Developed by LZ2HV - Christo mail: lz2hv@abv.bg Supported working modes: MSK144 MSKMS JTMS FSK441 FSK315 ISCAT JT6M FT8/4 JT65 PI4 System Requirements: Microsoft Windows Xp, Windows 7,8,10 32 or 64 Bit, Linux Fedora (Red hat), Ubuntu (Debian). Compiling: MinGw recommended GCC 7.3.0 thread model posix. It is based on Lubuntu. Infact, one can download Lubuntu and update it with the Santoku Packages. It is available as a 64 bit bootable ISO image to run on x8664 machines. BlackArch/Arch – Arch-based cutting-edge Linux distro for hackers. 3 programs for 'iso-32-bit-linux archlabs'. SQL Sentry enables observability to effectively monitor, diagnose, and optimize performance across your data estate. View real-time and historical performance metrics in an intuitive dashboard and easily drill down into details to uncover the root cause of performance problems.
BlackArch Linux 64 bit Live ISO: 2019.06.01: Torrent: 12GB. Install in Arch Linux. BlackArch is compatible with existing/normal Arch Linux installations.
| Benefits for LWN subscribers The primary benefit from subscribing to LWN is helping to keep us publishing, but, beyond that, subscribers get immediate access to all site content and access to a number of extra site features. Please sign up today! |
September 13, 2016
This article was contributed by Nate Drake
BlackArch Linux is aspecialized distribution for security and forensic testing. Its simple interface and array of tools makes it suitable for the home user who wants to check the security of their router'sfirewall, as well as the seasoned professional hacker who has been hired todiscover weaknesses in their client's computer system. At the end of August, the BlackArch team announced the release of version2016.08.31.
BlackArch is designed specifically forpenetration testing or, more colloquially, 'pen testing'. This involvesusing various tools to access a system by exploiting securityholes.'Pen testing', like the term 'hacking', is often misunderstoodto mean criminals trying to access unauthorized information.But competent system and network administrators routinely carry out pentests on their own systems to ensure they are safe to use, either by usinga distribution like BlackArch or by authorizing a security professional to dothe same. BlackArch also contains tools that go beyond simple pen-testing,including some to thwart forensic analysis or to exploit compromised systems.The distribution was initially created for the developers' own usebut now is available to the public.
When it comes to pen-testing distributions, comparisons to other moreestablished players, such as Kali or BackBox, are inevitable. But thesheer range of tools (1,532 at the time of writing) as well as the carethat has gone into choosing them makes for a very favorable comparison.
According to DistroWatch,there have been three stable releases of BlackArch since 2014, released onroughly an annual basis. BlackArch is based on Arch Linux, which follows arolling release model. This means that if BlackArch is installed on top of Arch itself,then running a system update via the package manager pacman isall that's required to get security and other updates from Arch.For tools that are not packaged for Arch directly, the system can beupdated using the BlackArchrepository in pacman to pick up the latest security and other updates that have been released by the team.Alternatively, users can download newversions of BlackArch whenever an ISO image is released. As BlackArch isbased on Arch Linux it uses the Arch User Repository (AUR), so it cantake advantage of those unofficial, user-contributed packages as well.
BlackArch was initially founded by Evan Teitelman, also known as 'paraxor', who continues to develop it along with a team of developers andcontributors. It boasts a number of download mirrors, most recentlyincluding Princeton University. Although the default language and keyboardlayout is US English, its user base is multinational and the BlackArch Guide has beentranslated into French, Turkish, and Brazilian Portuguese.
BlackArch 2016.08.31 is based on the 4.7.1 kernel and comeswith an updated installer as well as a number of additional tools. Toolsare arranged logically according to category, such as DoS (Denial ofService), backdoor, networking, and much more. These can all be installedat once, in groups, or individually.
Tools
By default, BlackArch contains many of the most well-known securitytools. This includes Nmap — a toolused for network discovery and security auditing. The program scans thenetwork to determine which hosts and services are available, as well aswhich OS they are running.
The Aircrack-ng suite ispreinstalled — along with Airoscript-ngand gerix-wifi-cracker, which act as GUIs for the Aircrack-ng. The tools are capable of both 'sniffing'and creating packets to inject into a network in order to crackWEP/WPA wireless network keys. Another bundled application is Kismet — along with Kismon which is a GUI for it. Kismet is a network detector and packet sniffersimilar to Aircrack-ng that works entirely passively. This allows Kismet todetect not only rogue wireless access points but even to analyze packets todetect wireless sniffing programs or network attacks.
No pen-testing distribution would be complete without Wireshark. The self-proclaimed'foremost network protocol analyzer' is capable of deep inspection of anumber of network protocols. It can also capture data packets live foroffline analysis and displays the results in a color-coded GUI.
Another vital bundled tool is the Metasploit Framework.The program ispart of the Metasploit project, which exists to provide information aboutsecurity vulnerabilities, or in its own words:'Knowing the adversary's moves helps you better prepare yourdefenses.' The main purpose of the tool is to develop and execute exploit code on a targetsystem. BlackArch comes with the free version of Burp Suite, which is an integratedplatform for performing security testing of web applications. It does this usingvarious tools such as an intercepting proxy that allows an admin to inspectand modify traffic between browsers and target applications.
Another well-known security tool that comes with BlackArch is John the Ripper, along with itsGUI Johnny. This toolcan autodetect password hashes and crack them. One attack mode it uses is adictionary attack that works in conjunction with wordlists to encrypt commonpasswords as well as words from a dictionary, then compare them to thepassword hash on a target system.In addition, there's a 'brute force' mode whereby the program simply tries everycombination of password, although this can potentially take years. Theversion bundled with BlackArch is free. There is a Pro version that supportsmore hashes.
The latest version of BlackArch includes over 100 new tools. Theseinclude anti-XSS, across-site scripting (XSS) vulnerability scanner that doesn't seem to beinstalled by default in Kali (although Kali has XSSer). BlackArch also now includes Scamper — ahandy tool for probing the internet to analyze its topology andperformance. Another bundled favorite is BoNeSi — a tool to simulatebotnet traffic in a test-bed environment. Another BlackArch-specific tool —introduced in 2014 — is netcon.sh, which is designedto establish network connections with the option to spoof MAC addresses,hostnames, peerIDs for BitTorrent, and so on.
Despite the vast collection of tools, care seems to have gone into thosethat are selected, with an emphasis on any that automate commonpen-testing tasks. One example is Medusa, a massivelyparallel login brute-force attacker for networks that comes pre-installed in thefull ISO.
The 'anti-forensics' category is particularly worthy ofmention. Anti-forensics is a broad term for tools and techniques to counterforensic analysis of computers. In this vein, BlackArch includes the nowdefunct TrueCrypt as wellas its more modern successor, VeraCrypt, both of which can beused to create encrypted file containers or partitions for sensitivedata. The forensic tools aesfix and aeskeyfind are included to allow scanningof memory dumps for encryption keys as part of a 'cold bootattack'. Provided an adversary can get to the target device in time toperform a memory dump, the attack can be used to retrieve passwords anddecrypt sensitive data.
Devices or partitions encrypted by TrueCrypt or VeraCrypt have plausibledeniability in that it's difficult to determine the difference betweenencrypted and random data. Encrypted file containers can potentially bedetected quickly by TrID,which identifies files based on their binary signatures. TrueCrypt andVeraCrypt containers appear as blocks of random data with no file header.Naturally, the fact that a file has no header and containsonly seemingly random data is not absolute proof that it containsencrypted information. However, there are few plausible reasons to haveblocks of purely random information on a device. TrID will easily locateall such files, to allow for further analysis.Once they are located, the tool thc-keyfinder [SafeBrowsing alert] can beused to measure the entropy (randomness) of a file to determine if it mightcontain encrypted data.
One of the more terrifying backdoor tools that is included is Backdoorme, which is similar to Joshua Pitt's The BackdoorFactory that is part of the Kali tool set. Backdoorme automatesinserting key-loggers and creating new users. The software requires anactive SSH connection for the time being. The Backdoor Factory is also installed and, unlike backdoorme, can be used to patchwin32/64 binaries with shell code.
A full list of the tools is available from the BlackArchwebsite. Alternatively, you can install all available tools from theBlackArch repository by using pacman.
Installation options
Like Kali, BlackArch is available as ISOs for 32-bit or 64-bit systems,though they are 4.3GB and 4.2GB in size, respectively. They weigh rather heavilyagainst Kali's 2.6GB ISO. BlackArch redeems itself here, however, with a minimalnetinstall ISO of around 400MB.
Attempting to boot in a virtual machine with both ISOs was successful,but it may be necessary to set the boot flag edd=off to ensure the'Probing EDD' message doesn't display for several minutes prior to the OSloading.
For Arch users, BlackArch can be installed on top of the existingsystem. One way to do this is by executing the strap.sh Bashscript asroot, which will add BlackArch as an unofficial user repository along withits corresponding keyring. A full version of this script is available forreview on GitHub.
You can then install all BlackArch tools with a simple terminalcommand. BlackArch's issue tracker on GitHub has noted that sometimesrunning strap.sh results in an error involving aninvalid keyring signature. A full discussion of the issue and a possibleresolution can be found on the issue trackeritself.
Alternatively, you can retrieve the PKGBUILDs (build scripts)from GitHub and build the blackarch packages from source using theblackman packagemanager. More information on both install methods is available on the BlackArchdownloads page.
Unlike Kali, BlackArch has yet to release ARMimages with BlackArch pre-installed. Nevertheless, BlackArch supports all theARMv6 and ARMv7 platforms listed on the Arch Linux ARMwebsite including the Raspberry Pi. In order to install BlackArch on an ARM platform, follow the installinstructions for your device on archlinuxarm.org.
For those unready to commit fully to the command line, BlackArch Version2016.08.31 also comes with new menu entries for the various window managersavailable such as awesome, Fluxbox, Openbox, and spectrwm. Thedefault is Fluxbox.
While on the subject of window managers, those used to the relativelylush GUI of Kali or BackBox Linux may find BlackArch to be ratherspartan. The emphasis seems to be on listing as many tools as it can, asclearly as possible. BlackArch nevertheless has its own wallpaper and logos, namely astylized sword running through a red Arch logo.
The team of volunteers behind BlackArch is keen to pointout on the home page that the OS isrelatively new when compared to other pen-testing distributions. Theyrequest that bugs be reported through the issue tracker on GitHub.
The team also asks that anyone with comments stop by the official BlackArch IRC channel [IRC]or follow BlackArch onTwitter.. BlackArch's IRC channel is particularly useful as the teamhas a handy bot that notifies the channel of Git commits and packageupdates/additions. Although a placeholder page exists,BlackArch doesn't have its own wiki at the time of writing. Any developersor translators interested in contributing should follow the steps in the BlackArchGuide before forking the repository.
Given the extremely simplified GUI and the veritable Swiss Army knife ofpre-installed tools for those willing to download the hefty ISO, theoverall impression of BlackArch is that it's a distribution that appeals more to the white-hat hacker than to the casualpen-tester. This said, the toolshave clearly been well-considered and are neatly categorized. Anyonefamiliar with other pen-testing distributions should be able tonavigate BlackArch in minutes. GUIs for popular programs as well as achoice of window managers make sure that this OS isn't only for loversof the command line. The only slight criticism would be the fact that ARMimages are still not available at the time of writing, which make settingup such a system abit more tedious than for Kali.| Index entries for this article | |
|---|---|
| Security | Distributions |
| GuestArticles | Drake, Nate |
(Log in to post comments)
| 5.15 LXQt | 32 bit (i686 non-pae) | 64 bit (x86_64/amd64) |
| SourceForge | ISO image | ISO image |
| OSDN | ISO image | ISO image |
| Bittorrent file | Torrent | Torrent |
| Package List | PackageList.txt | PackageList.txt |
| md5/sha sums | AllSums.txt | AllSums.txt |
| Signature | Signature | Signature |
| ISO size | 1.32 GB | 1.37 GB |
| 5.15 Xfce | 32 bit (i686 non-pae) | 64 bit (x86_64/amd64) |
| SourceForge | ISO image | ISO image |
| OSDN | ISO image | ISO image |
| Bittorrent file | Torrent | Torrent |
| Package List | PackageList.txt | PackageList.txt |
| md5/sha sums | AllSums.txt | AllSums.txt |
| Signature | Signature | Signature |
| ISO size | 1.25 GB | 1.25 GB |
| 5.15 MinimalGUI | 32 bit (i686 non-pae) | 64 bit (x86_64/amd64) |
| SourceForge | ISO image | ISO image |
| OSDN | ISO image | ISO image |
| Bittorrent file | Torrent | Torrent |
| Package List | PackageList.txt | PackageList.txt |
| md5/sha sums | AllSums.txt | AllSums.txt |
| Signature | Signature | Signature |
| ISO size | 946 MB | 962 MB |
Blackarch Linux 32 Bit Download
| 5.15 MinimalCLI | 32 bit (i686 non-pae) | 64 bit (x86_64/amd64) |
| SourceForge | ISO image | ISO image |
| OSDN | ISO image | ISO image |
| Bittorrent file | Torrent | Torrent |
| Package List | PackageList.txt | PackageList.txt |
| md5/sha sums | AllSums.txt | AllSums.txt |
| Signature | Signature | Signature |
| ISO size | 555 MB | 552 MB |
Blackarch Linux 32 Bit Iso Download
| 5.15 ARMHF | Openbox | CLI (text mode) |
| SourceForge | IMG.ZIP image | IMG.ZIP image |
| OSDN | IMG.ZIP image | IMG.ZIP image |
| BitTorrent file | Torrent | Torrent |
| Package List | PackageList | PackageList |
| md5/sha sums | AllSums.txt | AllSums.txt |
| Signature | Signature | Signature |
| IMG.ZIP size | 935 MB | 461 MB |