FlagThis

Kali Linux has announced the release of version 2025.1a, marking the first update of the year. This version includes a new tool called Hoaxshell, along with desktop environment enhancements and a refreshed theme. The update also features Kali NetHunter updates. The distribution is tailored for cybersecurity professionals, ethical hackers, and those involved in penetration testing and security audits.

Kali Linux 2025.1a introduces Hoaxshell, a Windows reverse shell payload generator designed for stealthy penetration testing. Hoaxshell leverages HTTP(S) protocols to establish a beacon-like reverse shell, allowing commands to be executed on target machines while evading traditional detection methods. The tool generates a unique connection string from the IP address and port, using a Base64 encoded PowerShell script to obfuscate the payload. This allows penetration testers to execute payloads without triggering security alerts.

ImgSrc: thedefendopsdia

References :

• infosec.exchange: Kali Linux has released version 2025.1a, the first version of 2025, with one new tool, desktop changes, and a theme refresh.
• The DefendOps Diaries: Kali Linux 2025.1a: Unleashing Hoaxshell for Stealthy Penetration Testing
• www.bleepingcomputer.com: Kali Linux 2025.1a released with 1 new tool, annual theme refresh
• www.helpnetsecurity.com: Kali Linux 2025.1a drops with theme refresh, Kali NetHunter updates

Classification:

• HashTags: #KaliLinux #SecurityUpdate #EthicalHacking
• Company: Kali
• Target: Security Professionals
• Product: Kali Linux
• Feature: Theme Refresh
• Malware: Hoaxshell
• Type: ProductUpdate
• Severity: Informative