Wednesday, February 22, 2017

Welcome 2017 - WeakerThan LINUX 8 (x86_64)

Hello, and Happy Birthday to me. WeakNet Labs turned 10 years old today. I started up this idea at the end of January of 2007. My goal was to produce software and security theory results, practice, and testing for communications. Back then, my "lab" was a bit "dated", but none-the-less, a happy place. The name "WeakNet" came from how weak my hardware and network was at the time - now it's non-existent to myself and primarily colo or VM. I only added "Labs" after I started getting hardware in the mail from followers of my YouTube and friends at PhoneLosers.org. As the years moved on, so did my hardware, resources and free time. These days, I focus primarily on WeakNet Academy course materials and WeakerThan LINUX releases and updates.

In the last ten years, I consider WNL's best work and accomplishments to be whatever I am currently working on. So, it's a good morale to feel as though it's always moving forward. Also, over the years, by biggest request seems to be for a 64 bit version of WeakerThan LINUX. So I decided to work through and out all of the impediments and kinks in my scripts for constructing the ISOs to support 64 bit Debian LINUX. Here is a working (ALPHA) result teaser with a completely updated UI that I plan on releasing as ALPHA in the near future.
WeakerThan LINUX 8 will be the standard and supported version of the OS and it's UI upon release - which I don't have a date yet for, so stay tuned to my Twitter! Since it's 64bit, I can include cool open source software into the ISO, like Google Chrome and GitHub's Atom editor. (Also, I am ALWAYS taking suggestions and input for included tools via email!) The theme is based off of a new theme that I had made for another side project that I am currently Working on; a security information and event monitor (SIEM) for Apache2 web-based attacks and exploit attempts and analysis called LAAVA Analytics:
This is a mobile-friendly, MVC/JS/WS written web-based application which takes Apache2 log data directly from MySQL and using several JS libraries creates charts, maps, and has a lot of cool functionality built right into it for record keeping, reporting, and monitoring purposes. I even coded and built-in my own resource gathering tool for the Tor check service exhoneraTor.
LAAVA - Log Access And Vulnerability Analysis Tool. There is no release date for this tool. It started out as a proof of concept and then got so involved that it became a project that I wanted to use for a paid service from WeakNet Labs. The details involved in such an endeavor, as one could imagine, are not without requiring a bucket the volume of an ocean. And, it seems, things that are large, cost lots of money. So, taking on this project alone - along with WeakerThan LINUX and WeakNet Academy has made my production a lot slower than usual over the last year or so.

I am also currently writing the sequel to RAIDING the Wireless Empire when I find the time and inspiration. Also, I have a book on Assembly Programming with NASM (X86) from my WeakNet Academy course material that is edited and ready but was stalled from a wicked illness that I endured - probably the worst of my lifetime thus far. In fact, my wife calls 2016 "the year of the sinus infection." So, yeah, welcome 2017. Please be nicer to me that 2016 was!? I just completed the Certified ScrumMaster training and exam, so I plan on breaking all of these projects down by priority and into smaller pieces to work more efficiently on them. Apparently one of the reasons of my slow progress for releases is my inability to multitask! ;)

Anyways, thank you for all the feedback, support and donations over the years.

It's a long and winding road.

~Douglas

Tuesday, August 16, 2016

Weakerthan Linux 7 Update 7


Verion 7.7! This is a big update! In this new Update the following tools are added:

SMBCrunch, HashTag, Miranda-UPNP, DMitry, WOL-E, American Fuzzy Lop, WMI Ops, AD Enumerator, Faraday (Update), EyeWitness, and Egress-Assess


The UI and Debian OS will also be updated as well. Again, to use the WT7-Updater, please check out this post and full tutorial: http://www.weaknetlabs.com/2016/07/wt7-updater-stable.html I have made the process as simple as possible, and after the first run, you can simply run it from the desktop menu!



~Douglas

Monday, July 11, 2016

WT7 Updater Stable

WT7 Updater Tool

The WeakerThan Linux 7 updater tool is now stable. I have even written a script that will download the latest version of the installer tool, install it into the desktop menu, and even run the first update after getting the user's consent. To run the script simply do the following from the command line:

[email protected]:~ # wget https://weaknetlabs.com/linux/update-wt/wt7-update-init.sh
[email protected]:~ # chmod +x wt7-update-init.sh
[email protected]:~ # ./wt7-update-init.sh

WT Update 7.6



This is is the largest tools update I have done thus far (including during ISO development!). Here is a list of some of the tools that get installed:
  • DynamoRIO - https://github.com/DynamoRIO/dynamorio
  • DynStruct - https://github.com/ampotos/dynStruct
  • BURP Suite - https://portswigger.net/burp/
  • ExploitPack - http://exploitpack.com/
  • MimiKittenz - https://github.com/putterpanda/mimikittenz
  • Faraday - https://github.com/lostisland/faraday
  • EvilGrade - https://github.com/infobyte/evilgrade
  • Arachni - https://github.com/Arachni/arachni
  • PWNat - https://github.com/samyk/pwnat
  • Mallory - https://github.com/intrepidusgroup/mallory
  • SSLyze - https://github.com/iSECPartners/sslyze
  • Go lang - https://golang.org/
  • TLS Prober - https://github.com/WestpointLtd/tls_prober
  • MetaGooFil - https://github.com/laramies/metagoofil
  • PWN Tools - https://github.com/Gallopsled/pwntools
  • Pyew - https://github.com/joxeankoret/pyew
  • Mass Scan - https://github.com/robertdavidgraham/masscan

The update also includes an OS (Debian) update, UI tweaks, and all tools in /pwnt/ are updated. The update tool will randomly change your desktop wallpaper, but this is just to show that the update has been applied and is not permanent. If you do anything to X, such as change resolution or restart it, your original wallpaper is returned. One part I really enjoy about development for WT is the art. The screenshot above and the wallpaper that comes with the WT-7.6 update was a (huge) poster image that I made. I have also updated the Thank you app and if you get a chance, check out the theme song I made in the app! It's the self-titled track from my CD "Unsolved Mysteries" :)

If you want anything added to future updates, please send me an email WeakNetLabs~[@]~Gmail and I will do my best to get it added. I want to finish writing Entify-PM the package manager that works with apt for InfoSec tools, and this is a big step in that direction.

~Douglas