So I’ve installed my Linux Qubes OS, and have got it set with IVPN and NextDNS. It’s fantastic, really happy I made the transition even if Qubes is perhaps a bit more clunky. Clean internet, privacy and protection (which is a requirement for me).
I am now looking further ahead and wanting to move in the direction of security and device pen test and troubleshooting. With this said, I am looking at an OS which would prime me for learning penetration testing and have identified various Linux distros such as Kali, Pentoo, BackBox, BlackArch and Parrot OS.
My primary question is: should I try downloading one of these and have it run as a template/VM on top of my Linux Qubes OS or should I just vouch for a dedicated Laptop which runs whichever OS I choose to go with?
My gut is telling me that if I decide to try and run one of these in a Qube, on a Lenovo T14s, then its likely going to be slow.
If you want to do pentest over a network, I’d recommend using a dedicated device as your pentest qube would not see anything from the local traffic happening on a network, like protocols broadcasting information over the LAN.
I appreciate the word. I need to learn about communication protocols and inter device comms - what you said about not being able to see anything from the local traffic.
I am guessing that is because the internet function on a Qubes OS is separateed by a dedicated VM, which means your pen test tooling cannot see the traffic in the local wifi chip?
I know my jargon is heavy handed - but is that correct?
exactly, although you could run the pentest system in a HVM qube and attach it directly the network interface, that would give you a direct access to the network.
You could also just run wireshark/tcpdump in sys-net and drive it remotely from the pentest qube. But depending on what you do, it’s overengineered compared to running a livecd on a spare laptop.
While it is definitely not recommened security-wise, you could also do the stuff just directly in your netvm (best: in an dedicated disposable netvm that is only for pentest stuff that is networking-related).
See for Pen Testing, what base/foundational resources would you recommend? FYI, I’ve installed Kali onto a dedicated Lenovo so good to go hardware wise. Alot of free content out there that is held to 0 accountability.