BlackArch Linux A Pentesting Linux Distribution
Table of Contents
When it comes to penetration testing, the best way to go is Linux. Distros like Kali and Parrot are quite popular. Today we’re going to look at another awesome penetration testing distro known as Blackarch.
Blackarch Linux is an Arch Linux-based penetration testing distribution for penetration testers and security researchers. The Blackarch comes with a tool repository that contains over 1800 tools with new ones being added quite frequently. Let us take a brief look at this Linux distro.
Download & Install BlackArch
Installing on top of ArchLinux
BlackArch is compatible with normal Arch installations. It acts as an unofficial user repository available for installing on top of ArchLinux. Just run strap.sh as root and run the following commands –
curl -O https :// blackarch .org/ strap .sh sha1sum strap .sh # should match : 86 eb4efb68918dbfdd1e22862a48fda20a8145ff sudo ./ strap .sh sudo pacman -Syyu
Then you can go ahead and install the packages you want atop of your Arch setup.
For fresh installation from ISO
BlackArch is constantly being updated and offers the latest package on Github. The BlackArch team release quarterly a new ISO containing all the packages up to date. You must first get the right ISO on the blackarch iso page and install it following the instruction of the script installer. There is also an official version of Blackarch which is available to use for VirtualBox, VMware, and Qemu! If you want to install BlackArch using VirtualBox, make sure to choose the right ISO. Check if your hardware supports virtualization. If so enable it in your UEFI/BIOS settings. If not, you must use the 32 bit ISO.
After burning the iso onto a USB or DVD and you are ready for the installation. When you boot to the image it should display something similar to the screenshot above. Select your architecture and press enter.
Live ISO login screen with various desktop environments. The default BlackArch Linux credentials are –
Login: root
Password: blackarch
Blackarch with the awesome desktop You have 3 main options of installing Blackarch depending on the ISO you downloaded.
- If you go with the netinstall iso, you will need to install it from the repository using pacman. This option requires you have an internet connection as it will fetch the required packages from the official arch and blackarch repositories.
- If you download the live ISO, the second option will let you install offline from the live ISO. You will need an internet connection only after the installation has finished and you are in the desktop environment to update the system.
- The third option for advanced users will require you to get the source code and then compile from source using blackman.
(Note that all of these options are available even with the live ISO)
To start the installation process on the live ISO, run the following commands –
sudo pacman -S blackarch - installer sudo blackarch - install
Blackarch developers provide a tutorial to show the process step by step at Blackarch installation. If you encounter any problem and need help, the best place to ask is on the Blackarch IRC channel.
BlackArch Linux Features At A Glance
Blackarch focuses on penetration testing and as I mentioned earlier, it currently contains over 1800 tools. Here are some of the Blackarch features :
1. A live ISO with multiple window managers
Blackarch stays out of the way to allow users get to their jobs without any distractions. Just look at the choice of desktop environments that the live ISO comes with including dwm, Fluxbox, Openbox, Awesome, wmii, i3, and Spectrwm.
Blackarch with the fluxbox desktop
Blackarch with the openbox desktop
Blackarch with the spectrwm desktop
2. Support for multiple architectures
In the beginning, there was support for only i686 and x86_64 based architectures in 2014. Within 3 months, support for armv6h and armv7h was added with over 600 tools.
3. An installer with the ability to build from source
This is not a recommended option for beginners, instead of fetching the prebuilt package from a repository as pacman does, this will get the source code and compile from source. It’s similar to emerge available on a Gentoo system but blackman is not as featured.
4. Over 1800 tools
Blackarch now contains over 1800 tools for i686 and x86_64 and over 1000 tools for armv6h and armv7h. This is quite impressive considering that a few years ago when the project was begun, there were about 600 tools available for users. The tools are organized in over 40 different groups. Examples of these groups are –blackarch-anti-forensic – Packages that are used for countering forensic activities, including encryption, steganography, and anything that modifies files/file attributes.
blackarch-automation – Packages that are used for tool or workflow automation.
Blackarch-decompiler – Packages that attempt to reverse a compiled program into the source code.
Blackarch-defensive – Packages that are used to protect a user from malware and attacks from other users.
Blackarch-dos – Packages that use DoS (Denial of Service) attacks.
Blackarch-mobile – Packages that manipulate mobile platforms.
Blackarch-networking – Package that involves IP networking.
And many more…
5. Install package individually or in groups
Blackarch allows you to install tools individually or in groups with the modular package feature. To list all of the available tools, run –
pacman -Sgg | grep blackarch | cut -d’ ’ -f2 | sort -u
To see the blackarch categories, run –
pacman -Sg | grep blackarch
Some of the available groups include
To install a category of tools, run –
pacman -S blackarch -< category >
Conclusion
BlackArch is a penetration testing distro that Arch lovers will love. It allows you the freedom to setup your workstation just the way you would want. Note that BlackArch is a relatively new project and has a long way to go. The developers/contributors of BlackArch Linux are volunteers and their work is for free on their free time. It began with just over 600 tools and now has over 1800 for i686 and x86_64 and over 1000 tools for armv6h and armv7h and it is being updated at a pretty fast rate. It is always good to have options and Blackarch is worth looking at. Share your thoughts and comments with us on Blackarch penetration testing distro in the comment section below. Thanks for reading.
LinuxAndUbuntu Newsletter
Join the newsletter to receive the latest updates in your inbox.