Kali Linux is a Debian-derived Linux distribution designed for digital forensics and penetration testing. It is maintained and funded by Offensive Security Ltd. It was developed by Mati Aharoni and Devon Kearns of Offensive Security through the rewrite of BackTrack, their previous information security testing Linux distribution based on Knoppix. The third core developer Raphaël Hertzog joined them as a Debian expert.
|Initial release||13 March 2013|
|Latest release||2018.4 / October 29, 2018|
|Update method||APT (several front-ends available)|
|Platforms||x86, x86-64, armel, armhf|
|Kernel type||Monolithic kernel (Linux)|
|Default user interface||GNOME 3|
Kali Linux has over 600 preinstalled penetration-testing programs, including Armitage (a graphical cyber attack management tool), Nmap (a port scanner), Wireshark (a packet analyzer), John the Ripper password cracker, Aircrack-ng (a software suite for penetration-testing wireless LANs), Burp suite and OWASP ZAP web application security scanners. Kali Linux can run natively when installed on a computer's hard disk, can be booted from a live CD or live USB, or it can run within a virtual machine. It is a supported platform of the Metasploit Project's Metasploit Framework, a tool for developing and executing security exploits.
It was developed by Mati Aharoni and Devon Kearns of Offensive Security through the rewrite of BackTrack, their previous information security testing Linux distribution based on Knoppix. The third core developer Raphaël Hertzog joined them as a Debian expert.
Kali Linux is developed using a secure environment with only a small number of trusted people that are allowed to commit packages, with each package being digitally signed by the developer. Kali also has a custom-built kernel that is patched for 802.11 wireless injection. This was primarily added because the development team found they needed to do a lot of wireless assessments.
The Kali Linux project began quietly in 2012, when Offensive Security decided that they wanted to replace their venerable BackTrack Linux project, which was manually maintained, with something that could become a genuine Debian derivative, complete with all of the required infrastructure and improved packaging techniques. The decision was made to build Kali on top of the Debian distribution because it is well known for its quality, stability, and wide selection of available software.
The first release (version 1.0) happened one year later, in March 2013, and was based on Debian 7 “Wheezy”, Debian’s stable distribution at the time. In that first year of development, they packaged hundreds of pen-testing-related applications and built the infrastructure. Even though the number of applications is significant, the application list has been meticulously curated, dropping applications that no longer worked or that duplicated features already available in better programs.
During the two years following version 1.0, Kali released many incremental updates, expanding the range of available applications and improving hardware support, thanks to newer kernel releases. With some investment in continuous integration, they ensured that all important packages were kept in an installable state and that customized live images (a hallmark of the distribution) could always be created.
- Kali Linux requires a minimum of 1GB hard disk space for installation.
- A minimum of 512MB RAM for i386 and AMD64 architectures.
- A bootable CD-DVD drive or a USB stick.
Kali Linux is distributed in 32-bit and 64-bit images for use on hosts based on the x86 instruction set and as an image for the ARM architecture for use on the Beagle Board computer and on Samsung's ARM Chromebook.
The developers of Kali Linux aim to make Kali Linux available for even more ARM devices.
Kali Linux is already available for BeagleBone Black, HP Chromebook, CubieBoard 2, CuBox, CuBox-i, Raspberry Pi, EfikaMX, Odroid U2, Odroid XU, Odroid XU3, Samsung Chromebook, Utilite Pro, Galaxy Note 10.1, and SS808.
With the arrival of Kali NetHunter, Kali Linux is also officially available on Android devices such as the Nexus 5, Nexus 6, Nexus 7, Nexus 9, Nexus 10, OnePlus One, and some Samsung Galaxy models.
It is the first Open Source Android penetration testing platform for Nexus devices, created as a joint effort between the Kali community member “BinkyBear” and Offensive Security. It supports Wireless 802.11 frame injection, one-click MANA Evil Access Point setups, HID keyboard (Teensy like attacks), as well as Bad USB MITM attacks.
BackTrack (Kali's predecessor) contained a mode known as forensic mode, which was carried over to Kali via live boot. This mode is very popular for many reasons, partly because many Kali users already have a bootable Kali USB drive or CD, and this option makes it easy to apply Kali to a forensic job. When booted in forensic mode, the system doesn't touch the internal hard drive or swap space and auto mounting is disabled. However, the developers recommend that users test these features extensively before using Kali for real world forensics.
Kali Linux includes security tools, such as:
- Burp suite
- Cisco Global Exploiter, a hacking tool used to find and exploit vulnerabilities in Cisco Network systems
- John the Ripper
- Metasploit framework
- OWASP ZAP
- Social engineering tools.
- Reverse Engineering tools
These tools can be used for a number of purposes, most of which involve exploiting a victim network or application, performing network discovery, or scanning a target IP address. Many tools from the previous version (Backtrack) were eliminated to focus on the most popular penetration testing applications.
- Official Kali Linux ReleaseHistory
- Kali Linux 2018.4 Release | Kali Linux
- Kali Linux 1.0 review | LinuxBSDos.com
- Review: BackTrack 2 security live CD | Linux.com | The source of Linux information
- Test your environment's security with BackTrack | Linux.com | The source of Linux information
- BackTrack 4 - Hacking galore, Dedoimedo
- BackTrack 5 R3 review | LinuxBSDos.com
- Hands-on with Kali Linux 1.0.7 | ZDNet
- Kali Linux 1.0.7 review | LinuxBSDos.com
- Kali Linux review, Dedoimedo
- Hands-on with Kali Linux Rolling | ZDNet
- DistroWatch Weekly, Issue 658, 25 April 2016
- "Penetration Testing Tools - Kali Linux". tools.kali.org.
- "Kali Linux arrives as enterprise-ready version of BackTrack". The H. 2013-03-13.
- "Kali Linux Metapackages". Offensive Security. Retrieved 2014-11-02.
- "The Birth of Kali Linux". Offensive Security. 2012-12-12. Retrieved 2013-03-13.
- Orin, Andy (2014-03-12). "Behind the App: The Story of Kali Linux". Life hacker. Retrieved 2015-07-14.
Mati Aharoni: One of our goals with Kali is to provide images of the operating system for all sorts of exotic hardware—mainly ARM based. This includes everything from Raspberry Pi's to tablets, to Android TV devices, with each piece of hardware having some unique property.
- "Kali's Relationship With Debian". Kali Linux. 2013-03-11.
- "A Bit of History". kali.training. Retrieved 2018-08-05.
- "Kali Linux Hard Disk Install". Kali Linux Official Documentation. Retrieved 13 August 2018.
- "Back Track successor Kali Linux launched". SC Magazine. 2013-03-13.
- "Kali Linux ARM".
- muts (March 5, 2018). "Kali Linux in the Windows App Store". Kali Linux. Retrieved 7 March 2018.
- "Kali Linux Nethunter".
- "Kali Linux Forensics Mode".
- "Kali Linux Tools Listing". Offensive Security. Retrieved May 26, 2016.