/var/log $ cat "Building my own Pentest Linux - Part 1"

2019-07-22 | linux arch arch 2019.07.01 installation QEMU VirtualBox 

Motivation

While using Linux distros designed for security/pentesting like Kali Linux, Parrot OS or BlackArch is handy, they don’t quite fit my taste. As they are fully feautred distributions they also come with a lot of overhead and tools I do not know or need. My usual goto Linux is Manjaro. But as it has no security focus it does not come with the tools equipped I need for my pentesting/CTFs stuff. And it also has a lot of overhead not needed for that purpose.

Also I do not want to use my daily OS for this as I want to keep it as tidy as possible. Hence I do not want stuff in there which should not belong there (like malware). Also it might be necessary to change configs or install something for test purposes which might leaf behind artifacts. Therefore I am using VMs which I easly can roll back after I’m done.

My initial approach was to use Manjaro (as the time of writing in version 18.04) and go from there. But the performance with QEMU/VirtualBox was far away from feeling like a bare metal installation, especially with 4K resolution even on my AMD R7 2700X. After doing some performance tweaking I ended up not really being satisfied. Next try was using Debian 10. The performance was really good, but I do not want to live without the Arch User Repository anymore.

Summing up my requirements of fast, lightweight, minimal and customized this marks the beginning of creating my own Arch-based Pentest Linux.

Basic Arch Installation

Reading through different Arch setup tutorials and especially the Installation guide from the ArchWiki (which I can highly recommend) I came up with an easy and straightforward procedure for the basic system installations (using release 2019.07.01) which works great in QEMU (tested with v4 on Linux 5.2) and VirtualBox (tested with v6 on Win10).

  1. Creat a VM, mount and boot Arch ISO image
  2. loadkeys de-latin1 or whatever keyboard layout you use
  3. fdisk -l to list the availabe disks
  4. fdisk /dev/<DISK>
  5. in fdisk creat a new partiotion (n), set the boot flag (a) and write to disk (w)
  6. mkfs.ext4 /dev/<PARTITION> to format the new partition as ext4
  7. mount /dev/<PARTITION> /mnt
  8. pacstrap /mnt base base-devel to install ‘base’ and ‘base-devel’ package groups
  9. genfstab /mnt >> /mnt/etc/fstab to generate file system table
  10. arch-chroot /mnt
  11. ln -sf /usr/share/zoneinfo/Europe/Berlin /etc/localtime to set timezone to Europe/Berlin or whatever you are
  12. hwclock --systohc to sync time to hardware clock
  13. nano /etc/locale.gen and uncomment the locales you want
  14. locale-gen
  15. echo "LANG=en_US.UTF8" >> /etc/locale.conf
  16. echo "KEYMAP=de-latin1" >> /etc/vconsole.conf
  17. echo "<HOSTNAME>" >> /etc/hostname to set hostname to
  18. nano /etc/hosts and add IPv4 and v6 localhost entries
  19. passwd to set root password
  20. useradd -m <USERNAME> to add a new user
  21. passwd <USERNAME> to set the password for user
  22. gpasswd -a <USERNAME> wheel to add user to ‘wheel’ group
  23. nano /etc/sudoers and uncomment the entries you want or add a sudoer manually
  24. pacman -S grub to install GRUB bootloader
  25. mkdir /boot/grub
  26. grub-mkconfig -o /boot/grub/grub.cfg to generate GRUB config file
  27. grub-install /dev/<DISK> to install GRUB in MBR
  28. exit
  29. umount /mnt
  30. reboot

And this is what you get:

Basic Arch Installation

Next up is to do some basic configuration and setting up a usable desktop environment.