7MS #586: DIY Pentest Dropbox Tips – Part 8
1 min read

7MS #586: DIY Pentest Dropbox Tips – Part 8

Today, sadly, might be the last episode of DIY pentest dropbox tips for a while because I found (well, ChatGPT did actually) the missing link to 100% automate a Kali Linux install! Check episode #449 for more info on building your Kali preseed file, but essentially the last line in my file runs a kali.sh script to download/install all the pentest tools I want. The "missing link" part is I figured out how to get Kali to reboot and then run a script one time to complete all the post-install stuff. So at the bottom of my kali.sh is this:

sudo wget https://somesite/kali-docker.sh -O /opt/kali-docker.sh
sudo chmod +x /opt/kali-docker.sh
sudo touch /flag
sudo wget https://somesite/docker.service -O /etc/systemd/system/mydocker.service
sudo systemctl daemon-reload
sudo systemctl enable mydocker.service

The contents of docker.service are:

Description=Docker install



The beginning and end snippets of kali-docker.sh are:



if [ -e "$flag_file" ]; then

# get bbot
sudo docker run -it blacklanternsecurity/bbot:stable --help

# Do a bunch of other install things...

<snip snip...and now paste the end of the file>

rm "$flag_file"

	echo "Script already ran before.  Exiting"

So essentially the work flow is: kali.sh runs, downloads and installs kali-docker.sh, and also installs a service that runs kali-docker.sh on each reboot. But when kali-docker.sh runs, it checks for the presence of a file called /flag. If /flag exists, all the post-install commands will run. If it does not exist, those commands won't run. Simple, yet genius I think!