Win10bash了解一下

前言

  自从有了windows的linux bash,现在已经基本上远离的linux虚拟机,把一些常用的软件全部移植到了bash里,这里写个文,简单的记录下移植过程。

  怎么装就不说了,如果真的不会,搜索下就好了。装好系统之后就是apt-get update&&apt-get upgrade,然后就可以开始装软件了

工具安装

  这里装的一些工具都是自己常用的。如果没有写安装方法,基本上就是sudo apt-get install 工具名称。

装工具之前需要基于几个基本环境,对了有了这个bash,我再也不需要在python2和python3之间纠结了。

  • git
  • pip

    sudo apt-get install python-pip

    sudo apt-get install python3-pip

信息收集

  • whois

  • whatweb

    git clone https://github.com/urbanadventurer/WhatWeb.git

    alias whatweb="ruby /mnt/f/linx-tools/WhatWeb/whatweb"

  • sublist3r

    git clone https://github.com/aboul3la/Sublist3r.git

    pip install -r requestments.txt

    alias sublist3r="python /mnt/f/linx-tools/Sublist3r/sublist3r.py"

  • weakfilescan

    git clone https://github.com/ring04h/weakfilescan.git

    pip install -r requestments.txt

    alias wyspider="python /mnt/f/linx-tools/weakfilescan/wyspider.py"

渗透测试

  • metasploit

    curl https://raw.githubusercontent.com/rapid7/metasploit-omnibus/master/config/templates/metasploit-framework-wrappers/msfupdate.erb > msfinstall
    chmod 755 msfinstall
    ./msfinstall

  • sqlmap

    git clone https://github.com/sqlmapproject/sqlmap.git
    alias sqlmap='python /mnt/f/linx-tools/sqlmap/sqlmap.py'

  • getsploit

    git clone https://github.com/vulnersCom/getsploit

    `python setup.py install

  • slowhttptest

  • testssl

    git clone https://github.com/drwetter/testssl.sh.git
    alias testssl="bash /mnt/f/linx-tools/testssl.sh/testssl.sh"

  • redis-tools

  • hydra

  • Social-Engineer Toolkit

    git clone https://github.com/trustedsec/social-engineer-toolkit.git
    cd social-engineer-toolkit/
    python setup.py install

扫描器

  • xunfeng

    wget -qO- https://raw.githubusercontent.com/ysrc/xunfeng/master/install/install.sh | sh
    /etc/init.d/xunfeng start | stop | restart | status

  • wpscan

      这里安装wpscan时候会出现依赖问题,这里推荐linux的另一个安装工具aptitude,aptitude与 apt-get 不同的是,aptitude 在处理依赖问题上更佳一些。

    sudo apt-get install libcurl4-openssl-dev libxml2 libxml2-dev libxslt1-dev ruby-dev build-essential libgmp-dev zlib1g-dev

    git clone https://github.com/wpscanteam/wpscan.git

    sudo gem install bundler && bundle install --without test

代码审计

  • cobra

    git clone https://github.com/wufeifei/cobra.git
    cd cobra
    pip install -r requirements.txt

移动安全

  • adb

    sudo apt-get install android-tools-adb android-tools-fastboot

  • mobsf

    git clone https://github.com/MobSF/Mobile-Security-Framework-MobSF.git
    cd Mobile-Security-Framework-MobSF
    pip3 install -r requirements.txt
    alias mobsf="python3 /mnt/f/linx-tools/Mobile-Security-Framework-MobSF/manage.py runserver"

  • apktool

    wget https://raw.githubusercontent.com/iBotPeaches/Apktool/master/scripts/linux/apktool

    mv apktool.jar /usr/local/bin

    mv apktool /usr/local/bin

    chmod +x apktool

    chmod +x apktool.jar

  • dex2jar

    wget https://github.com/pxb1988/dex2jar/files/1867564/dex-tools-2.1-SNAPSHOT.zip

    alias d2j-dex2jar="bash /mnt/f/linx-tools/dex-tools/d2j-dex2jar.sh"

二进制及内存取证

  • binwalk

    sudo apt-get install python-lzma
    git clone https://github.com/devttys0/binwalk.git
    cd binwalk
    sudo python setup.py install

  • foremost

结语

  本来想着在bash里面安装docker,但是发现装完之后服务一直起不来,好像是不支持,如果要装docker,需要使用windows自带的虚拟机,但是开了这个虚拟机无法支持vmware了。所以docker目前就算了。

  至于如何每次不cd到工具文件夹,持久化alias了解一下。