Android + BackTrack Chroot
The following tutorial will demonstrate how to run Backtrack Linux in an Android chroot environment. It should work on most Android devices that support at least ARMv7 architecture or newer.
Download BackTrack ARM edition
http://www.backtrack-linux.org/downloads/
You can download via torrent or direct, the rest of the settings should look like this:
Image Name: BT5-GNOME-ARM [.torrent | .7z]
Size (MB): 1060
Desktop: GNOME
Architecture: arm
Image: IMG
Download: [Direct | Torrent]
MD5sum: a66bf35409f4458ee7f35a77891951eb
Extract the contents using 7zip (apt-get install p7zip if you don’t have it installed)
cd BT5-GNOME-ARM/
7z x BT5-GNOME-ARM.7z
The output should look like this:
Processing archive: BT5-GNOME-ARM.7z
Extracting BT5-GNOME-ARM/bootbt
Extracting BT5-GNOME-ARM/busybox
Extracting BT5-GNOME-ARM/fsrw
Extracting BT5-GNOME-ARM/mountonly
Extracting BT5-GNOME-ARM/README
Extracting BT5-GNOME-ARM/unionfs
Extracting BT5-GNOME-ARM/bt5.img.gz
Extracting BT5-GNOME-ARM/installbusybox.sh
Extracting BT5-GNOME-ARM
Everything is Ok
Folders: 1
Files: 8
Size: 1165198387
Compressed: 1142317778
Next we will shell into the device and create a directory on the external storage to hold the image and scripts
cd BT5-GNOME-ARM/
./adb shell
mkdir /sdcard/bt
exit
DO THIS IF YOU DONT HAVE BUSYBOX
If you have a custom ROM like Cyanogenmod installed, its VERY likely you can skip this step. What to know for sure? ADB shell into the device, and type ‘which busybox’ at the terminal prompt. If it shows a path, like ‘/system/xbin/busybox’ its already installed. Otherwise, copy over the busybox install files with ADB:
./adb push busybox /sdcard/
./adb push installbusybox.sh /sdcard
Run the busybox install script on the device:
./adb shell
su
cd /sdcard/
sh installbusybox.sh
exit
END BUSYBOX INSTALL
Use ADB to push the compressed BackTrack image to the sdcard:
./adb push bt5.img.gz /sdcard/bt/
Clone the scripts from my github repo:
git clone git://github.com/mitchtech/chroot_android.git -b bt
cd chroot_android
tar -cvf bt.tar *
./adb push bt.tar /sdcard/bt/
Install BackTrack
ADB shell into the device
./adb shell
Get root and change into the BackTrack directory
su
cd /sdcard/bt
Uncompress the image and scripts:
gunzip bt5.img.gz
mv bt5.img bt.img
tar -xvf bt.tar
Next run the installer script.
sh ./installbt.sh
Now, to start BackTrack type ‘startbt’. Once BackTrack started, to gain shell type ‘bt’. To shutdown type ‘stopbt’.
startbt
bt
If all goes well, you’ll be in the BackTrack chroot. If you get ‘root@localhost:/#’ then you know it’s working!
root@localhost:/# ls /pentest/
backdoors database exploits passwords scanners stressing voip cisco enumeration forensics python sniffers tunneling web
Post-Install
To start networking in Backtrack 4 final issue the following command:
/etc/init.d/networking start
This will attempt to start all the interfaces in the /etc/network/interfaces file. Now we can update the system with apt-get
apt-get update
apt-get dist-upgrade
Finally, add the following to .bashrc. For example, vi ~/.bashrc
cd ~
PATH=$PATH:/root/bin
export USER=root
Connect to the chroot install with VNC
You will need to download any VNC client to connect to the Backtrack session. I use androidVNC, but any VNC client should work as long as the settings are correct. Start a vncserver session with the geometry of the device
vncserver -geometry 850x480
Then connect to the session with the following settings.
Nick : bt (or whatever you want)
address : localhost
port : 5901
password : 12345678
Touch Mouse; D-Pad Pan;
Mouse pointer control mode: TouchPad
Bug Fixes
If you encounter an error from upstart like this:
start: Unable to connect to Upstart: Failed to connect to socket /com/ubuntu/upstart: Connection refused invoke-rc.d: initscript resolvconf, action “start” failed. dpkg: error processing resolvconf (–configure): subprocess installed post-installation script returned error exit status 1
Issue these two commands:
dpkg-divert --local --rename --add /sbin/initctl
ln -s /bin/true /sbin/initctl
Then re-configure dpkg:
dpkg --configure -a