Kali Linux 2020.1 Update is Here

Kali Linux 2020.1 update is released. We can download it from here.

The brief feature summary for this release are following:

• Non-Root user by default 
• Kali single installer image
• Kali NetHunter Rootless
• Improvements on the theme & kali-undercover mode
• New tools 

Non-Root Default User

Throughout the history of Kali (and its predecessors BackTrack, WHAX, and Whoppix), the default credentials have been root/toor. This is no more. 

Kali is no longer using the superuser account, root, as default in Kali 2020.1. The default user account is now a standard, unprivileged, user.

For more of the reasons behind this switch, please see their previous blog post. 

As you can imagine, this is a very large change, with years of history behind it. As a result, if you notice any issues with this, please report them on the bug tracker.

root/toor is dead. Long live kali/kali.

Kali As Main OS

So with this, should we use Kali as our daily driver, as the primary OS? 

It’s up to us.
There wasn’t anything really stopping us before, we just don’t encourage it. We still don’t. But its a helping hand for the people who are familiar with Kali enough.

Why do we not recommend it?
Because the developers are unable to test for that usage pattern and they don’t want the influx of bug reports that would come with it.
If some of us are brave enough to try it, they may wish to switch the branch from “rolling” to “kali-last-snapshot” to try and be more stable.

Kali Single Installer Image

Developers took a good hard look at the usage of Kali, what images are actually downloaded, how they are put to use, and so on. With this information in hand, they decided to completely restructure and simplify the images they release. Going forward, they will have an installer image, a live image, and a network installer image.

These changes should allow for easier selection of the right image for you to download, while increasing flexibility on installation and further reducing download sizes.

The Installer Image

• This is what we recommend for most users that want to install Kali on their system
• Doesn’t require a network connection (aka offline install) for the default package selection
• Able to select desktop environment to install (Previously there was a separate image for each DE: XFCE, GNOME, KDE, etc.)
• Able to select tools to install at install time
• Can’t be used to boot a live system. This is just an installer image.
• Filename:  kali-linux-2020.1-installer-<amd64|i386>.iso

We are no longer offering separate images for every desktop environment (DE). Instead, we now have a single image with the option to pick your DE during installation. This means there isn’t a download link for Xfce (which is our default option since 2019.4), GNOME, KDE, MATE or LXDE DEs. Just one image to rule them all.

At install time, you may select the tools included with Kali (or none at all)! This gives you more control over what you what. We understand that Kali comes with more tools than some people use, or they have their own select tools they use. Now they can install Kali without any metapackages, giving them a bare Kali installation, so they can individually select what tools they want (rather than groups).

The default image contains the kali-desktop-xfce and kali-tools-default packages, allowing for an offline installation of Kali (as it always has been). Selecting any non-default tools will require a network connection.

Note: “Kali Live” is not included in this image. If you wish to use live mode, you’ll need the live image.

Network Install Image

• Smallest image to download
• This requires a network connection to install
• During setup, it will download the latest packages every time it’s used
• Able to select desktop environment to install
• Able to select tools to install
• Can’t be used to boot a live system. This is just an installer image.
• Filename: kali-linux-2020.1-installer-netinst-<amd64|i386>.iso

It’s a very small image, containing only enough to install the base system, but behaving exactly like the full installer image, allowing you to install everything that Kali offers, provided that you have enabled network connectivity.

Live Image

• Its primary use is to be able to run Kali, without installing it
• But it also contains an installer, behaving like the “Network Install Image” described above
• Filename: kali-linux-2020.1-live-<amd64|i386>.iso

“Kali Live” hasn’t been forgotten about – it’s just moved to its own image. This allows you to try Kali without installing it and is perfect for running off a USB stick. You can install from this image, however, it will require a network connection (this is why we suggest the stand-alone install image for most users).

Alternatively, we can generate your own image, in particular if we want to use another desktop environment instead of our default Xfce. It’s not so hard as it sounds!.

ARM Images

We have noticed a bit of a change in the ARM images starting with our 2020.1 release. There are fewer images available for download.

The scripts are still updated, so if an image doesn’t exist for a machine you use, you will have to create it by running the build script on a Kali machine.

Kali Linux ARM images for 2020.1 will still run as root by default.

The sad news that a lot of people didn’t want to hear… an image for the Pinebook Pro isn’t included in the 2020.1 release. They are still working on getting it added, and as soon as it is ready we will post it.

NetHunter Images

Our mobile pen-testing platform, Kali NetHunter, has also had some new improvements. You are now no longer required to root your phone in order to run Kali NetHunter, but that does come with some limitations.

To suit everybody’s needs, Kali NetHunter now comes in the following three editions:

• NetHunter – Needs rooted devices with custom recovery and patched kernel. Has no restrictions. Device specific images are available here.
• NetHunter Light – Needs rooted devices with custom recovery but no custom kernel. Has minor restrictions, i.e. no WiFi injection or HID support. Architecture specific images are available here.
• NetHunter Rootless – Installable on all stock standard, unmodified devices using Termux. Some limitations, like lack of db support in Metasploit and no root permissions. Installation instruction is available here.

The NetHunter documentation page includes a more detailed comparison.
Each NetHunter edition comes with both the new “kali” user as well as root. KeX now supports multiple sessions so you can opt to run your pentest in one whilst writing a report in another.

Please note that due to how Samsung Galaxy devices function, the non-root user might not be able to run sudo but has to use su -c instead.

One of the peculiarities of the new “NetHunter Rootless” edition is that the default non-root user has almost full privileges in the chroot due to how proot containers work.

Theming

With the last release, Kali made a major change switching from GNOME to Xfce. That wasn’t the end for us; they have kept on going with the design work, and have more updates:

GNOME There is now a new theme for GNOME users and as an additional bonus, there is a light and dark theme!

Tools Kali 2020.1 update giving the tools that we are very fond of a makeover too! We are slowly working through our collection, refreshing them and adding in new icons.

Image copyright kali.org

Kali-Undercover

Kali-undercover got a huge sucess on the comiunity. So carrying on from Kali 2019.4 release, Kali-undercover now starts to feel even more like Windows to help blend in.

New Packages

Kali Linux is a rolling distribution, so it gets updates as soon as they are available, rather than waiting for “the next release”. So since the last release, we have the normal tool upgrades as well as a few new tools added, such as: cloud-enum, emailharvester, phpggc, sherlock, splinter.

We have a few new (kali-community-wallpapers) and old (kali-legacy-wallpapers) wallpapers to offer up if you want to customize or are feeling a little a little nostalgic.

Python 2 End Of Life

As a reminder, Python 2 has reached “end of life” on the 1st of January 2020. What this means is, Kali is removing tools that depend on Python 2. Why? Because they are no longer being maintained, they are not receiving updates, and they need replacing. The pentesting landscape is a dynamic field that is forever changing. It’s time to keep up. The developers are doing their best to find alternatives that are actively worked upon.

Download Kali Linux 2020.1

Fresh images Why are you waiting? Start downloading now!