Это видео недоступно.
Сожалеем об этом.
Kali Linux for DEFENSE? (Kali Purple 2023.1 Review)
HTML-код
- Опубликовано: 19 мар 2023
- 🔥 RUclips ALGORITHM ➡ Like, Comment, & Subscribe!
🙏 SUPPORT THE CHANNEL ➡ jh.live/patreon
🤝 SPONSOR THE CHANNEL ➡ jh.live/sponsor
🌎 FOLLOW ME EVERYWHERE ➡ jh.live/discord ↔ jh.live/twitter ↔ jh.live/linkedin ↔ jh.live/instagram ↔ jh.live/tiktok
💥 SEND ME MALWARE ➡ jh.live/malware
While on a red team to attack a fake company a blue team was try to protect. A couple on the blue team used Kali to break into the systems we took over to gain back control, change credentials patch and lock us out. Was actually pretty impressed. Unfortunately in this lab environment it was target rich and there were undocumented targets we were able to leverage to maintain a hold on the network, and ultimately win the exercise. Probably one of the best mock up Labs with real ICS equipment I’ve ever tested on.
The blue team was also encouraged to use Security Onion distro tools to defend as well.
you need to improve your English
That sounds really interesting! Thanks for sharing! Will attempt to do something similar.
*And your point is ???..... 😐*
*A couple you say ! Were they married ?*
I really love how passionate you are about what you do and how you present it.
Yeah I feel like I'm watching the ESPN but instead of sports it's ethical hacking
Didn't know i'd ever find someone who likes doing this stuff as much as I do lmao. It's a breath of fresh air
100% agree
100%agree
My exact thought.
So glad I wasn't the only one who had issues with the elasticsearch security. Excited to see it in action though!
Thank you John for the vid, it’s great to see content creators analyze and criticize. Looks like offsec’s heart is in the right place but they have to add better documentation and something else than having a few binaries installed…specially with all the fuzz they did talking about this release, it’s a good start 😅
I would like another review, more in-depth, of the tools included in the basic Kali Purple distro later on
Just waiting for a follow-up video. So enthusiastic to have Kali Linux based functionnal SOC in a Box.
I just went to an OffSec workshop in Singapore about Kali Purple, Kibana and ElasticSearch. It was super awesome and just saw your video! Cant wait to see how the team makes it more feature packed!
I literally am running linpeas on my own kali purple, just for the fun of it and checking out other things in kal purple, thinking when will John release a video on this. And after another 3 minutes, this videos gets released!! 😃😃
Thanks I've been struggling to get this fired up.
Love this hands on review and analysis, John! Such a cool theme!
Oooh I missed this, had a crazy couple of months. Excited to try this out!
i just spent a LOT of time taking a look at kali purple the past few days as well
thanks for sharing john
There is a lot of potential with Kali Purple. Documentation is a bit tough to go through. Setting up an entire environment is quite an undertaking and I will probably be tackling this soon just to try it out. I do like that Kali is continuing to push things forward and provide consolidated tooling for Blue team folks also.
Do you know if Kali has any corporate sponsors? I worry a but about who backs these FOSS projects.
I installed elastic siem and it’s awesome!
Your dedication levels motivate me a lot brother.
the curl cut was funny!
John. please make a walktrough on doing Purple Team testing, using the new tools in KALI Purple !
Cheers Mate!
Hey John love your stuff man. I was wondering could you recommend any good books or courses around SOC? Or Kali Linux. I've been dabbling in security for a while but I want to delve deeper. I'm a DevOps Engineer by trade.
the installation process looks like a CTF
Kali always surprises imo, great vid!!!
I'm so excited about this
I love the shorter videos like this one! I find 5-15 minutes to be the perfect length of a video. Usually its hard to find time to watch the 40 minute videos and they end up on the backlog instead. Keep it up!
They usually ramble for 15 to thirty minutes and then get into the tutorial
Yes! I usually lose focus when a talking head goes in for close to an hour. Shorter and more focused is better for informative stuff. Longer format is fine for detailed walkthroughs or essays, but those really need to be properly bookmarked.
PLEASE DO A VIDEO WHERE YOU SET THIS ALL UP PROPERLY!!!
5:15
Props for the ITProTV's Technado👨🏽💻🌪️ shirt.😉
That is a ton of VMs you have - where do you store them all out of interest? Is it on an external drive, NAS or just internal? Just wondering as I continually have to delete them as I end up with too many over time and they just take up too much storage
Would be interesting to see you put a windows PC out live on the internet, no protection and see what happens to the pc, what gets installed, hacked etc. then see you analyse it and see what virus / malware / etc is added
You should watch SomeOrdinaryGamers
He does those kind of videos
Happy to see that I'm not the only one to don't understand why some programs aren't there and didn't find a way to install them....
It would be amazing if you could setup the entire architecture in your environment. Their documentation is terrible and only after thoroughly looking through their entire documentation and network diagrams was I able to understand how its setup. I had to start from 200 to get OPNsense configured first as every other instance is based off of VLANs and network configurations before installs. Also, the documentation is doing everything manually from Elastic fleet server management etc. and doesn't rely on the actual ISO that pre-installs everything. It's a lot to take in but it's very much doable.
Edit: not to mention the hardware overhead would make this unachievable for most. Thankfully, my NUC with 16 cores, 64GB memory is just barely enough to run everything at once....
Yeah those install instructions look like a complete mess.
Haha. They are, I have some videos stumbling through them to get to the full install.
@@AresCyberDefensecan you share here?
Nice, this is what im waiting for, thank you John
You are correct john, im unable to find those apps in this version
interesting, ill be taking a look myself.
Hey @_JohnHammond I just wanna know, HOW MANY VMs do you HAVE?! 😅
I wanna know what spec his laptop is to be able to run all them! :)
@@jamiemoles must be a Desktop PC :)
All of them
Damn he’s right! He must have TErABYTeS of storage on his PC as VMs take up SO DAMN MUCh STOrAGE and he has like DAmN 100+!!! 2:25
@@DavidAlvesWeb It's a Dell XPS
Really interested in the Purple PVE, if you could put out a tutorial and possibly a walk through of some of the features that would be amazing!
I have some videos of the PVE installation, but honestly you can use any hypervisor.
Holy shit
That internet speed!!
Lovely 👌
John, prepare and do the whole setup for Kali purple for us please!!!
I have a video of the complete setup. If you want to see someone monkey around with getting it all setup.
Hey John, I have a question out of Cybersecurity. How you can manage all cyber security stuff without being distracted. Distraction is killing my productivity. It is a very large field i mean how can i be good at multiple modules such as (web - crypto - RE … ) I really tired
is that vm workstion pro you are running there with all them vms ?
After seeing this I installed Kali Purple both in a VM and on a laptop to take it for a test drive. Both installs experience frequent issues. The mouse just hangs in the laptop (a Lenovo P53, quad core i7, 32GB) which I can resolve by modprobe -r / modprobe psmouse. But in the VM (Virtualbox, 4 vCPUs, 32GB ram) parts of the window manager hang and I can't get it going again without a reboot.
Do you prefer this purple version or the normal kali linux version for Capture-the-Flag?
John I would love to see the install of all the things in kali purple. If u want to go down that rabbit hole. Lol
Pls make a course. I will pay anything to learn from you in a organized way
Running into early adopter issues with the no documentation or just plain wrong documentation
So would purple be great for those that are trying to learn ethical hacking and cybersecurity?
Just downloaded the ISO, can't wait to run into issues lol!
😂😂😂😂😂
😂💯
Switch to arch your life will be easier.
Ohh yea I forgot to mention, I use arch btw.........
I tried using it but for some reason the install breaks while trying to partition
Curl not installed in kali purple and that laugh 🤣🤣🤣🤣🤣🤣
what is the difference of kali purple 2023.1 and 2023.1a?
I tried to set it up but after it says it's installing the tools it stops working and says it's in error can't continue
I have to do some reading. Is this kali more secure to average users out of the box?
what's your internet speed man, show us speedtest results and something like puredns in action with bestdns wordlist
Hello John, I'm just a beginner in cybersecurity, so can you please recommend me some books about it ?
Saw enough best practices by 3m I subscribed
I am honestly curious about ClamAV, you don't see to many Open Source AVs and even fewer come bundled with a distro (the mentality always being, "it's Linux it can't get infected") i wonder why it's not more known
ClamAV's been around for decades at this point, it even has a windows version. Linux can get infected, it's just less targeted. Also, a lot of Linux distributions are used a servers for non linux clients. For example, I have Linux server and one of is functions is a smb server for Windows machines. If you want to run your own mail server would be another use case of AV on Linux.
Just got to Try Harder when using Kali Purple
Is it true that you can only have the .iso image? I see a VM that says 2023.1
hello i kind of interested on this topic soc Im currently a web developer what should I do first to shift into this.
Hello John, Please can you make a video of how to setup SocialFish on Linux?
Thanks in advance as I wait for your feedback.
This is awesome! Though i regret ugrading, it broke things, made the machine slower but i still cannot install SIEM
Isn't that always the case? 😅 Upgraded a couple weeks ago and messed everything up!
@@DavidAlvesWeb At this stage I think about switching to parrot. Its normal and just works!
whether it is deferent OS or updation to old OS?
do you think can this be used for daily driver??? hmmm
does purple have all the tools from the regular version though .? thats what everyone is asking and theres no video that says that . even their documentation is blurry about it .
I love it
Is it still not bootable on some wifi cards? Booting it on Asus Rog Strix is impossible without some work...
How about installing the purple on windows kali app?
wont run om rasp pi but def gonna install it in virtualbox
what you think about BlackArch ?
Pretty cool stuff, and I'm sure I will try it out . . . once it's a bit less of a mess.
The best defense is a good offence?
How can I get that chair please?
-Their specialty is still offdef because most of their certifications are focused on Redteam, but it's a start and a good starting point to create a study VM for LPIC-3 Security or their own SOC certifications.
-Good News...!!!
2:57 The login screen looks like Sid from Ice Age.
I would like to see Klai, red, blue and purple
its cool with new version
can't go through all comments to see if someone mentioned download issue, download error fix - use download manager, that fixes for me. I get multiple errors on various sites
Better then back track 5 ?
Kali purple is similar to CSI Linux where SIEM and other tools are in another vm instance.
@Dan Timola Not heard of that, will check it out. Hoping its a nice purple also 🙂
this is sick
Can this Kali Purple Linux be installed on Android phones?
2:28 - 2:30 got me rolling😂😂😂🤣
Well. Did they drop the ball or what? lol. How could an OS like this not come with curl? Wow
I also went down the "where is elastic and arkime" rabbit hole here with kali purple lol
Did you find what you were looking for?
Have they updated this yet?
I am starting to fond of cybersecurity can you suggest some beginner level books for cybersecurity. Thanks
I have heard of Kali Linux since its inception...I never really bothered with it because you know...Debian / CentOS (now my Alma Linux Server!) always worked.....but this looks like a "One-Stop-Shop" type of deal that might be worth a look!...Kudos to the Kali Linux development team!!!
I had the same problem with Malcom and Hedgehog, but trying to pull them with wget was successful.. 🤣
are u playing HTB cyber acopolypse
Using this is one thing but imagine how smart the people that coded these OS are
Ya we play with toys
Incredibly smart!
Kali is always full of surprises.
I tried to follow this, but dude, try decaf lol. I'm a native english speaker and couldn't follow most of that lol. From what little I could follow, it sounds like Kali is trying to build their own version of Qubes OS from the ground up without Xen. Your thoughts? perhaps at half speed lol.
openrc + linux hardened kernel + sysctl new function kali linux 2024 years tips archlinux kernel mode setup, + port privilage, synaptic, aptidute, snap, flatpak, firewalld gui+gufw+firewall builder openwrt, SoC ai security or attack, xfce (kali nethunter,undercovermod, gui firewall. LVM luks 2, grub pbkdf2 and end settings
Teach us how to use pwncat plz 😩
Defens system and new tools!!!
Best part of the whole video 8:17 to 8:25
looking to install Kali Purple on a Laptop not a VM
its essentially Parrot OS but without the auto hacking tools
What about blackarch?
I did find some slightly better instructions but dang. It is still assuming you know some things that not everyone even in the industry for years has experience with. And ya I could figure it out be I need a little more to go on than what they are giving.
I mean, it's free software, one of they things they are hoping is that you learn by having to putting it all together. The world is going through some serious stuff on the cyberfront and we need defenders who understand these tools to protect real world assets.
why are you using vmware instead of virtualbox?
So basically OpenBSD?
The most important thing to consider with Kali Purple is that it's a community project sponsored by OffSec.