Configuring remote connectivity services - HTTP, TFTP, and SSH

During penetration testing and auditing, we will be required to deliver payload on target machines from our Kali Linux. For that purpose, we will leverage basic network services such as HTTP, FTP, and SSH. Services such as HTTP and SSH are installed by default in Kali Linux but Kali does not enable any network services to minimize detection.

In this recipe, we will show you how to configure and start running services securely:

Getting ready

For this recipe, you will need a connection to the Internet with a valid IP address.

How to do it...

Perform the following steps for this recipe:

  1. Let's begin with starting an Apache webserver. To start the Apache service, use the following command:
     service apache2 start
    

    You can verify that the service is running by browsing to the localhost using a browser as shown in the following screenshot:

  2. To start the SSH service, SSH keys needs to be generated. Back in Backtrack r5, you used to generate SSH keys using the sshd-generate command, which is not available in Kali Linux. Using default SSH keys is a security risk and therefore a new SSH key should be generated. To generate SSH keys, you can either delete or backup your default keys generated by Kali Linux:
     # cd /etc/ssh
     # mkdir default_kali_keys
     # mv ssh_host_* default_kali_keys/
     # cd /root/
    
  3. First, we need remove run levels for SSH by issuing the following command:
     # update-rc.d -f ssh remove
    
  4. Now we need to load the default SSH run level by issuing the following command:
     # update-rc.d -f ssh defaults
    
  5. Regenerate the keys:
     # dpkg-reconfigure openssh-server 
     Creating SSH2 RSA key; this may take some time ...
     Creating SSH2 DSA key; this may take some time ...
     Creating SSH2 ECDSA key; this may take some time ...
     insserv: warning: current start runlevel(s) (empty) of script `ssh' overrides LSB defaults (2 3 4 5).
     insserv: warning: current stop runlevel(s) (2 3 4 5) of script `ssh' overrides LSB defaults (empty).
    
  6. You can check whether the SSH key hashes are different now:
  7. Start the SSH service using the following command:
     service ssh start
    
  8. You can verify that the service is running using the netstat command:
     netstat - antp | grep ssh
    
  9. Start the FTP server using the following command:
     service pure-ftpd start
    
  10. To verify that the service is running, use the following command:
     netstat -ant | grep ftp
    
  11. To stop any service, you can use the following command:
     service <servicename> stop
    

    Here, <servicename> is the name of service required to terminate:

     service ssh stop
    

How it works...

In this recipe, we have configured and started basic network services, which we will be using to deliver payloads to our victim machines depending on the scenario. We have started HTTP service, FTP service, and we have backed up default SSH keys and generated new SSH keys, and started the SSH service.