Proxy Configuration

Configure proxy (if applicable) by inputting the required values into /etc/environment. It will probably look something like this:,localhost,


Config apt with proxy (if applicable): touch /etc/apt/apt.conf.d/95proxies

Input the required values into this file. It will probably look something like this:

Acquire::http::proxy "";
Acquire::https::proxy "";
Acquire::ftp::proxy "";

Restart the server : reboot

Welcome back, your proxy should be working now. Celebrate by taking a snapshot.

Install all of the updates

This will get you the latest and greatest:

apt update
apt upgrade -y
apt dist-upgrade -y

Install the VirtualBox Guest Additions:

apt update
apt install -y virtualbox-guest-x11

Install the linux headers:

uname -r
apt install -y linux-headers-*

Take a snapshot.


Install docker

curl -fsSL | sudo apt-key add -
echo 'deb stretch stable' > /etc/apt/sources.list.d/docker.list
sudo apt update
sudo apt install -y docker-ce

Start docker automatically upon reboot:

systemctl enable docker


Configure docker with proxy

mkdir /etc/systemd/system/docker.service.d
touch /etc/systemd/system/docker.service.d/http-proxy.conf

Setup docker with the proxy by inputting the required values into /etc/systemd/system/docker.service.d/http-proxy.conf. It will probably look something like this:


Restart the server : reboot

Take a snapshot.

At this point, if you need to install any certs in your browser or configure your browser to work with your proxy, follow the instructions provided by your corporate IT provider.

Install firefox addons that you need like foxyproxy.

Configure foxyproxy with Burp

  1. Download and install foxyproxy
  2. Click on the foxyproxy icon, click Options
  3. Click Add
  4. Specify Burp Suite for the Title
  5. Specify localhost for the DNS name
  6. Specify 8080 for the port
  7. Click Save

Install Burp cert

  1. Run burpsuite
  2. Select the Burp Suite profile we created in FoxyProxy previously
  3. Navigate to localhost:8080
  4. Click CA Certificate
  5. Click Save File
  6. Click the icon with the three lines in firefox (found the the upper right-hand side of the window)
  7. Click Preferences
  8. Search for certificate
  9. Click View Certificates…
  10. Click Import
  11. Select cacert.der in the Downloads folder, click OK
  12. Check the box next to Trust this CA to identify websites, click OK

Test it:

  1. Click the FoxyProxy icon and Select Use proxy Burp Suite for all URLs
  2. Turn intercept on
  3. Navigate to and observe that we’re able to intercept and modify the requests

At this point, you should be good to go.

Install Ansible

bash -c "$(wget -O -)"

Fix for invalid signature on update

This means you haven’t updated for a while, and that’s very bad. You should really be updating. However, if you run apt update and get an invalid signature error, run this command:

wget -q -O - | apt-key add

Enable SSH

In /etc/ssh/sshd_config change PermitRootLogin without-password to PermitRootLogin yes Resource:

Command line vnc viewer

vncviewer [target]::[vnc port]

Fix Java for Burpsuite

Burp does not presently (8/3/2018 is when I’m writing this) support Java 10, which is the default java on Kali at this point in time. To fix this, simply run update-alternatives --config java and then select the number that corresponds to /usr/lib/jvm/java-8-openjdk-amd64/jre/bin/java from the menu.

Fix kali apt update issue

If apt-key adv --keyserver hkp:// --recv-keys 7D8D0BF6 isn’t doing it, try wget -q -O - | apt-key add


Configure Firefox for Web App Testing

This also makes your web browser especially insecure, so don’t do anything important with it.

  1. Browse to about:config
  2. Type in security.file
  3. Double click security.fileuri.strict_origin_policy

This will disable the same origin policy blocks.

  1. Browse to about:config
  2. Type in security.file
  3. Double click security.insecure_field_warning.contextual.enabled

This will disable the “this connection is not secure” messages.

  1. Browse to about:config
  2. Type in mixed
  3. Double click security.mixed_content.block_active_content

This will disable the block active content lock.

Fix hash mismatch issue

Try another mirror from the official mirror list.

Replace the existing entry in /etc/apt/sources.list with this: deb kali-rolling main non-free contrib