So you’ve got a remote shell to a target environment and now you want a GUI so you can run a tool that just doesn’t seem to work as well on the command line, say... Burp Suite. … Well, it turns out that the Enterprise Pentesting Appliance makes this normally-difficult situation pretty easy. Let’s create a Backtrack 5 VM (from the Official ISO):
1) Download the Backtrack 5 ISO to /opt/pwnix/virtual-machines/
2) For this example, we’ll assume the ISO file name is “BT5R3-GNOME-32.iso”
3) Run the following commands to create a new virtual machine that boots from the BT5 ISO:
# chmod 644 /opt/pwnix/virtual-machines/BT5R3-GNOME-32.iso
# virt-install -n bt5r3 -r 512 --disk path=/opt/pwnix/virtual-machines/bt5.img,bus=virtio,size=6 -c /opt/pwnix/virtual-machines/BT5R3-GNOME-32.iso --accelerate --network network=default,model=virtio --connect=qemu:///system --vnc --noautoconsole -v
4) View the current state of the new VM:
# virsh -c qemu:///system list
5) From a remote system with a GUI, install virt-viewer (for example, via apt-get or yum)
Note: You can also use VNC to connect, but it requires port forwarding the VNC server which listens on localhost by default.
6) Remotely connect to the Backtrack VM GUI console:
$ virt-viewer -c qemu+ssh://pwnie@[appliance_IP]/system bt5r3
7) Remotely connect to the Backtrack VM GUI and fire up any GUI tool you'd like.
Image 1: Here you can see the Backtrack desktop running over Virt Viewer