RedHunt Linux Distribution

Virtual Machine for Adversary Emulation and Threat Hunting

RedHunt aims to be a one-stop shop for all your threat emulation and threat hunting needs by integrating attacker’s arsenal as well as defender’s toolkit to actively identify the threats in your environment.

Base Machine:

• Lubuntu-18.04 x64

Tool Setup

Attack Emulation:

• Caldera
• Atomic Red Team
• DumpsterFire
• Metta
• RTA
• Nmap
• CrackMapExec
• Metasploit
• Responder
• Zap

Logging and Monitoring:

• Kolide Fleet
• ELK (Elasticsearch, Logstash, and Kibana) Stack

Open Source Intelligence (OSINT):

• Maltego
• Recon-ng
• Datasploit
• theHarvestor

Threat Intelligence:

• Yeti
• Harpoon

VM Download Link:

• Release v1: http://bit.ly/RedHUNTv1. All feedback is welcome.

Changelog

• System Updates
• Tool Updates
• New Categories added: Open Source Intelligence & Threat Intelligence
• Base OS Updated to 18.04
• Metasploit Framework Installed

Setup:

• Download the latest OVA file from https://github.com/redhuntlabs/RedHunt-OS.
• Import the OVA in VirtualBox.
• Login using the credentials hunter:hunter.
• Update the distribution ‘sudo apt-get update && sudo apt-get upgrade’.
• Configure/Use the tools.

Username: hunter Password: hunter

Copyright (c) 2018, RedHunt
All rights reserved.

Source: https://github.com/redhuntlabs/