From c96f840671a01a94cae9ffb3760a4d59e157f3bc Mon Sep 17 00:00:00 2001 From: Dewalt-arch <59529711+Dewalt-arch@users.noreply.github.com> Date: Sat, 26 Sep 2020 09:37:23 -0500 Subject: [PATCH] Add files via upload --- pimpmykali.sh | 322 ++++++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 322 insertions(+) create mode 100644 pimpmykali.sh diff --git a/pimpmykali.sh b/pimpmykali.sh new file mode 100644 index 0000000..0c55e5e --- /dev/null +++ b/pimpmykali.sh @@ -0,0 +1,322 @@ +#!/bin/bash +# +# pimpmykali.sh +# Author: Dewalt +# +# Usage: sudo ./pimpmykali.sh ( defaults to the menu system ) command line arguements are valid, only catching 1 arguement +# +# Revision 0.3: +# - Added checks for already installed installations, added --force command ( --force will run all fixes/reinstalls ) +# - fix_impacket : added both .py and .pyc files to impacket removal array +# - added on screen notification of files being removed by the array +# - fix_missing : has been reworked new vars check section force type +# - added fix_section : fix_section is the workhorse for fix_missing +# +# - 09.25.2020 - OffSec has removed python-pip from the kali repo +# - reworked python-pip installation to its own function python-pip-curl and installs python-pip via curl +# +# Revision 0.2: +# - Added colorized notifications, help system, command line arguements, case based menu system +# +# - valid command line arguements are: help, all, go, grub, impacket, missing, menu, smb, grub, root +# +# - anything other than --all or -all or all , will only run that function and then exit. +# +# - command line arguements can be used with -- or - or just the word itself to try can catch for all possible cases +# example command line var: --help or -help or help will catch help and works for all valid command line arguements +# anything other the command line arugement catch exits and displays help +# +# Standard Disclaimer: Author assumes no liability for any damange +# + + greenplus='\e[1;33m[++]\e[0m' + greenminus='\e[1;33m[--]\e[0m' + redminus='\e[1;31m[--]\e[0m' + redexclaim='\e[1;31m[!!]\e[0m' + redstar='\e[1;31m[**]\e[0m' + blinkexclaim='\e[1;31m[\e[5;31m!!\e[0m\e[1;31m]\e[0m' + force=0 + check="" + section="" + type="" + +check_distro() { + distro=$(uname -a | grep -i -c "kali") # CHANGE THIS + + if [ $distro -ne 1 ] + then echo -e "\n $blinkexclaim Sorry I only work on Kali Linux $blinkexclaim \n"; exit # false + fi + } + +check_for_root () { + if [ "$EUID" -ne 0 ] + then echo -e "\n\n Script must be run with sudo ./pimpmykali.sh or as root \n" + exit + fi + } + +fix_section () { + echo $section force=$force type=$type check=$check + if [ $check -ne 0 ] && [ $force -ne 0 ] + then + echo -e "\n $redstar Reinstallation : $section" + apt -y reinstall $section + else + if [ $check -ne 1 ] && [ $force -ne 1 ] + then + apt -y $type $section + echo -e "\n $greenplus $section $type" + else + echo -e "\n $greenminus $section already installed" + fi + echo -e " use --force to force reinstall" + section="" + check="" + type="" + fi + } + +fix_missing () { + apt -y update && apt -y autoremove + apt -y remove kali-undercover 2> /dev/null + echo -e "\n $greenplus apt updated " + + # section= must be exact name of package in kali repo ( apt-cache search itemname ) + # check= custom check for that particular item + # type= install or remove + # force= to override force / set force var + # fix_section $section $check $force + + #section="kali-undercover" + #check=$(whereis kali-undercover | grep -i -c "kali-undercover: /usr/bin/kali-undercover") + #type="remove" + #fix_section $section $check $type $force + + section="python3-pip" + check=$(python3 -m pip --version | grep -i -c "/usr/lib/python3/dist-packages/pip") + type="install" + fix_section $section $check $type $force + + section="seclists" + check=$(whereis seclists | grep -i -c "seclists: /usr/bin/seclists /usr/share/seclists") + type="install" + fix_section $section $check $type $force + + section="locate" + check=$(whereis locate | grep -i -c "locate: /usr/bin/locate") + type="install" + fix_section $section $check $type $force + + section="golang" + check=$(go version | grep -i -c "go version") + type="install" + fix_section $section $check $type $force + + # 09.25.2020 - python-pip was removed from the kali repo and curl is the only method to install at this time + python-pip-curl + } + +make_rootgreatagain () { + echo -e "\n Do you want to enable root login in kali?" + read -n1 -p " Please type Y or N : " userinput + case $userinput in + y|Y) enable_rootlogin ;; + n|N) echo -e "\n $redexclaim skipping root login setup" ;; + *) echo -e "\n invalid key try again Y or N"; make_rootgreatagain ;; + esac + } + +enable_rootlogin () { + section="kali-root-login" + check=$(whereis kali-root-login | grep -i -c "kali-root-login: /usr/share/kali-root-login") + $type="install" + fix_section $section $check $type $force + echo -e "\n\nEnabling Root Login Give root a password" + passwd root + echo -e "\n $greenplus root login enabled \n" + } + +fix_smbconf () { + check_min=$(cat /etc/samba/smb.conf | grep -c -i "client min protocol") + check_max=$(cat /etc/samba/smb.conf | grep -c -i "client max protocol") + if [ $check_min -ne 0 ] && [ $check_max -ne 0 ] + then + echo -e "\n $redminus client min protocol is already set not changing\n $redminus client max protocol is already set not changing\n\n" + else + cat /etc/samba/smb.conf | sed 's/\[global\]/\[global\]\n client min protocol = CORE\n client max protocol = SMB3\n''/' > /tmp/fix_smbconf.tmp + cat /tmp/fix_smbconf.tmp > /etc/samba/smb.conf + rm -f /tmp/fix_smbconf.tmp + echo -e "\n $greenplus /etc/samba/smb.conf updated" + fi + } + +python-pip-curl () { + check_pip=$(pip --version | grep -i -c "/usr/local/lib/python2.7/dist-packages/pip") + if [ $check_pip -ne 1 ] + then + curl https://bootstrap.pypa.io/get-pip.py -o /tmp/get-pip.py + python /tmp/get-pip.py + rm -f /tmp/get-pip.py + echo -e "\n $greenplus python-pip installed" + else + echo -e "\n $greenminus python-pip already installed" + fi + } + +fix_impacket () { + apt -y remove impacket + apt -y install python3-pip + # python-pip has been removed from the kali repos + python-pip-curl + + arr=('addcomputer.py' 'atexec.py' 'dcomexec.py' 'dpapi.py' 'esentutl.py' 'findDelegation.py' 'GetADUsers.py' 'getArch.py' 'GetNPUsers.py' + 'getPac.py' 'getST.py' 'getTGT.py' 'GetUserSPNs.py' 'goldenPac.py' 'karmaSMB.py' 'kintercept.py' 'lookupsid.py' 'mimikatz.py' 'mqtt_check.py' 'mssqlclient.py' 'mssqlinstance.py' 'netview.py' 'nmapAnswerMachine.py' 'ntfs-read.py' 'ntlmrelayx.py' 'ping6.py' 'ping.py' 'psexec.py' 'raiseChild.py' 'rdp_check.py' 'registry-read.py' 'reg.py' 'rpcdump.py' 'rpcmap.py' 'sambaPipe.py' 'samrdump.py' 'secretsdump.py' 'services.py' 'smbclient.py' 'smbexec.py' 'smbrelayx.py' 'smbserver.py' 'sniffer.py' 'sniff.py' 'split.py' 'ticketConverter.py' 'ticketer.py' 'wmiexec.py' 'wmipersist.py' 'wmiquery.py' 'addcomputer.pyc' 'atexec.pyc' 'dcomexec.pyc' 'dpapi.pyc' 'esentutl.pyc' 'findDelegation.pyc' 'GetADUsers.pyc' 'getArch.pyc' 'GetNPUsers.pyc' 'getPac.pyc' 'getST.pyc' 'getTGT.pyc' 'GetUserSPNs.pyc' 'goldenPac.pyc' 'karmaSMB.pyc' 'kintercept.pyc' 'lookupsid.pyc' 'mimikatz.pyc' 'mqtt_check.pyc' 'mssqlclient.pyc' 'mssqlinstance.pyc' 'netview.pyc' 'nmapAnswerMachine.pyc' 'ntfs-read.pyc' 'ntlmrelayx.pyc' 'ping6.pyc' 'ping.pyc' 'psexec.pyc' 'raiseChild.pyc' 'rdp_check.pyc' 'registry-read.pyc' 'reg.pyc' 'rpcdump.pyc' 'rpcmap.pyc' 'sambaPipe.pyc' 'samrdump.pyc' 'secretsdump.pyc' 'services.pyc' 'smbclient.pyc' 'smbexec.pyc' 'smbrelayx.pyc' 'smbserver.pyc' 'sniffer.pyc' 'sniff.pyc' 'split.pyc' 'ticketConverter.pyc' 'ticketer.pyc' 'wmiexec.pyc' 'wmipersist.pyc' 'wmiquery.pyc' ) + + for impacket_file in ${arr[@]}; do + rm -f /usr/bin/$impacket_file + rm -f /usr/local/bin/$impacket_file + echo -e "\n $greenplus $impacket_file removed " + done + + wget https://github.com/SecureAuthCorp/impacket/releases/download/impacket_0_9_19/impacket-0.9.19.tar.gz -O /tmp/impacket-0.9.19.tar.gz + tar xfz /tmp/impacket-0.9.19.tar.gz -C /opt + cd /opt/impacket-0.9.19 + pip install wheel + pip install . + rm /tmp/impacket-0.9.19.tar.gz + echo -e "\n $greenplus python-pip python3-pip wheel impacket installed" + } + +fix_golang () { + section="golang" + check=$(go version | grep -i -c "go version") + + if [ $force -ne 0 ] + then + type="install" + else + type="reinstall" + fi + + fix_section $section $check $type $force + } + +fix_grub () { + check_grub=$(cat /etc/default/grub | grep -i -c "GRUB_CMDLINE_LINUX_DEFAULT=\"quiet\"" ) + if [ $check_grub -ne 1 ] + then + echo -e "\n $redexclaim Error: /etc/default/grub is not the default config - not changing" + else + cat /etc/default/grub | sed 's/GRUB_CMDLINE_LINUX_DEFAULT="quiet"/GRUB_CMDLINE_LINUX_DEFAULT="quiet mitigations=off"/' > /tmp/fix_grub.tmp + cat /tmp/fix_grub.tmp > /etc/default/grub + rm -f /tmp/fix_grub.tmp + update-grub + echo -e "\n $greenplus Added mitigations=off to GRUB_CMDLINE_LINUX_DEFAULT" + echo -e "\n $redexclaim Reboot for changes to take effect \n" + fi + } + +bashrc_update () { + check_bashrc_vpnip=$(cat $HOME/.bashrc | grep -i -c "vpnip=") + if [ $check_bashrc_vpnip -ne 1 ] + then + echo -e "\nalias vpnip='ifconfig tun0 | grep -m1 inet | awk '\''{print(\$2)}'\'''" + echo -e "\n $greenplus added vpnip alias to $HOME/.bashrc" + else + echo -e "\n vpnip= found in .bashrc - not updating" + fi + + check_bashrc_ex=$(cat $HOME/.bashrc | grep -i -c "ex ()") + if [ $check_bashrc_ex -ne 1 ] + then + echo -e "\nex ()\n{\n if [ -f \$1 ] ; then \n case \$1 in \n *.tar.bz2) tar xjf \$1 ;; "\ + "\n *.tar.gz) tar xzf \$1 ;;\n *.tar.xz) tar xJf \$1 ;;\n *.bz2) bunzip2 \$1 ;;"\ + "\n *.rar) unrar x \$1 ;;\n *.gz) gunzip \$1 ;;\n *.tar) tar xf \$1 ;;"\ + "\n *.tbz2) tar xjf \$1 ;;\n *.tgz) tar xzf \$1 ;;\n *.zip) unzip \$1 ;;"\ + "\n *.Z) uncompress \$1;;\n *.7z) 7z x \$1 ;;\n *) echo \"'\$1' cannot be extracted via ex()\" ;;"\ + "\n esac\n else\n echo \"'\$1' is not a valid file\"\n fi\n }\n" + echo -e "\n $greenplus Added ex () function to $HOME/.bashrc" + else + echo -e "\n $redminus ex () function found in .bashrc - not updating" + fi + # Still debating this section + # add this!!! export PATH=$PATH:/sbin:/usr/sbin + # ADD THESE ALIASES WEBSRV PORTNUMER AND KILLVPN + # alias websrv='python3 -m http.server $1' + # alias killvpn='killall -9 openvpn' + +} + +fix_all () { + fix_missing $force + fix_smbconf + fix_impacket + fix_golang $force + make_rootgreatagain + fix_grub + } + + +asciiart=$(base64 -d <<< "H4sIAAAAAAACA31Pyw3FMAi7ZwofeyoLVN3jSUgswvAFO9FLLyURxMZ8AtDOCHzbS0B5uxE0ZERCz8ngD0t4JjAFnSPqmuEkvAljaxFwTJhSS2CunOrLjXZx46bqV6eyixHUwOxmF6rrGhervhjrXfomOHcxqYJ6EsIPbWcdrPfnxzdzezFubntyD+MBCfqqVnwBAAA=" | gunzip ) + +pimpmykali_menu () { + clear + echo -e "$asciiart\n By Dewalt" + echo -e "\n Select a option from menu: " + echo -e "\n Options 1 thru 6 will only run that function and exit, 0 will run all " + echo -e "\n 1 - Fix Missing (installs python-pip python3-pip seclists)" # fix_missing + echo -e " 2 - Fix /etc/samba/smb.conf (adds the 2 missing lines)" # fix_smbconf + echo -e " 3 - Fix Golang (installs golang)" # fix_golang + echo -e " 4 - Fix Grub (adds mitigations=off)" # fix_grub + echo -e " 5 - Fix Impacket (installs impacket)" # fix_impacket + echo -e " 6 - Enable Root Login (installs kali-root-login)\n" # make_rootgreatagain + echo -e " 0 - Fix ALL (run 1, 2, 3, 4, 5 and 6 ) \n" # fix_all + + read -n1 -p " Make selection or press X to exit: " menuinput + + case $menuinput in + 1) fix_missing ;; + 2) fix_smbconf ;; + 3) fix_golang ;; + 4) fix_grub ;; + 5) fix_impacket ;; + 6) make_rootgreatagain ;; + 0) fix_all ;; + x|X) echo -e "\n\n Exiting pimpmykali.sh - Happy Hacking! \n" ;; + *) pimpmykali_menu ;; + esac + } + +pimpmykali_help () { + # do not edit this echo statement, spacing has been fixed and is correct for display terminal + echo -e "\n valid command line arguements are : \n \n --all run all operations \n"\ + "--smb only run smb.conf fix \n --go only fix golang"\ + "\n --impacket only fix impacket \n --grub only add mitigations=off"\ + "\n --root enable root login \n --missing install missing" \ + "\n --menu its the menu \n --help you are here" + exit + } + +check_arg () { + if [ "$1" == "" ] + then pimpmykali_menu + else + case $1 in + --menu) pimpmykali_menu ;; -menu) pimpmykali_menu ;; menu) pimpmykali_menu ;; + --all) fix_all ;; -all) fix_all ;; all) fix_all ;; + --smb) fix_smbconf ;; -smb) fix_smbconf ;; smb) fix_smbconf ;; + --go) fix_golang ;; -go) fix_golang ;; go) fix_golang ;; + --impacket) fix_impacket ;; -impacket) fix_impacket ;; impacket) fix_impacket ;; + --grub) fix_grub ;; -grub) fix_grub ;; grub) fix_grub ;; + --root) make_rootgreatagain ;; -root) make_rootgreatagain ;; root) make_rootgreatagain ;; + --missing) fix_missing ;; -missing) fix_missing ;; missing) fix_missing ;; + --help) pimpmykali_help ;; -help) pimpmykali_help ;; help) pimpmykali_help ;; + --force) force=1; fix_all ;; -force) force=1; fix_all ;; force) force=1; fix_all ;; + *) pimpmykali_help ; exit 0 ;; + esac +fi +} + +check_for_root +check_distro +check_arg "$1"