Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.

Lastic

macrumors 6502a
Original poster
Mar 19, 2016
879
757
North of the HellHole
Being a Network engineer I never understood why Network/Cyber Security people or Pentesters always buy an expensive Macbook Pro and then completely ignore
the BSD fundamentals and power of the Terminal.

As most guides will tell you , to pentest you either need to install Kali Linux natively or in a Virtual Machine or another Pentest Linux Distro ( ParotSec for ex.).

Most tools either are available via Macports (or Homebrew on Intel) or can be compiled from source.

To make this an even more interesting topic during the Winter challenge , I decided to install these tools on a PowerPC (iBook G4 12",iBook G4 14",PB G4 12" 1.5 Ghz and last but not least my G5), running with mSATA/PATA/SATA SSD's and full memory specs.

The list of tools I installed was gathered from following resources :
Security Penetration Testing (The Art of Hacking Series) LiveLessons
======Active Reconnaisance
nmap 7.6


Official site :
nmap.org

Installation via Macports :
sudo port install nmap

Mas scan NOK

Official site :
https://github.com/robertdavidgraham/masscan

git clone https://github.com/robertdavidgraham/masscan

Tried to install the prerequisites via Macports but the build will fqil

sudo port install clang-3.3
sudo port select --set clang mp-clang-3.3

udp-proto-scanner

Official site:
https://labs.portcullis.co.uk/tools/udp-proto-scanner

requires Perl , which can be installed via Macports
sudo port install perl

OpenVAS

Official site:
http://www.openvas.org/

Server and client can be installed via Macports, to see what is available

sudo port list | grep openvas

======Active Reconnaisance==Web
Nikto 2


Official site :
https://cirt.net/nikto2

Download source-code here :
https://github.com/sullo/nikto/archive/master.zip

unzip , cd program

Requires Perl which can be installed via Macports

sudo port install perl

WPS SCAN NOK

Official site :
https://wpscan.org

Looks like it can only run via docker or a lot of required ruby gems

SQLMAP

Official site :
http://sqlmap.org

Can be installed via Macports but requires Python 2.7

sudo port install python27
sudo port install sqlmap

The python script will be located under :

/opt/local/Library/Frameworks/Python.framework/Versions/2.7/lib/python2.7/site-packages/sqlmap/sqlmap.py

Burp Suite

Official site :
https://portswigger.net/burp/

Download the JAR file here
https://portswigger.net/burp/releases/download?product=community&version=1.7.30&type=jar

Requires JAVA 1.7 , see this guide how to install it OpenJDK 1.7 Java install on OS X 10.5.8

Then start it with , does need 1 Gb of RAM

java -Djava.awt.headless=false -jar burpsuite_community_v1.7.29.jar -Xmx1G

BurpSuite startup.png


BurpSuite GUI.png


OWASP ZAPP NOK


Official site :
https://www.owasp.org/index.php/OWASP_Zed_Attack_Proxy_Project

Requires JAVA 1.8 which is unavailable on OSX 10.5 PPC

======Passive Reconnaisance

Took some links from here:
https://chrislazari.com/ethical-hacking-passive-footprinting/

Belati


Official site :
https://github.com/aancw/Belati

Requires GIT which can be installed via Macports

sudo port install git
git clone https://github.com/aancw/Belati.git
cd Belati
git submodule update --init --recursive

Requires Pip and Python 2.7 which can be installed via Macports

sudo port install python27
sudo port install py27-pip

Django 2.0 will produce an error for the requirements.txt

sudo pip-2.7 install Django==1.10.6

Pyexifinfo will produce an error for the requirements.txt

sudo port install p5.24-image-exiftool
cd /opt/local/bin
sudo cp exiftool-5.24 exiftool

Then finally install the requirements

sudo pip-2.7 install -r requirements.txt

And run it via :

python2.7 Belati.py

theHarvester


Official site :
https://github.com/laramies/theHarvester

Requires Python 2.7 which can be installed via Macports

sudo port install python27

And run it via :

python2.7 theHarvester.py

Dmitry

Official site :
https://www.aldeid.com/wiki/Dmitry

DNS SCAN

Official site :
https://github.com/rbsec/dnscan

Requires Python 3.6 which can be installed via Macports

sudo port install python36
sudo port install py36-pip

Requires dnspython module

sudo pip-3.6 install dnspython

Then run it via :

python3.6 dnscan.py

DNS RECON

Official site :
https://github.com/darkoperator/dnsrecon

Requires Python 3.6 which can be installed via Macports

sudo port install python36
sudo port install py36-pip

sudo pip-3.6 install -r requirements.txt

Then run it via :

python3.6 dnsrecon.py

RECON-NG

Official site :
https://bitbucket.org/LaNMaSteR53/recon-ng

Requires Python 2.7 which can be installed via Macports

sudo port install python27
sudo port install py27-pip

sudo pip-2.7 install -r REQUIREMENTS

Then run it via :

python2.7 recon-ng

=======Networking

YERSINIA

Official site :
http://www.yersinia.net/doc.htm

Can be installed via Macports

sudo port install yersinia

Some more info about Yersinia

http://www.yersinia.net/contrib/hacking.txt

http://blackhat.com/presentations/bh-europe-05/BH_EU_05-Berrueta_Andres/BH_EU_05_Berrueta_Andres.pdf

And then from the following resources , I gathered and installed more tools
General explanation about packet capturing

http://rfsperra.tumblr.com/post/68654132591/capturing-80211-traffic-with-os-x

Wireshark monitor mode


https://wiki.wireshark.org/CaptureSetup/WLAN#Mac_OS_X

PacketPeeper


Official site :
http://packetpeeper.org/release-notes/

2007 Review :
https://www.helpnetsecurity.com/2007/07/03/easy-packet-sniffing-on-mac-os-x/

Download Link :
https://sourceforge.net/projects/pa...es/PacketPeeper_WIP_20061119.tar.bz2/download

Cocoa Packet Analyzer

Official site :
http://www.tastycocoabytes.com/cpa/

Wireshark

Official site :
wireshark.org

Latest working version on Macports 2.3.4

https://www.macports.org/ports.php?by=name&substr=wireshark

wireshark 1.1.2.8
wireshark-devel 1.9.0

sudo port install wireshark-devel

As of version 2.2.9 needs Qt5-mac , not available on PPC
Official release history , PPC support dropped from version 1.8

ngrep

Official version 1.47 :
https://github.com/jpr5/ngrep

sudo port install libpcap

./configure
make
sudo make install

(DOES NOT WORK ON MY Powerbook only on G5)

Macports 2.3.4 also has version 1.45

sudo port install ngrep

Ettercap


Official site :
https://ettercap.github.io/ettercap/downloads.html

Can only be installed via Macports 2.3.4 , version 0.8.2

sudo port install ettercap

Installs X11,GTK2 but will only work in -Curses or -Textmode

Bettercap

Official site :
https://www.bettercap.org

Requires Ruby , can be installed via Macports

sudo port install ruby22

sudo gem install bettercap !!! eventmachine from BeeF needed , see hereunder

sudo bettercap

Cowpatty

Official site :
http://www.willhackforsushi.com/?page_id=50

4.3 compiles , 4.6 NOT :
http://www.willhackforsushi.com/code/cowpatty/4.3/cowpatty-4.3.tgz

make
sudo make install

Pyrit NOK

Official site :
https://pyrit.wordpress.com/about/

https://code.google.com/archive/p/pyrit/downloads
Doesn't work

===Network Emulation

GNS3

Already explained in this thread :
https://forums.macrumors.com/threads/wip-gns3-1-3-13-on-a-g5-running-os-x-10-5-8.2062763/

Cisco IOL / QEMU Networking

Already explained in this thread :
https://forums.macrumors.com/threads/qemu-on-os-x-10-5-running-linux-guest-with-networking.1974866/

===Networking Tools

Nmap already mentioned above

Kismet

Kismet 2011 available via Macports 2.3.4

Metasploit

Official site :
metasploit.com

Already did a thread on how to install this here => Metasploit 4.16.10 + Armitage OS X 10.5.8

Armitage

Official site :
http://fastandeasyhacking.com/

http://hackerforhire.com.au/installing-metasploit-framework-on-os-x-el-capitan/

Already did a thread on how to install this here => Metasploit 4.16.10 + Armitage OS X 10.5.8

BeeF

Official site :
https:///github.com/beefproject/

git clone git://github.com/beefproject/beef.git

sudo port install ruby2.2

cd beef
bundle install => installs eventmachine for Bettercap !!!
ruby beef

===
Hydra


Official site :
https://github.com/vanhauser-thc/thc-hydra

Can be installed via Macports which has version 7.5 (depends libssh)

sudo port install hydra

Official version 8.6 , will not compile :
https://github.com/vanhauser-thc/thc-hydra

To conclude my giant Day 2 post, off course some of these tools will be slow on our old hardware but
you don't need an Intel processor , VMware,VirtualBox or Kali Linux , never underestimate the Power(PC)
 
Last edited:
Register on MacRumors! This sidebar will go away, and you'll see fewer ads.