The easiest way to get the REMnux distro is to download the REMnux virtual appliance in the OVA format, import it into your hypervisor, then run the upgrade command to make sure it's up-to-date.
The REMnux virtual appliance approximately 5 GB. It comes as an industry-standard OVA file, which you can import into your virtualization software.
Decide which OVA file to download by making two choices:
Will you use VirtualBox or another hypervisor? Unless you're using Oracle VM VirtualBox, get the general OVA file. If you're using VirtualBox, get the VirtualBox version.
Do you prefer to Ubuntu 18.04 (Bionic) or 20.04 (Focal) as the base OS? The 20.04 version is newer, and will be supported longer.
Then download your preferred OVA file:
Download the Ubuntu 18.04 (Bionic) OVA file or the Ubuntu 20.04 (Focal) OVA file. This general version works with most hypervisors; if you're using VirtualBox, get the VirtualBox version.
Download the Ubuntu 18.04 (Bionic) OVA file or the Ubuntu 20.04 (Focal) OVA file. This VirtualBox version is specifically for VirtualBox; get the general version if you're using other hypervisors.
Some browsers (e.g., Brave) change the extension of the OVA file after downloading it, possibly giving it the incorrect .ovf extension. If that happens, rename the file so it has the .ova extension before proceeding.
Validate the SHA-256 hash of the downloaded file using a tool such as sha256sum or shasum to make sure it matches this expected value:
General OVA file based on Ubuntu 18.04 (Bionic):
bf08a6d2b0b4813131b704c1cfcb921320e81ae917c825fa5c01e2131e0409c0
General OVA file based on Ubuntu 20.04 (Focal):
20e7547bcd0c0e6a3f572a5af3de679bce716be965e9def0665a22d5ea977750
VirtualBox OVA file based on Ubuntu 18.04 (Bionic):
43f7e4fe7a58bd2012df5624423846307b4a028f655ad02cf40f929b6dc8231d
VirtualBox OVA File based on Ubuntu 20.04 (Focal):
d023ad740843939c253ccd3d9d5f07170961874ff21fa24491b6a56af05dabcd
If possible, upgrade your virtualization software to the latest version. Then, use it to import the downloaded OVA file. If you're not sure how to do that, follow the instructions below:
​VMware Workstation​
​VMware vSphere​
​VMware Fusion​
​Oracle VM VirtualBox​
When importing the REMnux virtual appliance, allocate resources such as RAM and disk space based on what you have available. REMnux is a relatively lightweight distro, but the more you allocate to it, the faster it will run. As a point of reference, most people find 4 GB RAM and 60 GB disk sufficient.
Once you start your REMnux virtual machine, it will automatically log you into the REMnux environment.
There is no logon screen for accessing the REMnux environment, because analysts generally use REMnux on a system to which physical access is already restricted. When you need to elevate your privileges or access the REMnux virtual appliance remotely, note the follow default credentials:
Username: remnux
Password: malware
If necessary, change the keyboard layout of your system to match your locale and setup.
Depending on which hypervisor or environment you're using, you might need to take the following steps:
If running VirtualBox on Windows 10, be sure to disable Hyper-V using the command bcdedit /set hypervisorlaunchtype off. Do this even if Hyper-V appears disabled in the Windows Features listing. If you don't, you are likely to run into problems downloading files and updating REMnux.
If your REMnux window is too small when you boot it up the system in VirtualBox, activate the Scaling Mode for the VM via the VirtualBox menu View > Scaling Mode.
VMware sometimes conflicts with the Ubuntu graphical environment, which by default uses Wayland display protocol. The problems manifest themselves through the VM being unresponsive to keyboard and mouse; clipboard sharing and copy-and-paste VMware features might not be working, too.
If you encounter this issue, try configring your REMnux virtual machine to switch from Wayland to Xorg. The change should be unnoticeable to your user experience, but it might address the VMware issue. To make the switch, switch to the root user account (sudo -s) and edit the file /etc/gdm3/custom.conf. Uncomment this line:
#WaylandEnable=false
So it says:
WaylandEnable=false
Then reboot your virtual machine (reboot).
The REMnux virtual appliance ships in "dedicated" installation mode, which automatically turns off the SSH daemon. This configuration is generally desirable when running REMnux in a local lab. If you're deploying the virtual appliance in a cloud environment, you might need to keep SSH enabled to remotely access your REMnux system. In that case:
Edit the /etc/remnux-config and change the mode from dedicated to cloud.
Enable the SSH daemon by running: sudo systemctl enable ssh.
Change the default user's password and otherwise strengthen the SSH authentication method according to your requirements and risk tolerance.
Reboot your REMnux system.
If you converted the REMnux virtual appliance to KVM/QEMU, install install the "spice-vdagent" package in the virtual machine to be able to resize the windows of your VM and copy/paste between it and your host.
If you're planning to use the REMnux virtual appliance in Proxmox, follow the steps in this article to import the OVA. Once done, consider taking the following steps using the Proxmox interface:
VM > Hardware > Display > Set to -> SPICE(qxl)
VM > Hardware > Option > Spice Enhancements > Video Streaming: all
After installing the REMnux virtual machine, run the following command inside the VM as a regular, non-root user to upgrade it to the latest version of the distro:
remnux upgrade
For more details about keeping your REMnux environment current, so you benefit from the latest enhancements, see the Keeping REMnux Up to Date section.
Consider taking a snapshot of your REMnux virtual machine, so you can return it to a known good state if the need arises.