Release of distribution for Kali Linux security study 2022.3

presented the release of the distribution Kali Linux 2022.3 designed to test systems for vulnerabilities, audit, analysis of residual information and identify the consequences of attackers. All original achievements created within the distribution framework are distributed under the GPL license and are available through the public git-repository . To download prepared several ISO-images, size 432 MB, 2.9 GB, 3.4 GB and 9.8 GB . The assemblies are available for I386, X86_64, ARM (ARMHF and Armel, Raspberry Pi, Banana Pi, ARM Chromebook, Odroid). By default, the XFCE desktop is offered, but KDE, GNOME, MATE, LXDE and Enlightenment E17.

Kali includes one of the most complete collections of tools for specialists in the field of computer security: from means for testing web applications and penetrating into wireless Networks before reading data from identification RFID chips. The kit includes a collection of exploites and more than 300 specialized utilities for checking safety, such as Aircrack, Maltego, Saint, Kismet, Bluebugger, BTCRACK, BTSCANNER, NMAP, P0F. In addition, the distribution includes a means to accelerate passwords (Multihash Cuda Brute Forcer) and WPA keys (PYRIT) through the use of CUDA and AMD Stream technologies that allow the use of NVIDIA and AMD GPUs to perform computing operations.

In the new issue:

  • For training tools with safety and conducting experiments to identify vulnerabilities, the packets include dvwa and vjuice shop with examples of web applications containing typical vulnerabilities.
  • Assembly of images for Virtualbox in VDI format
    (+ metadata .vbox), which is native to VirtualBox and is better compressed compared to the universal OVA format. The formation of weekly updated images for virtual machines collected on the basis of the Kali-Rolling branch.
  • was implemented.

  • Added new utilities:
  • defectdojo – Management of information about vulnerabilities.
  • ppsploit – Freimvork for leaving the laying after vulnerability.
  • shallfire – tools for operating vulnerabilities of the class RFI (Remote File InClusion, Lfi (Local File InClusion) and CI (CI Sommand Injection).
  • sprayingtoolkit – a utility for the attack “Password Spraying” (Selection of Login on a standard password) for Lync/S4B devices , Owa and O365.
  • in assemblies for the architecture of ARM for all RASPBERRY Pi boards, the Linux 5.15 core.
  • /Media reports.