Kali Linux

My main use case for Kali Linux  is to develop a product, secure our network, and conduct penetration testing, as well as model designing. I work on a red team, and we frequently use Kali Linux  for penetration testing because it has many open-source tools.

Recently, I used Kali Linux for an OWASP model to conduct a vulnerability scan and penetration testing of one of our retail websites. We attempted to penetrate the system to identify any vulnerabilities using a few tools in Kali Linux such as Nmap  and John Miller, which are tools for password cracking, penetration testing, and vulnerability scanning.

Kali Linux is a good integrated tool for OSINT, open-source intelligence. As a certified ethical hacker on a red team, I can say that to protect our infrastructure, we usually use Kali Linux for sandboxing and penetration testing.

In my day-to-day activities, I rely most on the variety of GitHub  models available in the public domain. We can import those repositories into Kali Linux to develop our machine learning model, which helps identify network threats by integrating with our SIEM  tool, such as a GenAI SIEM  tool.

In my day-to-day activities, Kali Linux significantly helps in reducing vulnerabilities because it has open-source tools. I do not need to rely on costly licensing, and I can easily integrate those tools into our infrastructure. For the vulnerability tools, we were using Nmap  and WPScan, which performed well without needing to purchase expensive solutions.

Kali Linux functions as a platform, not just a tool. It can run other security tools quite easily, but some cloud-related products, such as Sentinel , cannot run directly on it; instead, we can deploy models created with it.

We always choose Kali Linux for penetration testing, as it is undoubtedly a market leader.

Kali Linux runs efficiently with minimum resources. We use it on-premises and can add resources as needed without any bloat or unwanted software; it is lightweight compared to Windows and scales well, especially in a VM environment.

The best features Kali Linux offers, in my experience, include being a Linux-based appliance that is hard to hack, and having a wide range of products for every possible penetration test. It has tools for vulnerabilities related to password and website vulnerabilities, SQL injection, and network vulnerabilities such as ARP spoofing and MAC flooding. The best part is that it is integrated with Python, allowing me to develop my own models using GitHub . It is an open-source tool and does not require a license, so I can customize it based on my needs.

A hidden gem I found in Kali Linux is that its tools are continually updating. One important thing is the signature check related to VirusTotal ; I can use Kali Linux as a sandbox for virus-related scanning. It is a crucial tool for ethical hackers, and it updates its products regularly, providing numerous tools for password cracking.

Kali Linux positively impacts my organization by aiding in vulnerability scanning and penetration testing. The main benefit is its variety of tools, such as John for penetration testing.

Kali Linux can be improved if its GUI were more user-friendly. The challenge is with the GUI and related documentation since most users are accustomed to Windows, and making it easier for ethical hackers or newcomers would be beneficial.

For performance and compatibility, Kali Linux is quite compatible with almost every ethical hacking and open-source tool. The only issue I have is with the GUI part, which I have already mentioned.

The learning curve for Kali Linux is steep for new users. They need to learn basic Linux, network basics, and Windows basics before starting with Kali Linux, as it is not an independent tool.

The community support and documentation for Kali Linux are generally good, but public forums could improve. Documentation is only well-supported on the OS side, while functionality and tool-related support can be lacking.

Staying current with updates and patches in Kali Linux is not that easy. While applying patches is straightforward, knowing about them can be challenging.

I have been using Kali Linux for 13 years. I started my career with Kali Linux, so I would say this is a 13-year journey.

Kali Linux is quite stable. We utilize snapshots for penetration testing, allowing us to revert back if anything goes wrong, which is one of its good features.

Kali Linux runs efficiently with minimum resources. We use it on-premises and can add resources as needed without any bloat or unwanted software; it is lightweight compared to Windows and scales well, especially in a VM environment.

Customer support for Kali Linux relies heavily on community documentation due to its open-source nature. While it is not as straightforward to get help compared to something like Microsoft, it is understandable given the nature of Kali Linux.

I assess that security cannot be calculated solely based on cost. A single malware or ransomware attack can be exceedingly expensive, so we utilize Kali Linux to safeguard our infrastructure.

There are many tools I use, but Kali Linux has always been a foundational platform. Currently, we also employ cloud tools such as Sentinel  and CrowdStrike, but neither can replace the functionality of Kali Linux.

My advice for those considering Kali Linux is to view it as a platform rather than just a tool. It offers many open-source tools suited to various needs, including integration with Python-related GitHub models.

I have explained everything I wanted to share, and I would rate this review a 9 out of 10.

I use Kali Linux  mostly as a command-based tool. I have been using Kali Linux  for the last 13 years for vulnerability scans, network scans, site vulnerability checks, and penetration testing.

I use Kali Linux for vulnerability scanning using Metasploit  and password cracking tools including John the Ripper and Hydra, as well as for network mapping and scanning using Wireshark  and Nmap .

As a security engineer, I use Aircrack-ng for wireless security checks, Wireshark  for monitoring in the development of our model, and Nmap  for port scanning and other vulnerability-related tasks.

I use Kali Linux for password vulnerability checks, password cracking, site vulnerabilities, and wireless checks, addressing weak points in my organization.

Kali Linux is an open-source platform that provides all available open-source tools without any licensing cost, including Nmap for network scans, Maltego for open-source intelligence, Aircrack-ng for wireless security, and John the Ripper and Hydra for password attacks. Metasploit , which I frequently use for vulnerability scanning and for sniffing and spoofing, is also available. These powerful tools are freely accessible with Kali Linux, providing both security and cost savings.

I use Metasploit for vulnerability scanning of a website and SQL injection checks, examining available CVE-related information to identify any vulnerabilities, because Metasploit is one of the most significant tools in Kali Linux used for this purpose.

Kali Linux is the best operating system for ethical hackers, both for red and blue teams, allowing me to check if my system is secure against any type of attack, including network and email attacks and vulnerability-related issues. Its wide range of tools, all at no cost, makes it a unique product and the preferred choice for ethical hackers and red team members.

The tool count in Kali Linux keeps growing with many forensic tools now having GUI-based options including Autopsy, and the count is still increasing, making it a dynamic platform rather than a static one.

Human factors are the weakest link, so conducting password checks in a controlled sandbox allows me to stay ahead of hackers. By maintaining a strong network and secure user passwords, I mitigate risks, as neglecting them can lead to costly ransomware attacks. Kali Linux helps me maintain security, trust, and cost-effectiveness in my operations.

I use Kali Linux mostly as a command-based tool, and improving its GUI would greatly enhance user experience since usability and user interface are critical features. Additionally, support for newer hardware, including upcoming Wi-Fi adapters and the rolling release model, would be beneficial. The abundance of tools can sometimes pose a challenge for users to identify the best tool for their needs, so enhancing documentation and community support could also improve the experience.

The tool list keeps increasing, and while each tool has its documentation, mastering all tools is challenging due to their command-line nature. If there were more tools with user-friendly interfaces that integrated easily with Linux commands, this would make Kali Linux even more useful.

Despite its challenges with documentation and user interface, with low investment, I gain almost everything needed for a security team, which amounts to a significant return on investment.

I have been using Kali Linux for the last 13 years for vulnerability scans, network scans, site vulnerability checks, and penetration testing.

Kali Linux is a stable product because it is Linux-based and I rarely encounter vulnerabilities or stability issues.

Kali Linux supports almost every virtual environment, ranging from desktops to virtual boxes and VMware Workstation , handling growing needs and larger environments with ease.

I have always used Kali Linux from the beginning, but I am aware of other options, such as Windows-based solutions, available.

I have not transitioned to other solutions and continue using Kali Linux.

The primary return on investment with Kali Linux is enhanced security, as it offers countless tools that effectively secure my infrastructure. Furthermore, it is a cost-effective solution despite challenges with documentation and user interface. With low investment, I gain almost everything needed for a security team, which amounts to a significant return on investment.

Kali Linux is deployed on-premises in my organization.

Metasploit stands out as a powerful option that is available at no cost. This leads to significant savings, as using other solutions including Windows or cloud-based options incurs licensing costs. With Kali Linux, I achieve both security and savings, creating a win-win situation for the organization.

I would rate this product an 8.

The main use case for Kali Linux  is to test my own applications to ensure that they are secure, so I have pursued ethical hacking for my own applications.

I typically set up tests by using tools which are out of the box in Kali Linux  such as Nmap  for port scanning, and for the applications that I build, I am trying to identify the underlying hardware that they are running on, checking for any open ports which could introduce security vulnerabilities into my application. I also have sent packets to my web applications that I built previously, such as a website that I self-host, and I use Wireshark  for packet analysis to see if I can understand information about the request, such as where it is coming from.

From using Nmap  for port scanning, I have probably identified about 10% security improvements in my own applications just by closing ports which I did not realize were open but did not need to be.

The best features Kali Linux offers, in my opinion, include being maintained by a reputable group, Offensive Security, and it is very much seen as the industry standard OS for ethical hacking. Because of a large user base, there have been many developments to make Kali Linux an all-in-one solution. I understand that Kali Linux is preloaded with maybe 500 security tools, so for anything from web security, such as using Burp  Suite, to using Metasploit  for exploit frameworks, I can use Kali Linux for anything ethical hacking based, making it really an all-in-one solution.

Kali Linux has impacted my organization positively because it has allowed for the better security of my applications. The benefit here from security is multi-fold, including financial benefits because if the chance for exploitation is lower, then the chance to rack up server costs by being exploited is also lower, which is great, and also reputationally and from compliance perspectives, having that increased security benefits me.

The only real limitation I can see with Kali Linux is the steep learning curve of using it. Even though the tools are pre-installed, it is definitely not point and click. I need specialized knowledge of how to use it, and while the documentation is very good, I feel that for some users, it could be potentially overwhelming and also potentially dangerous as I could maybe damage networks if I do not know what I am doing. If there were video courses attached to how to safely use it, especially for absolute beginners with no previous experience using Linux operating systems, I think that could be very useful.

I have used Kali Linux for around one year.

Kali Linux is very stable. It is maintained very well by Offensive Security, and due to the huge user base that uses it, it is kept up to date regularly.

I would describe Kali Linux's scalability as very scalable because I can deploy it on a range of different machines, whether that is my laptop or using maybe Raspberry Pi or Android. I can deploy it on all these different types of devices, and with it being open source, it is very easy to download over the internet.

I have never interacted with customer support for Kali Linux before, but I imagine if support was needed, it would be very good because their documentation is good.

My experience with pricing, setup cost, and licensing has been very good. The cost is free to download, so that is very good.

I have seen a return on investment with security improvements since using Kali Linux, and money saved because it is an open-source tool and free to use. There are no financial costs needed upfront, other than maybe if I am booting it from a USB, I might potentially need to buy that USB. The money saved from using Kali Linux means if I am able to make my applications more secure, I could easily see financial improvements.

The cost is free to download, so that is very good.

Out of all those built-in tools and features, I find myself using Wireshark  quite a lot for packet analysis, and I have tried to bombard my web application with a large number of packets. I then use Wireshark to examine information regarding those packets, such as the geolocation of where they have come from and how many packets per second are trying to hit the application. I found that quite useful, especially when I am trying to understand the scalability and elasticity of my application. I also use cloud monitoring tools such as Grafana  and built-in tools with Google Cloud  in combination with Wireshark, which enables me to analyze packets and scalability from different angles.

My advice to others looking into using Kali Linux is to go ahead and use it because it is free. I can download it and give it a try, and there is a lot of advice online about how to use it. I rate this product a 10 out of 10.

My main use case for Kali Linux  is for reconnaissance and VAPT  purposes like ethical hacking, and when I have to go through long scripts running to scan the targets. For reconnaissance or VAPT , a quick specific example is that for subdomain enumeration, I use tools such as Subdomainer and Sublist3r in Kali. Sometimes I also use Nuclei templates for the automation purpose of the VAPT process.

Kali Linux  comes with pre-installed ethical hacking tools in the terminal that you can use directly. You do not need to separately install each tool and its dependencies. All of them come with the same OS, which makes it very useful.

The best features that Kali Linux offers are that it is faster, has a better response, and has fewer system requirements to utilize it. When I run a script on a GUI-based automation tool, it typically takes around ten to fifteen minutes. However, while using the CLI feature in Kali Linux, it gives me the output within one to two minutes. The performance is also better due to the ARM architecture that Kali comes with.

Kali Linux has positively impacted my organization by providing all the tools and many methodologies we need for ethical hacking or VAPT requirements in a combined bundle in one OS. We do not need to go to other platforms to download separate tools and waste a lot of time doing that. It basically shortens that period of time.

While Kali Linux has gotten better over the past years, it could be improved if it was bundled in a CLI-only pack. Currently, I use an ISO pack in a VM. A CLI version of Kali that comes with all dependencies pre-installed would be much better. I do not feel it requires anything else. I am currently satisfied with whatever is available.

I have been using Kali Linux for around two years.

In my experience, Kali Linux is quite stable. Sometimes dependency issues come up, but if you are a technical person, you can handle it. That is not much of a task.

Kali Linux is quite scalable. You can use it on cloud, VPS, and on-premises. I can say it is scalable. We can share the same VPS among peers using SSH. They can also work on that. It also has a good load balancing capability, so it is good in the scalability part.

I have not gone through customer support for Kali Linux, so I cannot give much of an idea about it. I never needed it.

I previously used Linux, but the tools which I required for the VAPT part did not get pre-installed in that. I switched back to Kali Linux, as it was also suggested by my peers to use it.

For licensing, we do not require any. For a small team, we do not need any licensing. We can directly install Kali Linux. It is open source. We can install it on our system and it is ready to use. All the tools come with it, so we do not need to do any complicated tasks. It is better.

I save around eight hundred to nine hundred dollars monthly by using Kali Linux. This is because the equivalent on-market tools have quite hefty charges. They are private and require a paid subscription to use. In Kali Linux, similar open-source tools are available for the same purpose.

Before choosing Kali Linux, I evaluated other options such as Arch Linux and Parrot  OS. I compared these three platforms and then chose Kali Linux. I think it is the best.

If you want to use Kali Linux, my advice is to explore other options, compare them, and then know your needs before choosing Kali Linux. If you are looking for faster, better performance or scalability, then Kali Linux is the best. If you want a better GUI or something else, then you can go for Arch or Parrot  OS. Those operating systems are also in the market. However, the benefit Kali Linux provides and its community is also good, so Kali Linux is far better than others. I have given this review a rating of eight point five out of ten.