Deploying Buscador on ESXi

calendarMay 24, 2019 · 1 min read · OSINT Buscador ESXi Virtualization  ·
Share on: linkedincopy

Buscador is a Linux distribution created by David Westcott and Michael Bazzell of IntelTechniques to help with OSINT investigations. What Kali Linux is to penetration testing, Buscador is to OSINT and you can read abot the tools included on their site linked above.

Both VirtualBox and VMWare images are provided in OVA format however the latter is only compatible with VMWare workstation out of the box and not ESXi. The manifest file within the OVA contains a SHA-256 checksum to verify the integrity of the virtual machine and virtual disk files within the OVA.

ESXi does not support SHA-256 and expects a SHA-1 hash resulting the the following error message when attempting to deploy Buscador on an ESXi hypervisor: “The OVF package is invalid and cannot be deployed

To replace the signatures follow VMWare’s KB 2151537. In a nutshell:

  1. Download and install the OVFTool from VMWare’s Site
  2. Run the command ovftool.exe --shaAlgorithm=SHA1 /path/to/Buscador.ova /path/to/Buscador-SHA1.ova
  3. Deploy the new Buscador-SHA1.ova file.