If starting with a pre-built virtual appliance is impractical or you prefer to customize all aspects of the system, you can build a dedicated REMnux environment from scratch by taking the following steps. This allows you to install the REMnux distro on a physical host or a virtual machine.
If you're looking to recreate the lightweight environment provided by the REMnux pre-built virtual appliance, start with the 64-bit minimal Ubuntu 20.04 ISO installation file.
Download the Ubuntu 20.04 mini ISO image. SHA-256 hash of the file should be:
Install Ubuntu 20.04 using the downloaded ISO installer. It's OK to follow default settings, but be sure to adjust them according to your needs.
If you're installing Ubuntu in a virtual machine, allocate resources based on what you have available. REMnux is a relatively lightweight distro, but the more you allocate to it, the faster it will run. For your refrence, the prebuilt REMnux virtual appliance ships with 4 GB RAM and 60 GB disk.
At the "Software selection" screen don't select any software and simply press "Continue." The REMnux installer will install the necessary packages in a later step.
Boot into your new Ubuntu system. You should find yourself at the command prompt. Login using the credentials you specified during the Ubuntu installation.
Download the REMnux installer from the REMnux website by running this command on your new Ubuntu system:
Validate that the SHA-256 hash of the downloaded file to make sure it matches this expected value:
To generate the hash of your file, run:
Set up the REMnux installer by running these commands:
mv remnux-cli remnuxchmod +x remnuxsudo mv remnux /usr/local/bin
The minimal version of Ubuntu includes very few components. Install GnuPG, so that the REMnux installer can automatically validate the signature of the REMux configuration files it will download during the installation process. To install GnuPG, run:
sudo apt install -y gnupg
You're now ready to install the REMnux distro.
If you're planning to run REMnux in a local lab, kick off the installation by runing this command:
sudo remnux install
If you're depoying REMnux in a remote cloud environment and will need to keep the SSH daemon enabled for remotely accessing the system, use the following command instead to avoid disabling the SSH daemon. Remember to harden the system after it installs to avoid unauthorized logins:
sudo remnux install --mode=cloud
The installation will take about an hour, depending on your resources and internet connection.
Once the REMnux installation finishes, reboot your new REMnux system by typing:
After the reboot, REMnux will automatically log you in. There is no logon screen for accessing the REMnux environment, because analysts generally use REMnux on a system to which physical access is already restricted.
If necessary, change the keyboard layout of your system to match your locale and setup.
Depending on the hypervisor you're using, you might need to implement a few configuration tweaks to address or preempt issues with your REMnux virtual machine. Please review the Special Hypervisor Requirements before considering your installation finalized.
If you installed REMnux inside a virtual machine, consider taking a snapshot of the VM, so you can return it to a known good state if the need arises.