I myselft too am using toolbox to use a different distro.
More specifically I also use toolbox to have a kali container (kali is a debian based distro): I prepared the image with standard podman comands and official repositories; then created a “container” with toolbox using this image (see instructions below).
I use this kali container via toolbox on a daily basis for maybe 2 years already. Comparing to running a full Kali Virtual Machine, there are many pros as you can guess, but there are also a few drawbacks you have to know:
- security: it’s definitely less secure that having a full blown VM to run kali (with toolbox you have many things shared with the host: mountpoints, network and so on)
- one may be root in the container but still missing some capabilities/rights from the outside (eg: cannot bind to ports < 1024, cannot open network interfaces for capturing, and so on)
I installed and used tcpdump&nmap&Cie on my host with rpm-ostree (and java-latest-openjdk for tje BurpSuite ), and run everything else in this kali toolbox. The workflow is great for me:
- I can update my kali toolbox, install and remove programs as I would do with a normal VM
- I can save the current state and create a new toolbox image for oneshot usages
When I looked for this, I did not find information on how to achieve this, so I tried and carefully took notes, that I’ve tested several times since then!
→ Here are the instructions:
- podman run -ti kalilinux/kali-rolling /bin/bash
- […] (e.g. apt update/upgrade, apt-get install kali-linux-headless and so on)
- podman ps -a
- podman container stop CONTAINER_ID
- podman commit CONTAINER_ID my-kali-YYYYMMDD
- toolbox list
- toolbox create --image localhost/my-kali-YYYYMMDD --container mykali
- toolbox enter mykali
There are chances that these setup instructions work for other distros also available via podman!
I enjoy it so much that I’m thrilled just to share this with you: I hope some of you will enjoy it as well!