Kali Linux 2021.4 Released – New Themes and Tools, name-that-hash, truffleHog, S3Scanner, KDE Plasma 5.23
Reading Time: 4 Minutes
Offensive Security just released their last Kali Linux version, three months after it’s last release, 2021.3, the 2021.4 is here. Coming with support for the Raspberry Pi Zero 2 W, desktop/theme enhancements, Kaboxer theming and more tools.
Kali Linux 2021.4 Release
With the end of 2021 just around the corner, they are pushing out the last release of the year with Kali Linux 2021.4, which is ready for immediate download or updating.
The summary of the changelog since the 2021.3 release from September 2021 is:
- Improved Apple M1 support
- Wide compatibility for Samba
- Switching package manager mirrors
- Kaboxer theming
- Updates to Xfce, GNOME and KDE
- Raspberry Pi Zero 2 W + USBArmory MkII ARM images
- More tools
Kali on the Apple M1
They announced in Kali 2021.1, that they supported installing Kali Linux on Parallels on Apple Silicon Macs, well with 2021.4, they now also support it on the VMware Fusion Public Tech Preview thanks to the 5.14 kernel having the modules needed for the virtual GPU used. They also have updated the open-vm-tools package, and Kali’s installer will automatically detect if you are installing under VMware and install the open-vm-tools-desktop package, which should allow you to change the resolution out of the box. As a reminder, this is still a preview from VMware, so there may be some rough edges. There is no extra documentation for this because the installation process is the same as VMWare on 64-bit and 32-bit Intel systems, just using the arm64 ISO.
As a reminder, virtual machines on Apple Silicon are still limited to arm64 architecture only.
Extended Compatibility for the Samba Client
Starting Kali Linux 2021.4, the Samba client is now configured for Wide Compatibility so that it can connect to pretty much every Samba server out there, regardless of the version of the protocol in use. This change should make it easier to discover vulnerable Samba servers “out of the box”, without having to configure Kali.
This setting can be changed easily via the command-line tool kali-tweaks. In the Hardening section, one can choose the value Default instead, which reverts back to Samba’s usual default, and only allow using modern versions of the Samba protocol.
As one can see on this screenshot, there’s also a similar setting for OpenSSL. You might want to refer to the 2021.3 release announcement for more details on this setting.
Easy Package Manager Mirror Configuration
By default, when a Kali system is updated, the package manager (APT) downloads packages from a community mirror nearby. But did you know that it’s also possible to configure Kali to get its package from the CloudFlare CDN? To be honest, this is old news. But what’s new is that you can now use kali-tweaks to quickly configure whether APT should use community mirrors or the CloudFlare CDN.
So which one is best, community mirrors or CloudFlare CDN? There’s no good answer. The time that it actually takes to update Kali can vary greatly and depends on many factors, including the speed of your Internet connection, your location, and even the time of day, if ever you live in a place where Internet traffic jam occurs at rush hour. The point is: if ever Kali updates are slow, the best you can do is to try to switch from community mirrors to CloudFlare CDN, or the other way round, and find what works best for you. And with kali-tweaks, it’s never been easier!
See Also: Offensive Security Tool: GoMapEnum
Kaboxer Theme Support
With the latest update of Kaboxer tools no longer look out of place, as it brings support for window themes and icon themes (placed respectively inside /usr/share/themes and /usr/share/icons). This allows the program to properly integrate with the rest of the desktop and avoids the usage of ugly fallback themes.
Here is a comparison of how zenmap (zenmap-kbx package) looks with the default Kali Dark theme, compared to the old appearance:
See Also: Hacking stories – Operation Troy – How researchers linked the cyberattacks
New Tools in Kali
It would not be a Kali release if there were not any new tools added! A quick run down of what’s been added (to the network repositories):
- Dufflebag – Search exposed EBS volumes for secrets
- Maryam – Open-source Intelligence (OSINT) Framework
- Name-That-Hash – Do not know what type of hash it is? Name That Hash will name that hash type!
- Proxmark3 – if you are into Proxmark3 and RFID hacking
- Reverse Proxy Grapher – graphviz graph illustrating your reverse proxy flow
- S3Scanner – Scan for open S3 buckets and dump the contents
- Spraykatz – Credentials gathering tool automating remote procdump and parse of lsass process.
- truffleHog – Searches through git repositories for high entropy strings and secrets, digging deep into commit history
- Web of trust grapher (wotmate) – reimplement the defunct PGP pathfinder without needing anything other than your own keyring
Continue to read the full blog post here.
Recent News
Kali Linux 2024.4: 14 New Tools, Python 3.12, and Raspberry Pi Enhancements
Glutton: A New Modular PHP Backdoor
Pumakit: A Stealthy Linux Rootkit Targeting Pre-5.7 Kernels
Exploiting Windows UI Automation: A New Stealthy Attack Vector
Hackers Exploit Zero-Day in Cleo MFT Software, Enabling RCE and Data Theft
Critical OpenWrt Vulnerability Allowed Potential Malicious Firmware Distribution via Attended Sysupgrade
Novel QR Code Exploit Circumvents Browser Isolation Security Measures
New DroidBot Malware Targets Cryptocurrency and Banking Apps in Europe
New PhaaS ‘Rockstar 2FA’ Bypasses MFA to Hijack Microsoft 365 Accounts
Hackers Exploit Godot Game Engine with New Malware, Infecting 17,000 Systems in 3 Months
