Boxed Kali in your Browser
This repository focusses on a dockerized version of Kali that can be accessed over noVnc in your Browser. The main usage for this way is an additional isolation by the containerization approach. Personally I use this container to perform analysis of potential malicious files and penetration tests within the AWS Cloud and Active Directory.
You require:
- Docker
- Browser
- ~10GB of Storage
- At least 4GB of RAM
The following packages are coming pre-installed but can be enhanced by inheriting this image and add the dependencies you need:
- kali-tools-top10
- kali-tools-forensics
- kali-tools-web
- kali-tools-windows-resources
- binutils
- burpsuite
- libproxychains4
- proxychains4
- exploitdb
- bloodhound
- kerberoast
- fail2ban
- whois
- ghidra
- sslscan
- traceroute
- whois
- powershell
- git
- jq
- gobuster
- awscli
- pacu
- roadlib
- roadrecon
- roadtx
- endgame
- trufflehog
- Jupyter Notebook
Directly pull from GitHub and run the container:
docker pull ghcr.io/benjitrapp/boxed-kali:nightly
docker run --rm -it -p 9020:8080 -p 9021:5900 ghcr.io/benjitrapp/boxed-kali:nightly kaliAlternative usage over the Makefile. The Makefile also contains all essential steps to build, run and access the boxed Kali with your browser. You can get a glimpse how it is working here:
Download the GitHub Image using the Makefile
After the successful download open your Browser and navigate to http://localhost:9020/vnc.html to access Kali and haven't override the environment variable VNCPWD the default password is simply password. After the login you should see something similar to this (running Kali 2022.4 at the time of writing this):
Boxed Kali in your Browser
If you want to use a different port, change the password or tweak the noVnc/VNC installation these variables might be valuable for you:
| Name | Default | Semantics |
|---|---|---|
| VNCEXPOSE | 1 | Value 1 exposes VNC else localhost only |
| VNCPWD | password | Default password for entering noVnc |
| VNCDISPLAY | 1920x1080 | Display resolution |
| VNCDEPTH | 16 | Display quality > if more resources available set to 24 |
| VNCPORT | 5900 | Port which exposes the vncserver |
| USER | root | Default user might break (kali) packages |
| NOVNCPORT | 8080 | Port which exposes noVnc |
| DNS_NAMESERVER | 8.8.8.8 | If you require a custom DNS nameserver under /etc/resolv.conf |
Remark: If you change the ports, the makefile wont work anymore
You can simply inherit from my image and install all the stuff that you need:
FROM ghcr.io/benjitrapp/boxed-kali:nightly
# Install a package over apt
RUN apt-get install -y --no-install-recommends --allow-unauthenticated <your kali package>
# Install a python package
RUN pip3 install --break-system-package --no-cache-dir <your python package>
# Install a go package
RUN go get github.com/usr/repo