Cybersecurity

xz-utils backdoor: how to get started

Following the recent disclosure of a backdoor in upstream xz/liblzma, we are writing this “get started” kind of blog post. We will explain how to setup an environment with the backdoored version of liblzma, and then the first commands to ru...
Cybersecurity

All about the xz-utils backdoor




As of 5:00 pm ET on March 29, 2024 the following information is accurate. Should there be updates to this situation, they will be edited onto this blog post.


The xz-utils package, starting from versions 5.6.0 to 5.6.1, was found to contain a backd...
Cybersecurity

Kali Linux 2024.1 Release (Micro Mirror)

Hello 2024! Today we are unveiling Kali Linux 2024.1. As this is our the first release of the year, it does include new visual elements! Along with this we also have some exciting new mirrors to talk about, and of course some package changes - both new...
Cybersecurity

Kali Linux DEI Promise

Last month we were privileged to be invited by GitLab to participate in the introduction of GitLab’s DEI Badging integration. Diversity, Equity, and Inclusion (DEI) badging is an initiative that the Community Health Analytics in Open Source Softw...
Cybersecurity

The great non-free-firmware transition

TL;DR: Dear Kali user, when you have a moment, check your /etc/apt/sources.list, and add non-free-firmware if ever it’s missing.
Programmatically speaking:
kali@kali:~$ sudo sed -i 's/non-free$/non-free non-free-firmware/' /etc/apt/sources.list

...
Cybersecurity

Kali Linux (is) Everywhere!

One of the primary goals of Kali Linux is to put the tools you need as close to you as possible. Over the years this has resulted in a number of different ways to get Kali, but not everyone knows about all the options! In this post we are going to do a...
Cybersecurity

Remotely Accessing Secure Kali Pi

In Secure Kali Pi (2022), the first blog post in the Raspberry Pi series, we set up a Raspberry Pi 4 with full disk encryption. We mentioned that we can leave it somewhere as a drop box. This brought up the question, “If it is not on my local net...
Cybersecurity

Kali Community Themes




The following blog post was written by a moderator on the Kali Linux & Friends Discord server, Tristram. A massive thank you to Tristram for writing this blog post and to all of the participants!


This past summer we held our first community ev...
Cybersecurity

Secure Kali Pi (2022)

This is the first part of a 3 part series of blog posts surrounding Kali usage on Raspberry Pi devices. This first post will cover enabling Full Disk Encryption (FDE) on a Raspberry Pi, part two will cover remotely connecting to it, and finally, part t...
Cybersecurity

Kali Linux in Linode’s Cloud

A few months ago, Linode reached out to us asking “What would be needed in order to get Kali added to Linode?”. We explained to them how all the build-scripts that we used to create Kali are public, and what their different options and conf...
Cybersecurity

Kali Unkaputtbar


Adjective (German)
unkaputtbar (comparative unkaputtbarer, superlative am unkaputtbarsten)
From un- + kaputt + -bar.

(colloquial) indestructible, unbreakable
Diese Flasche ist unkaputtbar. ― This bottle is indestructible.


With our 2022.1 release, w...
Cybersecurity

Kali Linux 2021.4 Release

With the end of 2021 just around the corner, we are pushing out the last release of the year with Kali Linux 2021.4, which is ready for immediate download or updating.
The summary of the changelog since the 2021.3 release from September 2021 is:

Impro...
Cybersecurity

Kaboxer – Kali Applications Boxer

On and off for the last 18 months we have been working on Kaboxer, and just before Kali 2021.1, it is ready to say “Hello World” (then it will start shipping you applications).
TL;DR - What is this?
What is the name about, Kaboxer? Kali App...
Cybersecurity

Ampere Hardware & Kali Linux

When Ampere partnered with Debian, this caught our eye. We were aware that our current ARM cloud provider was soon ending support for arm64 servers (which we use for our build daemons).
At Kali Linux, one of the things which is important to us, is that...
Cybersecurity

Kali Linux + Mr. Robot ARG Society

Many of you may have known about the show Mr Robot and its unique connection to Kali Linux. But there is a little bit more that we have not talked about due to NDAs. But it appears the mystery is over, the red tape has been removed, and we now wanted t...
Cybersecurity

Win-KeX Version 2.0

We have been humbled by the amazing response to our recent launch of Win-KeX. After its initial release, we asked ourselves if that is truly the limit of what we can achieve or could we pull off something incredible to mark the 25th anniversary of Hack...
Cybersecurity