Skip to content

Instructions

Kali Linux is an open source Penetration testing platform based on debian. You can access Kali Linux from your web browser and begin to test and secure your environment. GCP Marketplace: Kali Linux Web Desktop

SSH Into the server:

  • Utilize OS-Login OR add ssh keys via security & Access > SSH Keys > ssh-rsa KEY kali
ssh kali@ip-of-server
# OR: If using OS Login
sudo su kali
cd ~

Kali Linux Web Desktop Login:

  • ssh into your server:
sudo cat /home/kali/password.txt
  • Go to your browser - https://ip-of-server:6080/vnc.html
  • Login with your password retrieved in the previous step.
  • Left side tab - Select full screen + see additonal options.
  • Note: By default there is no security tools installed , due to GCP approval policies.
  • Default Toolset:
sudo apt install kali-linux-default
  • Everything Toolset:
sudo apt install kali-linux-everything
  • Note: Avoid installing any of the desktop meta packages as it modifies grub and breaks the system. You already have xfc4 desktop.
  • If you get a Key Error, run the following to fix it . ( Kali Changes keys sometimes )
sudo wget https://archive.kali.org/archive-keyring.gpg -O /usr/share/keyrings/kali-archive-keyring.gpg
  • Note: If your desktop locks when logged into nvnc, you will need to create a kali password:
sudo passwd kali 
  • Optional: Update vnc password:
sudo su kali
cd ~ 
vncpasswd
sudo systemctl daemon-reload 
sudo systemctl restart tigervnc
  • Kali Linux Tools - https://www.kali.org/tools/

Troubleshooting:

  • Make sure you are accessing https://ip-of-server:6080/vnc.html
  • Your password is found in the kali linux home directory:
sudo cat /home/kali/password.txt
  • Newer noNVC introduced some changes. Known bugs:
* Firefox gives an error. can't access property "addEventListener", document.getElementById(...) is null
* Passwords are limited to 8 characters?!?!?
* SOlution: Use Chrome , use 8 character password. 
  • Forgot your password, you can change it. run form terminal:
sudo su kali
cd ~
vncpasswd 
sudo systemctl daemon-reload 
sudo systemctl restart tigervnc
  • If noVNC is not working, run from terminal:
sudo systemctl restart novnc

Security Features:

  • Auditd - https://decyphertek.readthedocs.io/en/latest/technotes/Auditd/
  • OSSEC HIDS - https://decyphertek.readthedocs.io/en/latest/technotes/OSSEC/
  • UFW - https://decyphertek.readthedocs.io/en/latest/technotes/UFW/
  • Rsyslog - https://www.rsyslog.com/doc/index.html
  • Automated Updates - Crontab runs at first boot and at 3am every morning.
  • Security Reports:
# Daily Security report
sudo cat /var/log/decyphertek/security_report*

References:

  • https://www.kali.org/