My First Kali Linux Setup (2019.3)

Setup and Initial Configuration

passwd root
apt update && apt upgrade
apt autoremove
dpkg-reconfigure openssh-server #change default ssh keys

use systemctl to turn on services by default (on boot)

systemctl enable ssh
systemctl enable postgresql  # useful for metasploit

turn off the water dropping sound

dconf write /org/gnome/desktop/sound/event-sounds "false"

add a non-root user

adduser <user>
usermod -aG sudo <user> # give sudo permission

add a bin to home

mkdir ~/bin

Installation and Developer Tools

apt install xclip # for copying file contents to clipboard
apt install gedit-plugins
apt install python-pip  # python2 pip
apt install python3-pip
pip3 install pyftpdlib  # Python FTP Server library
apt install ruby-full #  gem install


curl -fsSL | apt-key add -
echo 'deb [arch=amd64] buster stable' > /etc/apt/sources.list.d/docker.list
apt-get update
apt install docker-ce

CTF Tools


python3 -m pip install --upgrade 

git clone /opt/exiftool
cd $_
perl Makefile.PL
make test
make install


apt install gimp
apt install steghide

git clone /opt/zsteg 
cd $_
gem install zsteg

Setup ImageMagick

apt install autoconf
git clone /opt/ImageMagick
cd $_

Reverse Engineering

git clone /opt/peda
git clone /opt/cutter

IDA Freeware for Linux

mv <dir>/ /opt/ida64
cd $_ && chmod +x
./ # go through install daemon
ln -s /opt/idafree-7.0/ida64 ./ida64

Cracking and Fuzzing


git clone /opt/AFL

Hashcat - to get hashcat to work in a VM

apt install libhwloc-dev ocl-icd-dev ocl-icd-opencl-dev pocl-opencl-icd
gunzip /usr/share/wordlists/rockyou.txt.gz



git clone /opt/morse
ln -s /opt/morse/bin/morse ~/bin/morse

Autoclicking tool

apt install xdotool # for a clicker challenge

Rubber Ducky

git clone /opt/usb_rubber_ducky

Networking and Pentesting

Dirbuster big wordlist

git clone /usr/share/wordlists/dirbuster/directory-list-2.3-big.txt

bluto for DNS recon

pip install bluto  # DNS recon and Brute Forcer


git clone /opt/impacket
pip install /opt/impacket

Gobuster - Directory/File, DNS and VHost busting tool

git clone /opt/gobuster
# use: gobuster dir -u $url -w $wordlist

Evil-WinRM - escalate priviledges on Windows machine

git clone /opt/Evil-WinRM
gem install evil-winrm

General Priviledge Escalation Scripts

git clone /opt/PrivEsc


apt install libc6-dev-i386
git clone /opt/OpenLuck
cd $_
gcc OpenFuck.c -o open -lcrypto


apt install libssl-dev
git clone /opt/LinEnum

Download Nessus package from website -

dpkg -i <package like: Nessus-8.8.0-debian6_amd64.deb>
ln -s /etc/init.d/nessusd ~/bin/nessusd
ln -s /opt/nessus/sbin/nessuscli  ~/bin/nessuscli


Firefox extensions

  • Wappalyzer, which checks front and back end technologies on a website
  • FoxyProxy, to configure with Burp Suite

Setup Tor

echo 'deb stretch main
deb-src stretch main' > /etc/apt/sources.list.d/tor.list
wget -O- | sudo apt-key add -
apt update
apt install tor