Kali Linux 2025.3 Launches With Fresh Features and 10 New Pentesting Tools

Kali Linux 2025.3 has arrived, bringing a wave of improvements, updated firmware support, and a suite of ten new security tools.

This release builds on the June 2025.2 update by refining core workflows, extending wireless capabilities, and preparing the distribution for emerging architectures.

Whether you rely on virtual machines, Raspberry Pi devices, or mobile pentesting platforms, Kali 2025.3 offers streamlined configurations and powerful additions designed to boost productivity.

The Kali team revamped how virtual machine images are created by overhauling Packer and Vagrant integration.

Packer scripts now use the latest version two standards, ensuring consistency across platforms when generating VM templates.

Pre-seed example files have been audited and standardized so that automated installations run smoothly with the updated installer configurations.

Meanwhile, Vagrant build-scripts were enhanced to apply custom tweaks automatically, making it simpler to spin up Kali environments on any supported hypervisor.

This refactoring aims to reduce manual upkeep, allowing users to launch fresh, fully configured virtual labs in minutes. For detailed instructions on the new workflow, refer to the Kali Vagrant Rebuilt blog post.

Wireless pentesters will welcome the return of Nexmon support for Broadcom and Cypress chipsets, now including the Raspberry Pi 5.

Nexmon’s patched firmware unlocks monitor mode and packet injection on devices whose stock drivers lack these functions.

This update restores capabilities that were temporarily unavailable after earlier kernel changes. At the same time, Kali 2025.3 formally drops support for the ARMel architecture.

Following Debian’s decision to end ARMel packaging after the “trixie” release, Kali will no longer maintain builds for legacy devices such as the original Raspberry Pi and Raspberry Pi Zero W.

Resources freed by this change are being reallocated toward future RISC-V support.

A minor but handy improvement arrives for Xfce users in the form of an enhanced VPN IP panel plugin.

The plugin now lets you select which network interface to monitor, making it easy to view and copy the IP address of any VPN connection rather than only the first.

Ten fresh tools have joined the Kali repositories in this release. Highlights include Caido’s desktop GUI and CLI for web security auditing, Detect It Easy for file type identification, Gemini CLI which brings an AI agent to your terminal, and krbrelayx for Kerberos relaying attacks.

Other additions such as ligolo-mp, llm-tools-nmap, patchleaks, and vwifi-dkms empower testers with advanced pivoting, LLM-driven network scans, patch analysis, and dummy Wi-Fi network creation.

On the mobile front, Kali NetHunter sees key updates. A budget-friendly device now supports internal monitor mode with injection on both 2.4GHz and 5GHz bands.

The collaboration behind the Samsung Galaxy S10 port brings patched Broadcom firmware, a tailored NetHunter kernel, and a stable ARM64 version of the Hijacker app.

Car hacking tool CARsenal also receives an overhaul with new features and package updates; users are advised to rerun the setup script to apply the latest changes.

Kali Linux 2025.3 delivers targeted refinements across virtual, embedded, and mobile platforms while expanding its toolkit for network and web assessments.

The blend of architectural pruning, firmware enhancements, and fresh pentesting utilities ensures that Kali remains a cutting-edge choice for security professionals in the months ahead.

Follow us on Google News, LinkedIn, and X to Get Instant Updates and Set GBH as a Preferred Source in Google.