Virtual Machine for Adversary Emulation and Threat Hunting by RedHunt Labs

RedHunt OS aims to be a one stop shop for all your threat emulation and threat hunting needs by integrating attacker's arsenal as well as defender's toolkit to actively identify the threats in your environment.

• Lubuntu-18.04 x64

• Caldera
• Atomic Red Team
• DumpsterFire
• Metta
• RTA
• Nmap
• CrackMapExec
• Metasploit
• Responder
• Zap

• Kolide Fleet
• ELK (Elasticsearch, Logstash, and Kibana) Stack

• Maltego
• Recon-ng
• Datasploit
• theHarvestor

• Yeti
• Harpoon

• Release v1: http://bit.ly/RedHUNTv1. All feedback is welcome.

Changelog

• System Updates
• Tool Updates
• New Categories added: Open Source Intelligence & Threat Intelligence
• Base OS Updated to 18.04
• Metasploit Framework Installed

Setup:

• Download the latest OVA file from https://github.com/redhuntlabs/RedHunt-OS.
• Import the OVA in VirtualBox.
• Login using the credentials hunter:hunter.
• Update the distribution ‘sudo apt-get update && sudo apt-get upgrade’.
• Configure/Use the tools.

VM Credentials: Username: hunter Password: hunter

Caldera Credentials: Username: admin Password: caldera

Version 1

• MD5: 49b14e98b0b7d0276fe90da3f98608b0
• SHA1: 1963cdccc31349699226a3741bc5d1825ab70a61

• Integrate Memory Forensics and Analysis Framework
• Integrate Threat Intelligence Frameworks
• Integrate OSINT Frameworks

• https://redhuntlabs.com

• https://twitter.com/redhuntlabs

• https://www.facebook.com/redhunt.labs.7

• https://cyberwardog.blogspot.in/2017/02/setting-up-pentesting-i-mean-threat_98.html
• https://jordanpotti.com/2018/02/16/elk-osquery-kolide-fleet-love/