library/Frameworks/Python.framework/Versions/2.7/lib/python2.7/site-packages/sqlmap/sqlmap.py
Burp Suite
Official site :
https://portswigger.net/burp/
Download the JAR file here
https://portswigger.net/burp/releases/download?product=community&version=1.7.30&type=jar
Requires JAVA 1.7 , see this guide how to install it OpenJDK 1.7 Java install on OS X 10.5.8
Then start it with , does need 1 Gb of RAM
java -Djava.awt.headless=false -jar burpsuite_community_v1.7.29.jar -Xmx1G
OWASP ZAPP NOK
Official site :
https://www.owasp.org/index.php/OWASP_Zed_Attack_Proxy_Project
Requires JAVA 1.8 which is unavailable on OSX 10.5 PPC
======Passive Reconnaisance
Took some links from here:
https://chrislazari.com/ethical-hacking-passive-footprinting/
Belati
Official site :
https://github.com/aancw/Belati
Requires GIT which can be installed via Macports
sudo port install git
git clone https://github.com/aancw/Belati.git
cd Belati
git submodule update --init --recursive
Requires Pip and Python 2.7 which can be installed via Macports
sudo port install python27
sudo port install py27-pip
Django 2.0 will produce an error for the requirements.txt
sudo pip-2.7 install Django==1.10.6
Pyexifinfo will produce an error for the requirements.txt
sudo port install p5.24-image-exiftool
cd /opt/local/bin
sudo cp exiftool-5.24 exiftool
Then finally install the requirements
sudo pip-2.7 install -r requirements.txt
And run it via :
python2.7 Belati.py
theHarvester
Official site :
https://github.com/laramies/theHarvester
Requires Python 2.7 which can be installed via Macports
sudo port install python27
And run it via :
python2.7 theHarvester.py
Dmitry
Official site :
https://www.aldeid.com/wiki/Dmitry
DNS SCAN
Official site :
https://github.com/rbsec/dnscan
Requires Python 3.6 which can be installed via Macports
sudo port install python36
sudo port install py36-pip
Requires dnspython module
sudo pip-3.6 install dnspython
Then run it via :
python3.6 dnscan.py
DNS RECON
Official site :
https://github.com/darkoperator/dnsrecon
Requires Python 3.6 which can be installed via Macports
sudo port install python36
sudo port install py36-pip
sudo pip-3.6 install -r requirements.txt
Then run it via :
python3.6 dnsrecon.py
RECON-NG
Official site :
https://bitbucket.org/LaNMaSteR53/recon-ng
Requires Python 2.7 which can be installed via Macports
sudo port install python27
sudo port install py27-pip
sudo pip-2.7 install -r REQUIREMENTS
Then run it via :
python2.7 recon-ng
=======Networking
YERSINIA
Official site :
http://www.yersinia.net/doc.htm
Can be installed via Macports
sudo port install yersinia
Some more info about Yersinia
http://www.yersinia.net/contrib/hacking.txt
http://blackhat.com/presentations/bh-europe-05/BH_EU_05-Berrueta_Andres/BH_EU_05_Berrueta_Andres.pdf
And then from the following resources , I gathered and installed more tools
- https://eforensicsmag.com/macoshackers/
- https://null-byte.wonderhowto.com/h...rganize-your-tools-by-pentest-stages-0174653/
- https://www.amazon.com/OS-X-Hackers-at-Heart/dp/1597490407
http://rfsperra.tumblr.com/post/68654132591/capturing-80211-traffic-with-os-x
Wireshark monitor mode
https://wiki.wireshark.org/CaptureSetup/WLAN#Mac_OS_X
PacketPeeper
Official site :
http://packetpeeper.org/release-notes/
2007 Review :
https://www.helpnetsecurity.com/2007/07/03/easy-packet-sniffing-on-mac-os-x/
Download Link :
https://sourceforge.net/projects/pa...es/PacketPeeper_WIP_20061119.tar.bz2/download
Cocoa Packet Analyzer
Official site :
http://www.tastycocoabytes.com/cpa/
Wireshark
Official site :
wireshark.org
Latest working version on Macports 2.3.4
https://www.macports.org/ports.php?by=name&substr=wireshark
wireshark 1.1.2.8
wireshark-devel 1.9.0
sudo port install wireshark-devel
As of version 2.2.9 needs Qt5-mac , not available on PPC
Official release history , PPC support dropped from version 1.8
ngrep
Official version 1.47 :
https://github.com/jpr5/ngrep
sudo port install libpcap
./configure
make
sudo make install
(DOES NOT WORK ON MY Powerbook only on G5)
Macports 2.3.4 also has version 1.45
sudo port install ngrep
Ettercap
Official site :
https://ettercap.github.io/ettercap/downloads.html
Can only be installed via Macports 2.3.4 , version 0.8.2
sudo port install ettercap
Installs X11,GTK2 but will only work in -Curses or -Textmode
Bettercap
Official site :
https://www.bettercap.org
Requires Ruby , can be installed via Macports
sudo port install ruby22
sudo gem install bettercap !!! eventmachine from BeeF needed , see hereunder
sudo bettercap
Cowpatty
Official site :
http://www.willhackforsushi.com/?page_id=50
4.3 compiles , 4.6 NOT :
http://www.willhackforsushi.com/code/cowpatty/4.3/cowpatty-4.3.tgz
make
sudo make install
Pyrit NOK
Official site :
https://pyrit.wordpress.com/about/
https://code.google.com/archive/p/pyrit/downloads
Doesn't work
===Network Emulation
GNS3
Already explained in this thread :
https://forums.macrumors.com/threads/wip-gns3-1-3-13-on-a-g5-running-os-x-10-5-8.2062763/
Cisco IOL / QEMU Networking
Already explained in this thread :
https://forums.macrumors.com/threads/qemu-on-os-x-10-5-running-linux-guest-with-networking.1974866/
===Networking Tools
Nmap already mentioned above
Kismet
Kismet 2011 available via Macports 2.3.4
Metasploit
Official site :
metasploit.com
Already did a thread on how to install this here => Metasploit 4.16.10 + Armitage OS X 10.5.8
Armitage
Official site :
http://fastandeasyhacking.com/
http://hackerforhire.com.au/installing-metasploit-framework-on-os-x-el-capitan/
Already did a thread on how to install this here => Metasploit 4.16.10 + Armitage OS X 10.5.8
BeeF
Official site :
https:///github.com/beefproject/
git clone git://github.com/beefproject/beef.git
sudo port install ruby2.2
cd beef
bundle install => installs eventmachine for Bettercap !!!
ruby beef
===
Hydra
Official site :
https://github.com/vanhauser-thc/thc-hydra
Can be installed via Macports which has version 7.5 (depends libssh)
sudo port install hydra
Official version 8.6 , will not compile :
https://github.com/vanhauser-thc/thc-hydra
To conclude my giant Day 2 post, off course some of these tools will be slow on our old hardware but
you don't need an Intel processor , VMware,VirtualBox or Kali Linux , never underestimate the Power(PC)
Last edited: