This article follows my previous post about Hacking operating system assessment, providing a complet review and my personal feedback apropos of Katoolin tool.
Basically, once your setup ready, you probably want to get tools, wordlists and frameworks in order to be able to do your usual hacking activities. If you choose a use pre built operating system e.g Kali Linux, Parrot Security OS, etc, you should normally be already operational. However, if you preferred to customize your setup by yourself, two choices face you:
- Get your stuff from official repositories
- Use Kali linux repositories to fetch and install your tools
Until now, I always opted for the first solution, allowing me to control my dependancies and avoiding compatibility issues due to outdated packages which could potentially fuck up your system.
A few weeks ago, I found an interesting alternative, katoolin, whose aim is to simplify the package installation process.
Katoolin is a python tool which, from Kali Linux repositories, allows to easily install packages that are maintained and enhanced by offensive security.
The first step is to the add the Kali repo and update your package manager with the following procedure:
1 > 1 > 2
Then use the back command to return to the main menu.
You are now ready to browse the multiple categories available and install tools that your need by typing their number in the console.
Once finished, delete the repo previously added to avoid any issue when it will be the time to update your Linux
The principal advantage of katoolin is to provide a classified list of tools available from Kali repositories, allowing to discover new software without having caught cancer with their shitty operating system
Depending on your system, the usage of this tool could be catastrophique. Indeed, I tried it on several Linux version and here is my feedback.
Firstly, I run it on a netinst debian under the following setup. Everything worked fine and save me plenty of times, particularly when came the time to install firewalk which is a veritable pain in the ass.
Afterward, I was forced to change, for hardware compatibility reason, of distribution for Ubuntu. Due to the fact that my previous experience with katoolin was satisfying, I decided to use it again. One week later, when I wanted to change my Unity theme, I realized that my package manager was completely broken cause katoolin took the initiative to downgrade, without my consent, some packages required for the install. That was so fucked up that I wasn’t even able to authenticate myself through the login interface. After 2/3 hours of debugging, I gave up and reinstall my system (no more time to waste ).
To conclude, I recommend avoiding using this tool, mainly if you use a heavy desktop environment. However, if you decided to give it a chance, use it extremely cautiously because the consequences of its usage could be quite irritating.
I hope you enjoyed this article.