Kali Linux launched Your 2025.2 version, consolidating its position as one of the leading specialized distributions for penetration testing and computer security. This update, the second of 2025, comes three months after the earlier version and brings with it a series of relevant improvements for both advanced users and those taking their first steps in the world of ethical hacking.
On this occasion, the Offensive Security team has focusing on improving usability and accessibility Kali, reorganizing its internal structure, adding cutting-edge tools, and improving support for different desktop environments and hardware. The security community had been highly anticipating this release, and the new version hasn't disappointed with its profound changes.
Menu Evolution in Kali 2025.2: Now More Structured
One of the most notable changes in Kali Linux 2025.2 It is the complete transformation of its main menu, which now follows the structure MITRE ATT & CKThanks to this redesign, it's easier and faster to find the right tool for the task or stage of a security audit, making it easier for both professionals and beginners.
Incorporation of new tools for pentesting
This version also stands out for the incorporation of thirteen new applications Designed to cover various aspects of security analysis and IT auditing. New additions include utilities such as Azurehound, focused on data collection in Azure environments; binwalk3, specialized in firmware analysis; bloodhound-ce-python, for advanced data ingestion; and bopscrk, useful for creating smart dictionaries for brute-force attacks.
The list is completed with other new features such as chisel-common-binaries, a package with precompiled binaries; crlfuzz, which allows scanning for CRLF vulnerabilities; donut-shellcode for position-independent shellcode generation and execution; and gitxray, a utility for analyzing repositories and contributions on GitHub.
There are also applications such as ldeep (focus on LDAP enumeration), ligolo-ng-common-binaries (tools for traffic tunneling), rubeus (interaction with Kerberos), sharphound (harvesting for BloodHound CE) and tinja (web template injection testing from the CLI). The variety of tools responds to the growing demand for more specialized utilities adapted to increasingly complex environments.
Improvements to desktops, devices, and user experience
Although Xfce remains the default desktop environment, this release introduces support for GNOME 48 —including a VPN IP extension that displays the IP associated with the VPN tunnel directly in the dashboard—and to KDE Plasma 6.3This way, users can choose the desktop that best suits their daily workflow, enjoying a more polished and customizable experience.
For those using Kali on hardware like Raspberry PiThere's good news: the distribution image for Raspberry Pi 5 now integrates with standard releases, without requiring a specific image. The update also adds kernel support. Linux 6.12LTS, support for the brcmfmac nexmon driver and a new udev rule that allows the use of vgencmd without root privileges, thus simplifying several administrative tasks.
Other relevant new features in Kali Linux 2025.2
Among the rest of the improvements, Kali NetHunter CARsignal makes its debut as a car hacking toolkit; BloodHound receives a major update that improves performance and interface; xclip pre-installed clipboard management and new community-contributed wallpapers. The changes aim to modernize the distribution and adapt it to current demands in both functionality and visual appearance.
Downloading Kali Linux 2025.2 It is available from the official portal in several versions: 64-bit, ARM, virtual machines, cloud, WSL or even for mobile devices. If you already have Kali installed, simply run the commands in the terminal sudo apt update && sudo apt full-upgrade to access all the new features without having to reinstall the system.
This update consolidates Kali Linux as a benchmark option for security testing, including improvements that make it easier for all types of users. The integration of new tools, a reorganized menu, and renewed support for different desktops and hardware demonstrate a commitment to keeping the distribution at the forefront of pentesting and computer forensics.
