While listening to PaulDotCom Security Weekly 114 I "discovered" UNetbootin - Universal Netboot Installer. Paul talked about installing Backtrack 3 on his USB key and how easy UNetbootin was to use. A colleague of mine recently expressed an interest in having Backtrack running on a USB Key so I thought I would take a look.
Installing Backtrack 3
Getting Backtrack installed and ready to boot from usb is so simple using UNetbootin it almost does not require directions. But here they are:
- Goto http://unetbootin.sourceforge.net/
- Click Download (for windows or Linux)
- Insert your USB Key
- Run UNetBootin
- Select BackTrack from the Distribution Download
- The Version populates automatically
- Select the drive that is your USB key (hint: it is probably not C:\)
- Click Okay
- Wait
- Reboot and if USB is a boot option the Backtrack menu should appear
On several PaulDotCom Security Weekly podcasts, Larry referenced and described his key chain. It has some pretty cool things but who needs a key chain when you have a 8 GB Kingston USB key ($19.99 CDN at FutureShop last week). It got me thinking, whether I could get all those things on one device.
First up - Ophcrack
Ophcrack is a free Windows password cracker based on rainbow tables. So, lets get it installed:
- Plug in the USB Key
- Download the ophcrack LiveCD iso from http://ophcrack.sourceforge.net/download.php
- Mount the iso image (mount -o loop ophcrack-xp-livecd-2.0.1.iso /mnt/cdrom)
- Copy the main directory to the USB key (cp -ra /mnt/cdrom/ophcrack /media/usbkey/)
- Copy and rename the boot directory (cp -ra /mnt/cdrom/boot /media/usbkey/bootoph)
- umount /mnt/cdrom
- Edit the syslinux.cfg from Backtrack 3 (vim /media/usbkey/boot/syslinux/syslinux.cfg)
- Comment out any extra Backtrack 3 boot images that you don't plan to use
- Add in the boot section from /media/usbkey/bootoph/ophcrack.cfg like:
LABEL xconf
MENU LABEL Ophcrack Graphic mode
KERNEL /bootoph/vmlinuz
APPEND initrd=/bootoph/initrd.gz ramdisk_size=6666 root=/dev/ram0 rw autoexec=xconf;startx changes=/slax/ - Note that the /boot/ references were changed to /bootoph/
- Reboot
This is a utility to (re)set the password of any user that has a valid (local) account on your Windows NT/2k/XP/Vista etc system. You do not need to know the old password to set a new one.
This is a very small live CD so putting it on its own USB key seems like a waste.
- Download the CD image from http://home.eunet.no/pnordahl/ntpasswd/bootdisk.html
- Unzip the zip the zip file to obtain the cd080802.iso
- mount the iso file (mount -o loop cd080802.iso /mnt/cdrom)
- create a boot directory called bootnpwd on the USB key (mkdir /media/usbkey/bootpwd)
- Copy all files froom the iso to the new directory (cp -ra /mnt/cdrom/* /media/usbkey/bootnpwd)
- umount /mnt/cdrom
- Edit the syslinux.cfg from Backtrack 3 (vim /media/usbkey/boot/syslinux/syslinux.cfg)
- Add in the boot section from /media/usbkey/bootnpwd/syslinux.cfg like:
LABEL bootnwd
MENU LABEL Offline NT Password and Registry Editor
KERNEL /bootnpwd/vmlinuz
APPEND rw vga=1 initrd=/bootnpwd/initrd.cgz,/bootnpwd/scsi.cgz - Note that the /boot/ references were changed to /bootnpwd/
- Reboot
- Add extra RainBow tables for OphCrack
- Add Ubuntu or some other General Purpose Distro
- For Windows users there are a number of utilities to mount an iso image as a drive. Do a Google Search or get a real OS ;-)
- The instructions above are from memory and while I have read it several times to remove obvious errors some may still exist. Leave feedback with corrections but use it has a guide...
