Kali Linux for DEFENSE? (Kali Purple 2023.1 Review)
Vložit
- čas přidán 19. 03. 2023
- 🔥 CZcams ALGORITHM ➡ Like, Comment, & Subscribe!
🙏 SUPPORT THE CHANNEL ➡ jh.live/patreon
🤝 SPONSOR THE CHANNEL ➡ jh.live/sponsor
🌎 FOLLOW ME EVERYWHERE ➡ jh.live/discord ↔ jh.live/twitter ↔ jh.live/linkedin ↔ jh.live/instagram ↔ jh.live/tiktok
💥 SEND ME MALWARE ➡ jh.live/malware
While on a red team to attack a fake company a blue team was try to protect. A couple on the blue team used Kali to break into the systems we took over to gain back control, change credentials patch and lock us out. Was actually pretty impressed. Unfortunately in this lab environment it was target rich and there were undocumented targets we were able to leverage to maintain a hold on the network, and ultimately win the exercise. Probably one of the best mock up Labs with real ICS equipment I’ve ever tested on.
The blue team was also encouraged to use Security Onion distro tools to defend as well.
you need to improve your English
That sounds really interesting! Thanks for sharing! Will attempt to do something similar.
*And your point is ???..... 😐*
*A couple you say ! Were they married ?*
I really love how passionate you are about what you do and how you present it.
Yeah I feel like I'm watching the ESPN but instead of sports it's ethical hacking
Didn't know i'd ever find someone who likes doing this stuff as much as I do lmao. It's a breath of fresh air
100% agree
100%agree
My exact thought.
So glad I wasn't the only one who had issues with the elasticsearch security. Excited to see it in action though!
Love this hands on review and analysis, John! Such a cool theme!
Thanks I've been struggling to get this fired up.
I just went to an OffSec workshop in Singapore about Kali Purple, Kibana and ElasticSearch. It was super awesome and just saw your video! Cant wait to see how the team makes it more feature packed!
I would like another review, more in-depth, of the tools included in the basic Kali Purple distro later on
i just spent a LOT of time taking a look at kali purple the past few days as well
thanks for sharing john
Just waiting for a follow-up video. So enthusiastic to have Kali Linux based functionnal SOC in a Box.
Oooh I missed this, had a crazy couple of months. Excited to try this out!
I literally am running linpeas on my own kali purple, just for the fun of it and checking out other things in kal purple, thinking when will John release a video on this. And after another 3 minutes, this videos gets released!! 😃😃
Thank you John for the vid, it’s great to see content creators analyze and criticize. Looks like offsec’s heart is in the right place but they have to add better documentation and something else than having a few binaries installed…specially with all the fuzz they did talking about this release, it’s a good start 😅
Your dedication levels motivate me a lot brother.
Kali always surprises imo, great vid!!!
PLEASE DO A VIDEO WHERE YOU SET THIS ALL UP PROPERLY!!!
the curl cut was funny!
John. please make a walktrough on doing Purple Team testing, using the new tools in KALI Purple !
Happy to see that I'm not the only one to don't understand why some programs aren't there and didn't find a way to install them....
I'm so excited about this
I installed elastic siem and it’s awesome!
5:15
Props for the ITProTV's Technado👨🏽💻🌪️ shirt.😉
I love the shorter videos like this one! I find 5-15 minutes to be the perfect length of a video. Usually its hard to find time to watch the 40 minute videos and they end up on the backlog instead. Keep it up!
They usually ramble for 15 to thirty minutes and then get into the tutorial
Yes! I usually lose focus when a talking head goes in for close to an hour. Shorter and more focused is better for informative stuff. Longer format is fine for detailed walkthroughs or essays, but those really need to be properly bookmarked.
Cheers Mate!
Holy shit
That internet speed!!
interesting, ill be taking a look myself.
the installation process looks like a CTF
Nice, this is what im waiting for, thank you John
You are correct john, im unable to find those apps in this version
Curl not installed in kali purple and that laugh 🤣🤣🤣🤣🤣🤣
Hey John love your stuff man. I was wondering could you recommend any good books or courses around SOC? Or Kali Linux. I've been dabbling in security for a while but I want to delve deeper. I'm a DevOps Engineer by trade.
There is a lot of potential with Kali Purple. Documentation is a bit tough to go through. Setting up an entire environment is quite an undertaking and I will probably be tackling this soon just to try it out. I do like that Kali is continuing to push things forward and provide consolidated tooling for Blue team folks also.
Do you know if Kali has any corporate sponsors? I worry a but about who backs these FOSS projects.
Saw enough best practices by 3m I subscribed
That is a ton of VMs you have - where do you store them all out of interest? Is it on an external drive, NAS or just internal? Just wondering as I continually have to delete them as I end up with too many over time and they just take up too much storage
Pls make a course. I will pay anything to learn from you in a organized way
Hey John, I have a question out of Cybersecurity. How you can manage all cyber security stuff without being distracted. Distraction is killing my productivity. It is a very large field i mean how can i be good at multiple modules such as (web - crypto - RE … ) I really tired
Really interested in the Purple PVE, if you could put out a tutorial and possibly a walk through of some of the features that would be amazing!
I have some videos of the PVE installation, but honestly you can use any hypervisor.
John, prepare and do the whole setup for Kali purple for us please!!!
I have a video of the complete setup. If you want to see someone monkey around with getting it all setup.
John I would love to see the install of all the things in kali purple. If u want to go down that rabbit hole. Lol
Would be interesting to see you put a windows PC out live on the internet, no protection and see what happens to the pc, what gets installed, hacked etc. then see you analyse it and see what virus / malware / etc is added
You should watch SomeOrdinaryGamers
He does those kind of videos
Just downloaded the ISO, can't wait to run into issues lol!
😂😂😂😂😂
😂💯
Switch to arch your life will be easier.
Ohh yea I forgot to mention, I use arch btw.........
Do you prefer this purple version or the normal kali linux version for Capture-the-Flag?
Lovely 👌
Pretty cool stuff, and I'm sure I will try it out . . . once it's a bit less of a mess.
It would be amazing if you could setup the entire architecture in your environment. Their documentation is terrible and only after thoroughly looking through their entire documentation and network diagrams was I able to understand how its setup. I had to start from 200 to get OPNsense configured first as every other instance is based off of VLANs and network configurations before installs. Also, the documentation is doing everything manually from Elastic fleet server management etc. and doesn't rely on the actual ISO that pre-installs everything. It's a lot to take in but it's very much doable.
Edit: not to mention the hardware overhead would make this unachievable for most. Thankfully, my NUC with 16 cores, 64GB memory is just barely enough to run everything at once....
Yeah those install instructions look like a complete mess.
Haha. They are, I have some videos stumbling through them to get to the full install.
@@AresCyberDefensecan you share here?
After seeing this I installed Kali Purple both in a VM and on a laptop to take it for a test drive. Both installs experience frequent issues. The mouse just hangs in the laptop (a Lenovo P53, quad core i7, 32GB) which I can resolve by modprobe -r / modprobe psmouse. But in the VM (Virtualbox, 4 vCPUs, 32GB ram) parts of the window manager hang and I can't get it going again without a reboot.
what's your internet speed man, show us speedtest results and something like puredns in action with bestdns wordlist
Hello John, I'm just a beginner in cybersecurity, so can you please recommend me some books about it ?
Hello John, Please can you make a video of how to setup SocialFish on Linux?
Thanks in advance as I wait for your feedback.
Just got to Try Harder when using Kali Purple
is that vm workstion pro you are running there with all them vms ?
its cool with new version
I have to do some reading. Is this kali more secure to average users out of the box?
Using this is one thing but imagine how smart the people that coded these OS are
Ya we play with toys
Incredibly smart!
This is awesome! Though i regret ugrading, it broke things, made the machine slower but i still cannot install SIEM
Isn't that always the case? 😅 Upgraded a couple weeks ago and messed everything up!
@@DavidAlvesWeb At this stage I think about switching to parrot. Its normal and just works!
So would purple be great for those that are trying to learn ethical hacking and cybersecurity?
what is the difference of kali purple 2023.1 and 2023.1a?
2:57 The login screen looks like Sid from Ice Age.
Defens system and new tools!!!
I am starting to fond of cybersecurity can you suggest some beginner level books for cybersecurity. Thanks
hello i kind of interested on this topic soc Im currently a web developer what should I do first to shift into this.
I would like to see Klai, red, blue and purple
I love it
I am honestly curious about ClamAV, you don't see to many Open Source AVs and even fewer come bundled with a distro (the mentality always being, "it's Linux it can't get infected") i wonder why it's not more known
ClamAV's been around for decades at this point, it even has a windows version. Linux can get infected, it's just less targeted. Also, a lot of Linux distributions are used a servers for non linux clients. For example, I have Linux server and one of is functions is a smb server for Windows machines. If you want to run your own mail server would be another use case of AV on Linux.
Best part of the whole video 8:17 to 8:25
Running into early adopter issues with the no documentation or just plain wrong documentation
wont run om rasp pi but def gonna install it in virtualbox
does purple have all the tools from the regular version though .? thats what everyone is asking and theres no video that says that . even their documentation is blurry about it .
do you think can this be used for daily driver??? hmmm
I have heard of Kali Linux since its inception...I never really bothered with it because you know...Debian / CentOS (now my Alma Linux Server!) always worked.....but this looks like a "One-Stop-Shop" type of deal that might be worth a look!...Kudos to the Kali Linux development team!!!
I tried using it but for some reason the install breaks while trying to partition
I tried to set it up but after it says it's installing the tools it stops working and says it's in error can't continue
what you think about BlackArch ?
whether it is deferent OS or updation to old OS?
The best defense is a good offence?
I also went down the "where is elastic and arkime" rabbit hole here with kali purple lol
Did you find what you were looking for?
this is sick
The most important thing to consider with Kali Purple is that it's a community project sponsored by OffSec.
its essentially Parrot OS but without the auto hacking tools
Thanks for showing the truth about everything isn't as easy as others may say ...... ;p
Kali is always full of surprises.
Better then back track 5 ?
I had the same problem with Malcom and Hedgehog, but trying to pull them with wget was successful.. 🤣
Well. Did they drop the ball or what? lol. How could an OS like this not come with curl? Wow
Is it still not bootable on some wifi cards? Booting it on Asus Rog Strix is impossible without some work...
Hey @_JohnHammond I just wanna know, HOW MANY VMs do you HAVE?! 😅
I wanna know what spec his laptop is to be able to run all them! :)
@@jamiemoles must be a Desktop PC :)
All of them
Damn he’s right! He must have TErABYTeS of storage on his PC as VMs take up SO DAMN MUCh STOrAGE and he has like DAmN 100+!!! 2:25
@@DavidAlvesWeb It's a Dell XPS
can't go through all comments to see if someone mentioned download issue, download error fix - use download manager, that fixes for me. I get multiple errors on various sites
Is it true that you can only have the .iso image? I see a VM that says 2023.1
Have they updated this yet?
are u playing HTB cyber acopolypse
How about installing the purple on windows kali app?
How can I get that chair please?
Kali purple is similar to CSI Linux where SIEM and other tools are in another vm instance.
@Dan Timola Not heard of that, will check it out. Hoping its a nice purple also 🙂
Can this Kali Purple Linux be installed on Android phones?
I tried to follow this, but dude, try decaf lol. I'm a native english speaker and couldn't follow most of that lol. From what little I could follow, it sounds like Kali is trying to build their own version of Qubes OS from the ground up without Xen. Your thoughts? perhaps at half speed lol.
openrc + linux hardened kernel + sysctl new function kali linux 2024 years tips archlinux kernel mode setup, + port privilage, synaptic, aptidute, snap, flatpak, firewalld gui+gufw+firewall builder openwrt, SoC ai security or attack, xfce (kali nethunter,undercovermod, gui firewall. LVM luks 2, grub pbkdf2 and end settings
2:28 - 2:30 got me rolling😂😂😂🤣
-Their specialty is still offdef because most of their certifications are focused on Redteam, but it's a start and a good starting point to create a study VM for LPIC-3 Security or their own SOC certifications.
-Good News...!!!
*clearly this version does need further development and reviews needed 😁*
Teach us how to use pwncat plz 😩
Oops 😬
I see all these bundle apps but all aren't installed
Curl not installed
I manually did it though...
😂
But its like same using Kali...
Just that we have some one icons and advertisement of apps which bundled but you need to install them 1 by 1...
😢
looking to install Kali Purple on a Laptop not a VM
why are you using vmware instead of virtualbox?