From 9bc51159dea14209da65488810b52944721cf387 Mon Sep 17 00:00:00 2001 From: Adam Miller Date: Fri, 19 Feb 2010 08:32:02 -0600 Subject: [PATCH] Added kickstart for security spin as board has approved this spin. http://lists.fedoraproject.org/pipermail/advisory-board/2010-February/008027.html --- fedora-livecd-security.ks | 215 ++++++++++++++++++++++++++++++++++++++ 1 file changed, 215 insertions(+) create mode 100644 fedora-livecd-security.ks diff --git a/fedora-livecd-security.ks b/fedora-livecd-security.ks new file mode 100644 index 0000000..9fc28d4 --- /dev/null +++ b/fedora-livecd-security.ks @@ -0,0 +1,215 @@ +# Filename: +# fedora-livecd-security.ks +# Description: +# A fully functional live OS based on Fedora for use in security auditing, forensics research, and penetration testing. +# Maintainers: +# Hiemanshu Sharma org> +# Christoph Wickert org> +# Joerg Simon org> +# Acknowledgements: +# Fedora LiveCD Xfce Spin team - some work here was inherited, many thanks! +# Fedora LXDE Spin - Copied over stuff to make LXDE Default +# Luke Macken, Adam Miller for the original OpenBox Security ks and all the Security Applications! + + +%include fedora-live-base.ks + +%packages +-fedora-logos +-fedora-release +-fedora-release-notes +generic-release-notes +generic-release +generic-logos + +security-menus + +firefox +yum-presto +midori +cups-pdf +gnome-bluetooth +alsa-plugins-pulseaudio +pavucontrol + +# Command line +ntfs-3g +powertop +wget +irssi +mutt +yum-utils +cnetworkmanager +Thunar +gtk-xfce-engine +thunar-volman +xarchiver + +# dictionaries are big +#-aspell-* +#-man-pages-* + +# more fun with space saving +-gimp-help + +#GUI Stuff +@lxde + +# save some space +-autofs +-nss_db +-sendmail +ssmtp +-acpid +# system-config-printer does printer management better +# xfprint has now been made as optional in comps. +system-config-printer + +###################### Security Stuffs ############################ +# Reconnaissance +dsniff +hping3 +nc6 +nc +ncrack +nessus-client +nessus-gui +nessus-server +ngrep +nmap +nmap-frontend +p0f +sing +scanssh +scapy +socat +tcpdump +tiger +unicornscan +wireshark-gnome +xprobe2 +nbtscan +tcpxtract +firewalk +hunt +halberd +argus +nbtscan +ettercap +ettercap-gtk +iptraf +pcapdiff +picviz +etherape +lynis + +# Forensics +chkrootkit +clamav +dd_rescue +gparted +hexedit +prelude-lml +testdisk +foremost +mhonarc +sectool-gui +rkhunter +scanmem +sleuthkit +unhide +examiner +dc3dd + +# Wireless +aircrack-ng +airsnort +kismet + +# Code analysis +splint +pscan +flawfinder +rats + +# Intrusion detection +snort +aide +tripwire +labrea +honeyd +pads +prewikka +prelude-notify +prelude-manager +nebula + +# Password cracking +john +ophcrack + +# Anonymity +tor + +# under review (#461385) +#hydra + +# Useful tools +lsof +ntop +scrot +mc + +# Other necessary components +screen +desktop-backgrounds-basic +feh +vim-enhanced +gnome-menus +gnome-terminal +PolicyKit-gnome + +# make sure debuginfo doesn't end up on the live image +-\*debug +%end + +%post + +# set up auto-login for liveuser +cat >> /etc/slim.conf << FOE +auto_login yes +default_user liveuser +FOE + +# create /etc/sysconfig/desktop (needed for installation) +cat >> /etc/sysconfig/desktop <> /etc/rc.d/init.d/livesys << EOF +# disable screensaver locking and make sure gamin gets started +rm -f /etc/xdg/lxsession/LXDE/autostart +cat >> /etc/xdg/lxsession/LXDE/autostart << FOE +/usr/libexec/gam_server +@lxde-settings-daemon +@pulseaudio -D +@lxpanel --profile LXDE +@pcmanfm -d +FOE + +# Show harddisk install on the desktop +sed -i -e 's/NoDisplay=true/NoDisplay=false/' /usr/share/applications/liveinst.desktop +mkdir /home/liveuser/Desktop +cp /usr/share/applications/liveinst.desktop /home/liveuser/Desktop + +# Add autostart for parcellite +cp /usr/share/applications/fedora-parcellite.desktop /etc/xdg/autostart + +#last thing to do +chown -R liveuser:liveuser /home/liveuser +restorecon -R /home/liveuser +EOF + +%end +