arisuchan    [ tech / cult / art ]   [ λ / Δ ]   [ psy ]   [ ru ]   [ random ]   [ meta ]   [ all ]    info / stickers     temporarily disabledtemporarily disabled

/cyb/ - cyberpunk and cybersecurity

low life. high tech. anonymity. privacy. security.
Name
Email
Subject
Comment

formatting options

File
Password (For file deletion.)

Help me fix this shit. https://archive.arisuchan.jp/q/res/2703.html#2703

Kalyx ######


File: 1534104406771.png (394.99 KB, 1920x1080, ArcheryOS_awesome[1].png)

 No.3144

This is a relatively new fork of Arch that I learned about that purports to focus on "penetration testing, privacy, digital forensics, and programming." I just wanted to ask what the rest of /cyb/ makes of it. I'm considering replacing my laptop's Arch with Archery, but I wanna know if it's what it's cracked up to be or if I should look to other distros for better implementation of pentesting tools.

 No.3145

>>3144
soykaf, forgot the URL: http://www.archeryos.org/

 No.3146

whats wrong with blackarch linux and why would you use a penetration testing distro as your main OS to begin with? Not expecting an actual answer, but isn't that unsafe anon kun?

 No.3147

>>3146
Never heard of Blackarch until now, actually.
And I don't use this laptop as my main computer, so for the most part I consider it an experimental device type-deal sorta.

 No.3148

My bad.In that case the popular pentest distros are the way to go.Pentoo,blackarch, and Kali Linux.

 No.3149

>using a pentest disto as your main os
just nope. technically it is pointless, looks-wise it makes one look like a try-hard h4xx0r.

as pentest distros go i mainly use parrot (http://parrotsec.org/). it is just like kali (actually uses its repos for some stuff afaik) but even better.

 No.3150

>>3149
Just install debian + KDE + your toolchain and bam, instant customized "kali"

Also don't forget to set the background to a leet dragon or some soykaf like that

 No.3152

>>3148
>>3149
Thanks for the suggestions and comments. I think I'll keep my Arch as it is and use one of my USB sticks as a bootable pentest distro.

 No.3155

File: 1534246032922.jpg (111.41 KB, 382x276, pinocchio-lies-and-nose-gr….jpg)


 No.3157

>>3155
Let's just say that I'm new to the whole "actually caring about infosec as it relates to my personal privacy" thing.

 No.3158

>>3144
If you're really set on having a pentesting distro, put Parrot/BlackArch on a thumb drive and boot off that when the occasion comes. Otherwise, I'd just install the software you need separately onto your main distro.

 No.3159

>>3152
Check out DistroWatch if you're still curious. There are plenty of pentesting distros (although you'll probably end up looking like a skid, if you're using them for flair/social reasons)

 No.3160

>>3158
That's what I was thinking of doing. I have the Blackarch repository in my laptop so I can install from there when necessary, and I can boot a live image if/when necessary. I dunno why I didn't think of it in the first place.

>>3159
I'll keep that in mind too.

 No.3169

Archstrike

 No.3321

Hey everyone, I'm the creator of ArcheryOS, This is actually my first time on arisuchan, and I was quite surprised to see a thread about my distro.
I am current working on version 1.1, which will come with an openrc version. Any questions are welcome.

>>3146
I had trouble with the installer of blackarch. The encryption didn't work last time i used it, and many packages were poorly maintained.

>>3149
With the new version, there is an option during the installation that asks whether you do want to install the pentesting tools. ArcheryOS is also just an arch easy-installer (with the new option of openrc).

 No.3322

>>3321
Please stop doublefagging bumping dead posts

 No.3339

>>3321

hey there:

I've always been curious about these ''pentesting'' distros. I've generally gotten the impression that really, they're litterally another distro, be it debian or arch, with some preselected packages and a little branding.

I'm curious therefore why you started this distro ? is this how you see it, or what do you find the role of this sort of distribution as being ? Now that you're adding an openrc option and such, perhaps its becomming a little more divorced from vanilla arch, but it still seems a strage choice in general. How is archery better than say, a metapackage on the AUR that depends on a whole bunch of security/pentesting tools ?

 No.3343

>>3144
pentesting distros look and feel cool and all but they're just the distro you're already using with some programs preinstalled, it's easier just to install the programs yourself

 No.3344

File: 1537689447656.png (30.96 KB, 890x890, ArcheryOS-cropped.png)

>>3339
>I'm curious therefore why you started this distro?
I started this distro for a few reasons
1. All pentesting distros i have previously used have been quite bloated, and lack a good selection of non-pentesting software. I wanted one that was comfy to use, whether you are programming, browsing the web, or pentesting a system.
2. Distros like kali and black arch provide literally hundreds of tools, most of which you will never use. I want ArcheryOS to be something that can be molded into your own personal pentesting workspace. For example, some people only do binary exploitation, and only need tools such as radare2 and gdb. On the other hand, some people will never use radare2 in their pentesting "career". Giving the user a small selection (~100 tools) or what i consider to mostly essential tools, lets the user install the tools they want.
3. I like ArchLinux (because of the AUR), so about a year ago, i installed the BlackArch repos on my vanilla arch, but half the packages were broken. This is another reason i want to keep the package count low, so I can properly maintain them.
>is this how you see it, or what do you find the role of this sort of distribution as being ?
All distros are just a slightly different selection of tools, whether it is a pentesting distro or not. I actually started this distro as a way to quickly reinstall my arch setup (in case i broke something on my install, or was setting up another p.c.), and wasn't actually going to release it. I gave the iso to a friend and he convinced me otherwise, because he liked it so much.
>How is archery better than say, a metapackage on the AUR that depends on a whole bunch of security/pentesting tools ?
Other than the reasons listed above, It comes with an OpenRC option. It is preconfigured for privacy (for example, some of the about:config settings have been altered). And its more simple to install than arch (not that arch is difficult), and lacks the bloat that distros like manjaro have. Plus, the logo is cool.

On another note, I will be releasing an AUR packages that installs ArcheryOS's selection of pentesting tools, once i have released v1.1

 No.3643

What's the point of pentesting distros? Just use a normal distro.

 No.3649

>>3643
Dedicated pentest distros are fine for Live enviroment like USB or CD like a toolset, but installing them seems pointless, I have some classmates with Kali Linux as the only distro in their laptops being the prime example of pseudo script kiddies

 No.3652

>>3649
At least it marks them out for the rest of us.

 No.3655

>>3344
>1. All pentesting distros i have previously used have been quite bloated,
>2. Distros like kali and black arch provide literally hundreds of tools
The purpose of a pentesting dsitro is that you boot the iso and everything you might need on an engagment is preinstalled, configured and ready to go. And since it's a live system you don't need to worry about erasing evidence when you're done.

>For example, some people only do binary exploitation, and only need tools such as radare2 and gdb

Those people don't need a pentesting distro then.

> 3. … i installed the BlackArch repos on my vanilla arch, but half the packages were broken.

Consistent with my experience. To be fair, Arch Linux mostly attracts people who want to present a certain image about themselves, not people who actually know what they are doing.



[Return] [Go to top] [ Catalog ] [Post a Reply]
Delete Post [ ]