Penetration testing

Configuring Kali Linux on AWS for FREE to get the Public IP

Irfan Shakeel
February 15, 2017 by
Irfan Shakeel

Kali Linux is the most favorite pentesting distribution. There are thousands of tutorials for Kali Linux are available on the Internet. However, people always complain about not getting the public IP (WAN), or they can only practice it within their local network. This problem can be solved by opening your Linux computer to the internet which involves configuring the router and port forwarding as well. However, it is not recommended because it will invite the unwanted traffic and intruders, and your machine might turn into the global network of botnets.

The best possible way is to host Kali Linux in the cloud, where the vendor takes care of the networking and server management, and you will focus on your pentesting only.

FREE role-guided training plans

FREE role-guided training plans

Get 12 cybersecurity training plans — one for each of the most common roles requested by employers.

In this article, we will discuss the steps to host Kali Linux in the Amazon AWS for free.

In the first step, create the Amazon AWS account or log in to your existing account, in the next screen provide your payment details (you will not be billed unit you exceed the free tier limitation).

In the next screen, let Amazon verify your identity using the call verification process. Once verified, select the basic plan and move to the next step.

In this step, generate the SSH key pairs to access the Kali Linux from your host computer. On your Amazon AWS console, click on the key pairs (under the network & security navigation), select the Create Key Pair option and give your pair a name.

The private key is automatically downloaded; keep it secure because you will not be able to get it again.

Now, locate the Kali Linux instance from the Amazon AWS Marketplace.

Before taking the instance, make sure that the appropriate region is selected. You can verify the region from your AWS console account as shown in the figure below:

Click continue on the Kali Linux instance, and under EC2 Instance Type, select t2.micro

Click on Launch with 1-click to launch the newly configured instance. You can see the status of your machine by looking at the Amazon AWS console.

You are done configuring the Kali Linux in the cloud, let's discuss the steps to access it from your Windows OS. You need the following tools:

  • PuTTY
  • PuTTygen

Download and install both the tools from the official website, open the PuTTygen and load the already downloaded private key file, the objective is to convert it into the Putty supported format:

Save the private key and close the PuTTYgen program. Open the PuTTY program to connect it with your Kali Linux, load the private key in the Auth tab under the SSH navigation:

Moreover, in the session, use the username (ec2-user) and the public DNS detail of the Kali Linux machine:

Ec2-user@publicDNS

Hit open, and you are done.

Your Kali in the cloud is here, this is the minimal installation, and you cannot be able to access all the tools. However, you can get all the tools by hitting the following command:

apt-get install kali-linux-full

Alternatively; "apt-get install kali-linux-top10" to get the top10 security tools, you should not exceed the usage limit else your card will be charged.

For Linux Users:

You can also access the Kali AWS from your Linux machine. Set the permission and connect the server using the SSH, hit the following:

chmod 400 key_pairs.pem

ls -lah | grep key_pairs

ssh -i key_pairs.pem ec2-user@publicDNS


To get the root access to your Kali machine, hit the sudo su command.

VNC over SSH Tunneling to get the GUI Access of Kali Linux in AWS Cloud

Let's discuss the steps to get the GUI access of the newly installed and configured Kali Linux machine. The infrastructure used:

  • Ubuntu (Local Linux machine to access the Kali)
  • Kali Linux (configured in the AWS cloud)
  • Windows with PuTTy (just to access the local and hosted Linux machine)- This is not required, you can do all the functions with your local Linux too, this machine has been used to access the Linux machines only.

Update the packages and install the TightVNC on your host Linux machine:

sudo apt-get update

sudo apt-get install xfce4 xfce4-goodies tightvncserver

The existing Kali Linux is the command based OS, but to get the GUI, you need to install it first. We will hit the following command in the newly created Kali Linux machine:

apt-get install gnome-core kali-defaults kali-root-login desktop-base

After getting the GUI installed, set up the VNC server by adjusting the resolution since you will be using the VNC for the first time, it will ask to create the password.

# tightvncserver –geometry 1024x768

Kali:1 shows that it is listening on port 5900+1 =5901

Now it is time to setup the SSH tunnel; this should be done on your host Linux instead of the Kali (cloud).

# ssh -L 5901:localhost:5901 -N -f ec2-user@PublicDNS -i key_pairs.pem

# netstat -anop | grep 590

You can see the listening port. In the command above:

-N represents the SSH port forwarding

-f run the SSH commands in the background

The SSH tunnel has been created; we will be connecting the local host using the TightVNC viewer, you can use the Ubuntu default viewer as well.

And here is the connectivity:

Kali Linux is ready, and it is hosted in the cloud with public IP, and it cost you nothing. However, you need to take care of Amazon's abuse policy; they do not allow to scan the third party premises and to conduct the pentesting you need to complete the Penetration testing request form.

Video Tutorial:

What should you learn next?

What should you learn next?

From SOC Analyst to Secure Coder to Security Manager — our team of experts has 12 free training plans to help you hit your goals. Get your free copy now.

Irfan Shakeel
Irfan Shakeel

Irfan Shakeel is the founder & CEO of ehacking.net An engineer, penetration tester and a security researcher. He specializes in Network, VoIP Penetration testing and digital forensics. He is the author of the book title “Hacking from Scratch”. He loves to provide training and consultancy services, and working as an independent security researcher.