raspberry pi – Unix Sec Lab

Last week we talked about the kit, how it went together, and the fact that the first boot was to the pi-top polarisOS microSD card included with the kit. Today, I’ll go over a quick rambling of notes on how the second “First Boot” (after it charged) went, and what I poked around looking for in this OS. This post will not include screenshots, but I may try to get a few and do a follow up later in the week that is screenshot heavy.

It is a graphical boot that brings up a LightDM Panel (auto log-in.) This initial Panel is the “pi-topDASHBOARD” and contains the following three sections:

Learn. Play. Create (includes "pi-topCODER" launch and "CEEDuniverse" play buttons)
Quick Launch (includes application icons for common/popular applications.)
Notes (a notepad that can be typed into.)

Along the top of the Panel is a status bar that includes indicators for whether the network is working, battery status, date/time, and a selector for Settings.

Selecting any app from the Quick Launch (or pressing the “Panel” keyboard button) will make this initial panel go away, and present the typical X11 style desktop.

Pressing the “Panel” keyboard button will bring the panel view back.

Since the Battery Status only shows on the Panel bar, this is a good thing to have.

From the typical X11 style desktop view, there are a few apps pinned to the bottom task bar.

Chromium
File Manager (PCManFM)
LXTerminal
CEED Universe
3D Slash
Mathematica
Wolfram

The far right of the status bar includes status icons for the network, volume, and time, as well as an “eject” icon for external media, and a “panel” icon that can be clicked instead of hitting the Panel button on the keyboard.

The primary menu icon is in the lower left corner and the menu includes categories for:

Programming
- BlueJ Java IDE
- Geany
- Greenfoot Java IDE
- Mathematica
- Node-RED
- Python 2 (IDLE) (Bundled with Python 2)
- Python 3 (IDLE) (Bundled with Python 3)
- Scratch
- Scratch 2
- Sense HAT Emulator
- Sonic Pi
- Thonny Python IDE
- Wolfram
Office
- Libre Office (Base, Calc, Draw, Impress, Math, Writer)
Internet
Games
- CEED Universe
- Minecraft Pi
- Python Games
  - flippy (A game like reversi)
  - fourinarow (Get four in a row)
  - gemgem (A tile matching puzzle)
  - inkspill (Flood the screen with pixels)
  - memorypuzzle (Test your memory)
  - pentomino (5 block Tetris)
  - simulate (Repeat the pattern)
  - slidepuzzle (Traditional slide puzzle)
  - squirrel (Eat the smaller squirrels)
  - starpusher (Sokoban)
  - tetromino (Tetris-like game)
  - tetrominoforidiots (Tetris for Idiots)
  - wormy (Snake-like game)
  - website
Accessories
- 3D Slash
- Archiver
- Calculator
- File Manager
- Image Viewer
- PDF Viewer
- SD Card Copier
- Task Manager
- Terminal
- Text Editor
Education
- TurtleArt
System Tools
- Htop

Out of the packages listed above, htop is a “top” replacement that has some enhanced features, CEED Universe is part of the pi-top “CEED” learning software, with online games and such, and the rest are pretty self explanatory (integrated development environments, programming languages, some games, web and email, and an office suite.)

The items of greatest interest to me from poking around with the intent of setting up Kali as the primary OS for this machine are the hardware related packages. I want a battery status indicator, as well as power/terminal launch/panel control buttons to function from the keyboard. In order to take advantage of these things, I took a look at the software repository settings, and found this:

/etc/apt/sources.list:

deb http://mirrordirector.raspbian.org/raspbian/ jessie main contrib non-free rpi # Uncomment line below then 'apt-get update' to enable 'apt-get source' #deb-src http://archive.raspbian.org/raspbian/ jessie main contrib non-free rpi

/etc/apt/sources.list.d/pi-top.list:

deb http://apt.pi-top.com/raspbian/ jessie main

/etc/apt/sources.list.d/raspbian.list:

deb http://archive.raspberrypi.org/debian/ jessie main ui # Uncomment line below then 'apt-get update' to enable 'apt-get source' #deb-src http://archive.raspberrypi.org/debian/ jessie main ui

All of the packages specifically for the pi-top hardware include a “pt-” prefix. Using a mix of dpkg -S, dpkg -L, and apt-cache showpkg I was able to confirm that the pt-* packages are located at the raspbian repositories jessie main. This should make it easy to install them for Kali to take advantage of the special keyboard keys, and maybe get a battery status indicator.

Today, we’ll take a look at the Raspberry Pi. The Raspberry Pi is currently at “Pi 3” but our lab has a Pi 2 model B, which is what we will cover.

The original plan for the Pi was to create a very small and portable attack device, using Kali linux as the OS installation. I mused over what to do about a screen, when I came across another blog post that covered how to set this up with one of the little screens sold by AdaFruit.

Re4son’s blog post gave some initial instructions that I tried to follow, but they didn’t work for me at first. I bought the smaller 2.8″ screen on accident, and the menu size didn’t match. I tried mucking with those settings, but there were SO many menus that needed adjusting, that it just wasn’t worth my time. I bought the bigger 3.5″ screen and tried again. I had a little more success, but the last time I rolled with this, I had issues with the Greenbone setup for Open-VAS. I think it was probably an issue with the version of Kali I was at at the time. I shelved this project, and haven’t picked it back up. I will probably give it a go again, because his blog post has evolved even more since I last followed it.

Now that I have the Nexus 10 with Nethunter on it, this specific project will be a lower priority for a while, though. My use for this until then will focus on using this as one of the target machines, either for configuration management examples, or as an actual vulnerable machine (with configuration issues being the primary vulnerabilities.)

The Pi 2 has a quad core 900Mhz ARM Cortex-7 processor from Broadcom. It includes 1 Gig of RAM, 4 USB 2.0 connectors, an HDMI port, and a 10/100 RJ45 Ethernet socket.

All of the extra USB ports means that this can take several peripherals, including wireless adapter and keyboard. The Pi 3 includes a built in wireless adapter, but the Pi 2 does not. If you are getting a Pi for your lab, it is probably best to pick up whatever the latest model is, ignoring my setup. The Pi 3 came out a few weeks after my last attempt at the Re4son project. The frustration over the poor timing of its release, after dropping money on all new case, screen, and so on is one reason I haven’t touched it in a while.

Once again, if you want to follow along in building a lab similar to mine, here are the components.

The Pi 2 Board I recommend getting whatever is newest, though.

USB to TTL Serial Cable – Debug / Console Cable for Raspberry Pi Just like with the BeagleBone Black, you will probably want to be able to hit the “console” sometimes. This cable is needed for that. Note that the voltage on this is different from the one for the BeagleBone Black. Don’t use the wrong cable with either board.

The Case This case is really nice even when not used with one of the screens. It’s fairly sturdy, and fits around the components snugly. If you are not getting a display, there are other cases that are just as nice, and don’t cost as much. Shop around.

The 3.5″ TFT Display Unless you are planning on doing a specific project that includes such a tiny screen, I recommend holding out for a larger one, instead. Something like this might be better, but it’s pricey.

Samsung EVO 32GB Class 10 Micro SDHC Card These came on sale for ridiculously low prices a few times, so we got them in sets of three or more. Class 10 cards are highly recommended for use with these small Single Board Computing devices.

Tag: raspberry pi

Pi-Top Kali – First Boot PolarisOS

The Lab – Gear Check – The Raspberry Pi