The repository includes a recipe file to build a Linux OSINT Distribution for Trace Labs based on the Kali Linux live-build-config (https://gitlab.com/kalilinux/build-scripts/live-build-config/-/tree/master).
The following changes have been made to the default Kali git repo:
- Creation of a folder for Tracelabs under the
kali-config/variant-tracelabs/package-lists/kali-list.chrootpath. Thekali-list.chrootcan be modified to add additional packages or remove pre-configured packages that are required as part of the build process. - Creation of the
kali-config/common/hooks/normal/osint-packages.chrootfile to include the installation steps for all the git repositories that have been included in the build, and do not already have a package. Theosint-packages.chrootfile can be modified to add additional git repositories or remove pre-configured git repositories that are required as part of the build process. Please add any pre-requisite packages to thekali-live/kali-config/variant-tracelabs/package-lists/kali-list.chrootfile. - Creation of the following folders under the directory
kali-config/common/includes.chroot/usr/share/applications: linked to the menu for applicationsbackgrounds: default Tracelabs backgrounddesktop-directories: desktop directories with toolsfirefox-esr/distribution: default Firefox policy
This build has only been tested on a pre-existing Kali environment, as recommended by Offensive Security.
sudo bash build_tracelabsiso_recipe.sh
If the build process is successful, a .iso file will be created in the /opt/live-build-config/images directory. The .iso file can be used for live boot or to install the Virtual Machine. The .iso file can also be converted to a .ova file using the ovftool as outlined in the "Converting to an OVA" page (https://www.kali.org/docs/virtualization/converting-to-ova/).
We have set up Version 1.0 of this build in an OVA for you to easily try out. To get started, download the OVA file via the link below and run it in your choice of VM software (ie. VMware Workstation, Virtualbox etc.). The default credentials to log in to the TL OSINT VM are kali:kali
http://download.tracelabs.org/TL-OSINT-2020.1.ova
SHA256 Hash: 96AD609A0737BD1A28E1079B6B0B5CADFF2380D481B6932EF643B3BB12EB67AE
Android Apps
- Anbox
Browsers
- Chromium Web Browser
- Firefox ESR
- Tor Browser
Data Analysis
- DumpsterDiver
- Exifprobe
- Exifscan
- Stegosuite
Domains
- Sublist3r
Downloaders
- Browse Mirrored Websites
- Metagoofil
- Spiderpig
- WebHTTrack Website Copier
- Youtube-DL
- Buster
- Infoga
- OSINT-Search
- theHarvester
Frameworks
- Little Brother
- sn0int
- Spiderfoot
- Maltego
Phone Numbers
- OSINT-Search
- PhoneInfoga
Social Media
- FBI
- Instaloader
- Twint
Usernames
- Sherlock
Other tools (not listed in the menu)
- checkdmarc
- Photon
- Carbon14
- Sherlock
- skiptracer
- h8mail
- Shodan
- Wireshark
Firefox
- Delete cookies/history on shutdown
- Block geo tracking
- Block mic/camera detection
- Block Firefox tracking
- Preload OSINT Bookmarks