Kali Linux

Last updated
Kali Linux
Kali Linux 2.0 wordmark.svg
VirtualBox Kali Linux 29 03 2022 11 10 35.png
Developer Offensive Security
OS family Linux (Unix-like)
Working stateActive
Source model Open-source
Initial release13 March 2013(11 years ago) (2013-03-13) [1]
Latest release 2024.4 [2]   OOjs UI icon edit-ltr-progressive.svg / 16 December 2024;7 days ago (16 December 2024)
Repository
Update method Rolling release
Package manager APT (several front-ends available)
Platforms x86, x86-64, armel, armhf
Kernel type Monolithic (Linux)
Default
user interface 		Xfce, [3] GNOME, [3] KDE [3]
License GNU General Public License v3.0
Official website www.kali.org
Support status
Active

Kali Linux is a Linux distribution designed for digital forensics and penetration testing. [4] It is maintained and funded by Offensive Security. [5] The software is based on the Debian Testing branch: most packages Kali uses are imported from the Debian repositories. [6] The tagline of Kali Linux and BackTrack is "The quieter you become, the more you are able to hear", which is displayed on some backgrounds, see this example.

Contents

Kali Linux has approximately 600 [7] penetration-testing programs (tools), including Armitage (a graphical cyber attack management tool), Nmap (a port scanner), Wireshark (a packet analyzer), metasploit (penetration testing framework), John the Ripper (a password cracker), sqlmap (automatic SQL injection and database takeover tool), Aircrack-ng (a software suite for penetration-testing wireless LANs), Burp suite and OWASP ZAP web application security scanners, [8] [9] etc. [10]

It was developed by Mati Aharoni and Devon Kearns of Offensive Security through the rewrite of BackTrack, their previous information security testing Linux distribution based on Knoppix.[ citation needed ]

Kali Linux's popularity grew when it was featured in multiple episodes of the TV series Mr. Robot . Tools highlighted in the show and provided by Kali Linux include Bluesniff, Bluetooth Scanner (btscanner), John the Ripper, Metasploit Framework, Nmap, Shellshock, and Wget. [11] [12] [13]

Features

Kali Linux has a dedicated project set aside for compatibility and porting to specific Android devices, called Kali NetHunter. [14]

It is the first open source Android penetration testing platform for Nexus devices, created as a joint effort between the Kali community member "BinkyBear" and Offensive Security. It supports Wireless 802.11 frame injection, one-click MANA Evil Access Point setups, HID keyboard (Teensy like attacks), as well as Bad USB MITM attacks. [14]

BackTrack (Kali's predecessor) contained a mode known as forensic mode, which was carried over to Kali via live boot. This mode is very popular for many reasons, partly because many Kali users already have a bootable Kali USB drive or CD, and this option makes it easy to apply Kali to a forensic job. When booted in forensic mode, the system doesn't touch the internal hard drive or swap space and auto mounting is disabled. However, the developers recommend that users test these features extensively before using Kali for real world forensics. [15]

Version history

The first version, 1.0.0 "moto", was released in March 2013. [1]

With version 2019.4 in November 2019, the default user interface was switched from GNOME to Xfce, with a GNOME version still available. [3]

With version 2020.3 in August 2020, the default shell was switched from Bash to ZSH, with Bash remaining as an option. [16]

With version 2024.4 in December 2024, version 6.11 of the Linux kernel is introduced, official support for 32-bit images is dropped, and DSA keys are deprecated for OpenSSH. [17]

Requirements

Kali Linux requires: [18]

The recommended hardware specification for a smooth experience are:

Supported platforms

Kali Linux is currently distributed as a 64-bit images for use on hosts based on the x86-64 architecture and as an image for the ARM architecture for use on the Beagle Board computer and Samsung's ARM Chromebook. [19] With the release of 2024.4, 32-bit images based on the i386 architecture were officially dropped. [17] [20]

The developers of Kali Linux aim to make Kali Linux available for more ARM devices. [21]

Kali Linux is already available for Asus Chromebook Flip C100P, BeagleBone Black, HP Chromebook, CubieBoard 2, CuBox, CuBox-i, Raspberry Pi, EfikaMX, Odroid U2, Odroid XU, Odroid XU3, Samsung Chromebook, Utilite Pro, Galaxy Note 10.1, and SS808. [22]

With the arrival of Kali NetHunter, Kali Linux is also officially available on Android devices such as the Nexus 5, Nexus 6, Nexus 7, Nexus 9, Nexus 10, OnePlus One, and some Samsung Galaxy models. It has also been made available for more Android devices through unofficial community builds.

Kali Linux is available on Windows 10, on top of Windows Subsystem for Linux (WSL). The official Kali distribution for Windows can be downloaded from the Microsoft Store. [23]

Comparison with other Linux distributions

Kali Linux is developed with a focus towards cyber security experts, penetration testers, and white-hat hackers. There are a few other distributions dedicated to penetration testing, such as Parrot OS, BlackArch, and Wifislax. Kali Linux has stood out against these other distributions for cyber security and penetration testing, [24] as well as having features such as the default user being the superuser in the Kali Live Environment. [25]

Tools

Kali Linux includes security tools, such as: [7] [26] [27] [28] [29] [30] [31] [32] [33]

These tools can be used for a number of purposes, most of which involve exploiting a victim network or application, performing network discovery, or scanning a target IP address. Many tools from the previous version (BackTrack) were eliminated to focus on the most popular and effective penetration testing applications.

Offensive Security provides a book, Kali Linux Revealed, [34] and makes it available for free download. [35]

Kali Purple

Kali Purple is a flavor of Kali introduced in 2023 specifically designed for defensive security. [36] It features its own suite of tools sorted into categories that correspond to the NIST Cybersecurity Framework. [37]

See also

Related Research Articles

<span class="mw-page-title-main">Linux distribution</span> Operating system based on the Linux kernel

A Linux distribution is an operating system that includes the Linux kernel for its kernel functionality. Although the name does not imply product distribution per se, a distro, if distributed on its own, is often obtained via a website intended specifically for the purpose. Distros have been designed for a wide variety of systems ranging from personal computers to servers and from embedded devices to supercomputers.

<span class="mw-page-title-main">SANS Institute</span> American security company

The SANS Institute is a private U.S. for-profit company founded in 1989 that specializes in information security, cybersecurity training, and selling certificates. Topics available for training include cyber and network defenses, penetration testing, incident response, digital forensics, and auditing. The information security courses are developed through a consensus process involving administrators, security managers, and information security professionals. The courses cover security fundamentals and technical aspects of information security. The institute has been recognized for its training programs and certification programs. Per 2021, SANS is the world’s largest cybersecurity research and training organization. SANS is an acronym for SysAdmin, Audit, Network, and Security.

A white hat is an ethical security hacker. Ethical hacking is a term meant to imply a broader category than just penetration testing. Under the owner's consent, white-hat hackers aim to identify any vulnerabilities or security issues the current system has. The white hat is contrasted with the black hat, a malicious hacker; this definitional dichotomy comes from Western films, where heroic and antagonistic cowboys might traditionally wear a white and a black hat, respectively. There is a third kind of hacker known as a grey hat who hacks with good intentions but at times without permission.

<span class="mw-page-title-main">Pardus (operating system)</span> Linux distribution

Pardus is a Linux distribution developed with support from the government of Turkey. Pardus' main focus is office-related work including use in Turkish government agencies. Despite that, Pardus ships in several languages. Its ease of use and availability free of charge has spawned numerous communities throughout the world.

OpenVAS is the scanner component of Greenbone Vulnerability Management (GVM), a software framework of several services and tools offering vulnerability scanning and vulnerability management.

<span class="mw-page-title-main">BackTrack</span> Linux distribution

BackTrack was a Linux distribution that focused on security, based on the Knoppix Linux distribution aimed at digital forensics and penetration testing use. In March 2013, the Offensive Security team rebuilt BackTrack around the Debian distribution and released it under the name Kali Linux.

Parsix GNU/Linux was a live-CD Linux distribution based on Debian. The Parsix project's goal was to provide a ready-to-use, easy-to-install, desktop and laptop-optimized operating system based on Debian's testing branch and the latest stable release of GNOME. It was possible to install extra software packages from the project's own APT repositories.

Offensive Security Certified Professional is an ethical hacking certification offered by Offensive Security that teaches penetration testing methodologies and the use of the tools included with the Kali Linux distribution. The OSCP is a hands-on penetration testing certification, requiring holders to successfully attack and penetrate various live machines in a safe lab environment. It is considered more technical than other ethical hacking certifications, and is one of the few certifications that requires evidence of practical penetration testing skills.

<span class="mw-page-title-main">Pentoo</span> Gentoo based Linux distribution for penetration testing

Pentoo is a Live CD and Live USB designed for penetration testing and security assessment. Based on Gentoo Linux, Pentoo is provided both as 32 and 64-bit installable live CD. Pentoo is also available as an overlay for an existing Gentoo installation. It features packet injection patched Wi-Fi drivers, GPGPU cracking software, and many tools for penetration testing and security assessment. The Pentoo kernel includes grsecurity and PAX hardening and extra patches - with binaries compiled from a hardened toolchain with the latest nightly versions of some tools available.

<span class="mw-page-title-main">BackBox</span> Security-oriented Linux distribution

BackBox is a penetration test and security assessment oriented Ubuntu-based Linux distribution providing a network and informatic systems analysis toolkit. It includes a complete set of tools required for ethical hacking and security testing.

<span class="mw-page-title-main">Parrot OS</span> Debian-based Linux distribution

Parrot OS is a Linux distribution based on Debian with a focus on security, privacy, and development.

Offensive Security is an American international company working in information security, penetration testing and digital forensics. Operating from around 2007, the company created open source projects, advanced security courses, the ExploitDB vulnerability database, and the Kali Linux distribution. The company was started by Mati Aharoni, and employs security professionals with experience in security penetration testing and system security evaluation. The company has provided security counseling and training to many technology companies.

<span class="mw-page-title-main">Kali NetHunter</span> Free & open-source mobile penetration testing platform for non-rooted and rooted Android devices

Kali NetHunter is a free and open-source mobile penetration testing platform for Android devices, based on Kali Linux. Kali NetHunter is available for non-rooted devices, for rooted devices that have a standard recovery, and for rooted devices with custom recovery for which a NetHunter specific kernel is available (NetHunter). Official images are published by Offensive Security on their download page and are updated every quarter. NetHunter images with custom kernels are published for the most popular supported devices, such as Google Nexus, Samsung Galaxy and OnePlus. Many more models are supported, and images not published by Offensive Security can be generated using NetHunter build scripts. Kali NetHunter is maintained by a community of volunteers, and is funded by Offensive Security.

<span class="mw-page-title-main">BlackArch</span> Penetration testing distribution based on Arch Linux

BlackArch is a penetration testing distribution based on Arch Linux that provides a large number of security tools. It is an open-source distro created specially for penetration testers and security researchers. The repository contains more than 2900 tools that can be installed individually or in groups. BlackArch Linux is compatible with existing Arch Linux installations.

<span class="mw-page-title-main">Kon-Boot</span> Password bypass software

Kon-Boot is a software utility that allows users to bypass Microsoft Windows passwords and Apple macOS passwords without lasting or persistent changes to system on which it is executed. It is also the first reported tool capable of bypassing Windows 10 online (live) passwords and supporting both Windows and macOS systems. It is also a widely used tool in computer security, especially in penetration testing. Since version 3.5 Kon-Boot is also able to bypass SecureBoot feature.

<span class="mw-page-title-main">Bootloader unlocking</span> Process of disabling secure device booting

Bootloader unlocking is the process of disabling the bootloader security that makes secure boot possible. It can make advanced customizations possible, such as installing custom firmware. On smartphones, this can be a custom Android distribution or another mobile operating system. Some bootloaders are not locked at all and some are locked, but can be unlocked with a command or with assistance from the manufacturer. Some do not include an unlocking method and can only be unlocked through a software exploit.

ExploitDB, sometimes stylized as Exploit Database or Exploit-Database, is a public and open source vulnerability database maintained by Offensive Security. It is one of the largest and most popular exploit databases in existence. While the database is publicly available via their website, the database can also be used by utilizing the searchsploit command-line tool which is native to Kali Linux.

References

  1. 1 2 "Official Kali Linux Releases". Archived from the original on 2020-02-02. Retrieved 2020-08-29.
  2. "Kali Linux 2024.4 Release (Python 3.12, Goodbye i386, Raspberry Pi Imager & Kali NetHunter)". 16 December 2024. Retrieved 16 December 2024.
  3. 1 2 3 4 Nestor, Marius (26 November 2019). "Kali Linux Ethical Hacking OS Switches to Xfce Desktop, Gets New Look and Feel". softpedia. Archived from the original on 2020-06-30. Retrieved 2019-11-29.
  6. "Kali's Relationship With Debian". Kali Linux. 2013-03-11. Archived from the original on 2018-07-02. Retrieved 2019-04-10.
  7. 1 2 "Kali Linux Penetration Testing Tools". tools.kali.org. Archived from the original on 2021-09-24. Retrieved 2019-04-10.
  8. "Kali Linux Metapackages". www.kali.org. 26 February 2014. Archived from the original on 2016-04-23. Retrieved 2019-12-22.
  9. "Kali Linux arrives as enterprise-ready version of BackTrack - The H Open: News and Features". www.h-online.com. Archived from the original on 2016-03-14. Retrieved 2019-12-22.
  10. "Mr. Robot and Kali Linux". 29 December 2020. Archived from the original on 4 May 2023. Retrieved 27 June 2022./
  11. Leroux, Sylvain (3 May 2017). "The Kali Linux Review You Must Read Before You Start Using it". itsfoss.com. Archived from the original on 2020-04-14. Retrieved 2020-04-15.
  12. Grauer, Yael (2015-08-26). "A Peek Inside Mr. Robot's Toolbox". Wired. ISSN   1059-1028. Archived from the original on 2015-09-08. Retrieved 2020-04-15.
  13. "Exploring the Hacker Tools of Mr Robot". HackerTarget.com. 2015-08-21. Archived from the original on 2019-12-17. Retrieved 2020-04-15.
  14. 1 2 "Kali Linux NetHunter for Nexus and OnePlus". Archived from the original on 2017-01-02. Retrieved 2019-04-10.
  15. "Kali Linux Forensics Mode". Archived from the original on 2019-11-25. Retrieved 2019-04-10.
  16. "Kali Linux 2020.4 Release". www.kali.org. 18 November 2020. Archived from the original on 2021-01-29. Retrieved 2021-01-12.
  17. 1 2 "Kali Linux 2024.4 Release (Python 3.12, Goodbye i386, Raspberry Pi Imager & Kali NetHunter)". Kali.org. Kali Linux Blog. 16 December 2024. Retrieved 23 December 2024.
  18. "Installing Kali Linux". Kali.org. 22 October 2024. Archived from the original on 26 November 2024. Retrieved 23 December 2024.
  19. Pauli, Darren (2013-03-13). "BackTrack successor Kali Linux launched". SC Magazine. Archived from the original on 2019-04-10. Retrieved 2019-04-10.
  20. "Installing old i386 images". Kali.org. 7 November 2024. Archived from the original on 17 December 2024. Retrieved 23 December 2024.
  21. Orin, Andy (2014-12-03). "Behind the App: The Story of Kali Linux". Lifehacker. Archived from the original on 2021-10-20. Retrieved 2019-04-10. Mati Aharoni: One of our goals with Kali is to provide images of the operating system for all sorts of exotic hardware—mainly ARM based. This includes everything from Raspberry Pi's to tablets, to Android TV devices, with each piece of hardware having some unique property.
  22. "04. Kali Linux on ARM". Archived from the original on 2019-11-25. Retrieved 2019-09-04.
  23. muts (2018-03-05). "Kali Linux in the Windows App Store". Kali Linux. Archived from the original on 2021-01-23. Retrieved 2019-04-10.
  24. Gray, Lerma (12 February 2021). "11 Best Linux Distros For Hacking And Penetration Testing in 2021 – dev.Count". Archived from the original on 2022-05-21. Retrieved 2022-05-02.
  25. "Kali's Default Credentials | Kali Linux Documentation". Kali Linux. Archived from the original on 2022-04-15. Retrieved 2022-05-02.
  26. "Burp Suite - Application Security Testing Software". portswigger.net. Archived from the original on 2003-09-22. Retrieved 2023-09-29.
  27. "BeEF - The Browser Exploitation Framework Project". beefproject.com. Archived from the original on 2023-09-26. Retrieved 2023-09-29.
  28. "cisco-global-exploiter | Kali Linux Tools". Kali Linux. Archived from the original on 2023-10-01. Retrieved 2023-09-29.
  29. "sqlmap: automatic SQL injection and database takeover tool". sqlmap.org. Archived from the original on 2008-09-19. Retrieved 2023-09-29.
  30. "WPScan: WordPress Security Scanner". wpscan.com. Archived from the original on 2023-09-29. Retrieved 2023-09-29.
  31. Reverse Engineer's Toolkit, Mente Binária, 2023-09-28, archived from the original on 2023-10-04, retrieved 2023-09-29
  32. dev-gsniper (2023-09-27), Reverse-Engineering-toolkit, archived from the original on 2023-09-27, retrieved 2023-09-29
  33. "Vulnerable By Design ~ VulnHub". www.vulnhub.com. Archived from the original on 2023-09-29. Retrieved 2023-09-29.
  34. Hertzog, Raphael; O'Gorman, Jim; Aharoni, Mati (2017-06-05). Kali Linux Revealed: Mastering the Penetration Testing Distribution. Offsec Press. ISBN   978-0-9976156-0-9. Archived from the original on 2024-05-21. Retrieved 2020-03-17.
  35. Kali Linux Revealed (PDF). Archived from the original (PDF) on 2021-01-02. Retrieved 2020-03-17.
  36. Abrams, Lawrence (2023-03-13). "Kali Linux 2023.1 introduces 'Purple' distro for defensive security". BleepingComputer. Archived from the original on 2024-12-14. Retrieved 2024-12-14.
  37. codelabs (2023-03-14). "What is Kali Purple and How Is It Used? - TCM Security". TCM Security. Archived from the original on 2024-12-14. Retrieved 2024-12-14.
This page is based on this Wikipedia article
Text is available under the CC BY-SA 4.0 license; additional terms may apply.
Images, videos and audio are available under their respective licenses.