Kali Purple 2023.1 Review and Installation Walkthrough

Video Statistics and Information

Video

Captions Word Cloud

Reddit Comments

Captions

welcome welcome you might be familiar with Kali Linux if not basically Kali Linux is one of these Linux distributions so a Linux flavor and it has a bunch of pre-loaded offensive security kind of tools on it so things you would use on a penetration test or a red team assessment and you would basically try to break into networks that you're authorized to do so legally with a contract so that's a lot of those penetration testing jobs that everybody wants to get into right well one thing that has recently happened is offensive security the company that maintains Kali Linux has released something called Cali purple which is aimed at more of the red and blue team side so combining those different aspects of things where blue team is typically more defensive red team is more offensive and really just combining a lot of those tool sets so you can do a lot of that stuff in one Linux distribution or one operating system so what we're going to do in this video is we're going to walk through the release and then we're actually going to install Cali purple so that if you want to play with it you can do it at your house or in your lab or wherever you practiced your cyber security skills all right so this is the release post and I will leave a link to this in the video description if you want to check it out you can of course always Google it or go to offensive Securities website but we're going to scroll through this and take a look at what's included in here they do give a table of contents so you can skip to different sections which is always nice but we're going to scroll down here and again their 10th anniversary so Kelly Linux has been around for a long time if you've been in cyber security for a while it actually used to be called something called backtrack and if you've looked at any old cyber security books or documentation or anything that mentions a backtrack Linux distribution or Linux operating system that's basically what it was it was the older version of Cali and then eventually they changed it into Cali as we know it today so that's a little bit of history for you if you're interested so Cali purple the dawn of a new era Kelly's not only offensive but it's defensive so keep that in mind in your career or in your cyber security Pursuit that defense is really really important it should signal something to you that you're realizing Cali Linux is starting to expand and include defensive tools right keep that in mind it's not all about offense so that's one major change for sure then Python 3.11 and pip changes going forward once a year theme update XF ce4.18 and KDE plasma 5.27 default kernel settings and some new tools so let's keep scrolling through here so what is Cali purple Cali purple is the One Stop Shop where blue and purple teams kind of interesting they didn't say red teams so they are keeping Kali Linux just the traditional version where it's all red team based they're still maintaining that right they're not completely shifting over to just this Cali purple version but keep that in mind let's see what else is in here this talks about backtrack so like I mentioned right backtrack was the old version and things have really evolved since that last version of backtrack keep scrolling down here reference of architecture for the ultimate sock in a box perfect for you so practicing stock analysis and thread hunting security control design and testing blue red purple teeming exercises Cali spy versus spy competitions protection of small to medium-sized environments over 100 defensive tools so this is where we start getting into some of that defensive stuff right archimy cyber Chef elastic security if you want to use a SIM Tool gvm The Hive there's a lot of different tools that are included in their hair they said over a hundred right that's a ton they have documentation where you can go to that they also of course still have all the red team tools they would have in the regular version so keep that in mind you can do everything in the one version regenerated image and we'll get into a few reasons why this might make sense to get Cali purple or why it might not and some of the limitations especially in the installation process Cali autopilot an attack script Builder framework for automated attacks that's really important purple hub for the community to share practice pcaps Cali autopilot scripts blue teaming exercises so they're trying to generate more training kind of exercises or capabilities that you can use in your practice or in your lab exercises Community Wiki and then this is where the purple team side of things kind of comes into play so the nist CSF the critical infrastructure cyber security this is nist cyber security framework basically and there's some different steps the identify protect detect respond and recover that's basically the whole process of cyber security and that's referenced in that cyber security framework so go check that out that's definitely worth checking out in your cyber security career as well there is a purple Discord channel so check that out as well and theme installer menu entries and xfs xfce and then they show some screenshots of some different defensive tools so things like elastic which is the Sim tool that they include Alchemy Malcolm installer and again we're going to go through the installation process of this so we'll just keep scrolling through here see here and python changes so python 3.11 is now in Debian so that is something important to keep in mind anytime you're using python you want to make sure that you're using the right version there are differences between the versions especially the major versions right there was a huge uproar when we went from python 2 to Python 3 because there were changes right especially in scripting and kind of the formatting and the syntax of things if you didn't have it correctly syntaxed or correctly formatted or python3 you could run into a lot of Errors right your scripts could all of a sudden start failing out because they weren't necessarily structured in the same way that Python 3 would expect it and a lot of people saw that so that is definitely something to consider they also show you how to use pip to do some installations as far as python modules and they also actually give you another way so you can actually use apt which is another package manager to install different Python 3 packages and so that's a really good way to use it they give the simple and recommended way so apt install python3 and the package name keep scrolling through here again they're talking about apt and how to install python modules so we're not going to go through those you know specific commands because that's really not necessary as far as the scope of this video but keep that in mind and there's some information about environments so uh the virtual environment with python so if you use Python a lot that's definitely going to be useful as far as just commands in general to kind of get you started especially if you're just getting started out right and then break system packages so with any kind of packages right and changes in versions there's always these issues where there's dependencies or things that don't work right and you know whatever right uh they do give this break system packages though that you can add on so if you want to ignore everything and not worry about any kind of repercussions or results or issues that come of installing a certain version of something then you can use that command as well so that can be useful especially on the red team side of things because typically you know you're not worried about a thousand users logging into your application or using your script you're using it usually in that situation and then it kind of just gets thrown away a lot of times right because you're usually tailoring things in a specific situation but nonetheless that can definitely be useful they talk about three uh the theme differences so they do include some other wallpapers and some uh things like that it's going to look a little bit differently typically between versions with Cali They do change what it looks like so you'll see a different wallpaper by default or you'll see just a different overall look to it right and that's important to keep in mind especially if you change versions and you all of a sudden see some differences like that and you can a lot of times tell which version it is if it hasn't been changed right obviously with like a wallpaper you can just change it back but that is important to keep in mind different wallpapers and again we'll go through those as well and ways to install Legacy wallpapers and then this is going to be talking about xfce 4.18 and just overall how to actually format what it looks like and I don't know if you know this but in Cali there are ways to kind of Disguise the operating system that you're using right so you can make it look like something else especially if you're on site or like a physical penetration test and you don't want somebody within that building to see that you're running Kali Linux then you can do that feature which is actually pretty cool and tiling stuff that's pretty cool too trying to see here if there's anything else that's really really important now the known issues this might affect some people because there is some issues that you might run into with NVIDIA drivers and if you do basically they're saying Purge those drivers in Cali and then reboot your system and that hopefully will fix it right but um if that's going to affect you then definitely do that and then they're just basically talking about more tool-specific kind of things Community shout outs are always great all right so if you're ready to install Kali Linux and you're on the Cali website go ahead and open up the menu and select get Cali you can also go to the downloads page or Google it to find it as well now this is really important in a distinction between the regular Cali version and Cali purple if we scroll down here and we go to just the regular section so you can see that for one there's an ISO that you can download right like that's pretty standard with operating systems specifically with regular Cali they have pre-compiled or pre-built virtual machines that you can download So for virtualbox we have one we have VMware uh and then QE mu and so you can get these different versions and just get up and running right you don't have to go through the full installation process unfortunately with Cali purple that does not exist the only way that you can install it is by getting the iso now that will make the process a little bit slower it'll take more time depending on what you install could take more could take less right but that is an important distinction so keep that in mind okay so I've already downloaded the iso 4 Cali purple we're going to install it using VMware Workstation 15.5 Pro and really this will apply to any hypervisor software so it really doesn't matter which version you use as long as it's a modern version right so relatively recently but I'm going to select create a new virtual machine I'm going to select typical because this is pretty much a normal installation we're going to find the iso image so browse to it and select it for the operating system in this particular version I need to select that it's in other Linux operating system so I'm going to do other 5.x or later kernel 64-bit let's hit next I'm gonna call this Cali purple select next I'm going to give this a hard drive space of 30 gigabytes and you can decide how big you want to make it for your specific installation I typically will leave the next option just as the default so split virtual disk into multiple files next I'm going to customize the hardware because I do want to give it a little bit more resources so I'm going to give it eight megabytes of eight gigabytes of RAM rather I'm going to change the processors or the cores that are allowed to use it and I think for that installation that's going to be good so I'm going to hit close and finish all right now we're going to power up the actual virtual machine we'll do a graphical installation all right so now we have to go through the options so we're going to do English United States because that's where I live American English because that's the keyboard that I have okay so now it wants us to give it a host name which is going to be the name of that system so I'm just going to call it Cali P for Cali purple and we'll hit continue domain name I'm not going to fill this out because I'm not joining it to a domain hit continue full name of the new user so this is going to be the user's actual name not the username that they log in with so I'm just going to put John in here and then this will ask for the actual username of the account so what do you want the username that somebody uses to log into this system with I'm just going to leave it as John and now you have to enter a super secret password to set that continue enter your time zone so I'm going to choose Arizona and this is going to ask about how you want to partition the disks I typically am just going to do guided use entire disk I don't want to get too crazy with it and set up encryption on any of these so I'm going to hit continue gonna ask to select which drive that you want to use and we're going to use that one this is another option that you can do where you can create separate partitions for different types of data again especially with the virtual machine on something like this I have no reason to do that so I'm just going to keep everything in one partition and hit continue right it'll make sure that we confirm all of our changes we're going to select finish partitioning and write changes to disk and hit continue it's going to double check do we want to do this we're going to select yes and hit continue all right so this is going to install Cali purple and when this finishes we'll check back okay so at this point it wants us to select what kind of software that we want to install desktop environments pretty default xfce that's the Cali desktop default environment or the actual operating system and then these tool options down here below this identify protected Tech respond recover again those go back to that blue team side of things from the nist cyber security framework so for our installation we're going to keep them all and we're going to hit continue okay so now this is asking about the grub bootloader which is basically what loads the operating system for this we're going to hit yes and just select that to install we're going to select our device so that's where we install our operating system and we're going to hit continue on here and that's going to boot us into a fresh installation of our operating system so we'll go ahead and log in and now we're up and running with Cali purple so let's take a look at a few of the changes and differences in this version so the first thing that we're going to do is I just want to show you the different wallpapers these are pretty cool and definitely a little bit more creative I guess than the previous versions that we saw before but there's some really cool wallpapers in here that you can use so we'll just leave it on the default one for now the next thing that I want to show you is with windows so Windows within the operating system so one thing that we can do is it does allow us to snap the windows to different parts of the screen and this is very similar to what you would see like within Windows right you can just drag it to the edge of the screen and it's going to attach it or snap it to that section this is extremely useful in this operating system because you might have multiple windows like terminals or anything like that maybe a text pad and a terminal window and you want to have multiple things up this just makes it a whole lot easier the next thing that is also in here again goes back to the tools so typically in normal Kali Linux you just have from information gathering all the way down right like those are the normal tools that you would see but because we installed the nist cyber security framework related tools you do have those sections in here as well and there's a whole bunch of other tools to check out and become familiar with now the other thing that I want to point out is this is kind of a change that they started doing with Cali Linux a while back but they got away from actually logging you in as a root user so if you see this is just a normal terminal window this has me as John right but now you do have a root terminal emulator so this will have you put in your password and this will actually open up a root terminal window so you don't have to switch into the root user and it's easy to distinguish the difference between the two windows say if you wanted to do something as a normal user versus a root user then you have that option so that's something important to keep in mind typically for me when I install a fresh operating system the very first thing that I'm going to do is first of all make the text a little bit bigger because a lot of times it's too small but I'm actually going to do an update so I'm going to do sudo because I'm going to run this as root apt update and I'm going to do a pseudo apt upgrade with the option of yes so it will install all of those Updates this is kind of a blind installation so this is just going to update and install everything that it can this is not always the best option especially if it's a production type operating system but for this installation it totally makes sense to do this and we'll have to put in our password and that will go ahead and update everything for us whenever you do updates especially when you do Mass updates where you're updating a ton of stuff it's always a good idea to reboot the system so then after that I'll do a pseudo reboot and that will reboot the operating system the other thing that I always do after I do updates or when I'm dealing with virtual machines is I create a snapshot so in VMware it's under the VM option and then snapshot and I'll hit take snapshot so that I will use the date so 2023 and this is being filmed on March 18th and then I'll label it fresh install and that will signify to me that I've completely installed a fresh operating system and then I will also say and fully updated signifying that I've updated everything possible at that moment and then I'll hit take snapshot that way if there's any kinds of issues I can always revert back to that snapshot and then I'll be in the same state that I'm in right now as far as versions on software what the operating system looks like any kind of files that I have on the operating system basically the exact state that I have it in right now all right so I hope you enjoyed that walkthrough of the Cali purple release information and an installation walkthrough of the operating system remember regular Kali Linux is just for penetration testing and Red Team environments exercises situations and then Cali purple brings in a lot of those defensive tools that are based on the nist cyber security framework and that will help you do some blue team exercises as well as red team exercises which really makes it purple team exercises right so keep that in mind I hope you enjoyed this video and I'll see you next time

Info

Channel: Jon Good

Views: 10,864

Rating: undefined out of 5

Keywords: cybersecurity, cyber security, kali, kali linux, kali purple, red team, blue team, purple team, ethical hacking, cyber security tools, cybersecurity tools, purple team tools, red team tools, blue team tools, offensive security, penetration testing, Kali Purple Install, Kali Purple Installation, Kali Installation, Kali Install, install kali linux, install kali purple, Kali Purple 2023.1, Kali Purple Review, kali linux purple, kali purple 2023, kali purple 2023.1, Jon Good

Id: y6s0B3LGRZw

Channel Id: undefined

Length: 21min 22sec (1282 seconds)

Published: Mon Mar 20 2023