Kali 2018.1 Released


Kali 2018.1 update was released by offensive security on 6th February 2018. Apart from package updates, there have been major changes in the kernel in this version as well as in Hyper-V. This version can be downloaded from kali.org/downloads/

Updating

If you are already running a previous version of Kali, you do not need download the full ISO. You can simply update it by typing these commands in the terminal.
sudo apt update
sudo apt full-upgrade
Incase you have missed out some previous kali updates, you might get an error while updating. This is due to an expired key which can be updated with the command
 wget -q -O - https://archive.kali.org/archive-key.asc | apt-key add

Kernel Updates

The kernel version has been updated to 4.14.12. While this update does not fix the Meltdown and Spectre bug, it has been promised in the next release. The major features included in this update are:-

AMD Secure Memory Encryption Support- This feature present only in latest AMD CPUs ,allows the encryption and decryption of DRAM. This has minimal performance impact and extra latency is only taken for encrypted pages. This will prevent unauthorized access to computer's encryption keys, also known as cold boot attack.

Increased Memory Limits- Although it does not matter for most of us, the memory limit of 64bit processors have been increased to 4 PetaByte of physical storage and 128 PetaByte of virtual memory which was limited to 64gb.

Hyper-V Updates

As quoted on techopedia, Hyper-V is a server virtualization product developed by Microsoft Corporation, which provides virtualization services through hypervisor-based emulations.This was updated to generation 2 adding support for UEFI and enabled expanding/shrinking of HDD. The Hyper-V integration services are also included, which supports Dynamic Memory, Network Monitoring/Scaling, and Replication.

Package updates

Many packages have been included in this version. While the offensive security has not provided us with the complete list of updated packages, some of the mentioned ones are zaproxy, secure-socket-funneling, pixiewps, seclists, burpsuite, dbeaver, and reaver.

Bug Fixes

Apart from the small bug fixes, the major updated bugs are 
1)Many users' gnome shell would crash when a USB device was plugged in. This has been fixed in this version.
2)If you were using virtual box 5.2.4 and were trying to update your kernel previously, you might have faced a kernel panic. This bug has been fixed in this version.

I will soon give my own review on this update. Keep following the blog for the update.

Always remember to use Kali for helpful purposes and not use it to cause harm.
Stay Safe.

Disclaimer:-The intent of these tutorials is not to encourage evil, but to defend against it by allowing potential victims to penetration test their own network(s) and computer(s) for security holes that evil hackers would exploit. I assume no responsibility for any illegal actions and/or damage performed or caused by individuals who use this information for purposes which it is not intended to be used.

Comments

Post a Comment

Popular posts from this blog

Sniffing Android API

Image
API Application Programming Interface aka API is a code that allows two different softwares to interact with each other. We will try to sniff Web API here. Web API are of mainly two types :- SOAP and REST. SOAP API contains only headers while REST API contains headers as well as body. Headers and body are used to send data to a server across the internet. SNIFFING If your APIs are insecure, a hacker can sniff them and modify it to cause damage to your server.  Fiddler is one of the software which allows us to sniff API. 1) Download fiddler from  https://www.telerik.com/download/fiddler  and install it in Kali or Windows. 2) Install Fiddler and run it as Admin. 3) You will see a screen like this 4)Go to tools->option->connections and check allow remote computers to connect. 5) On taking the cursor to the top right corner of the screen, you can see your the local IP address of the PC. 6) Open your android phone and enter this IP in the proxy settings
Read more

Bitcoin mining in nuclear lab

Image
Bitcoin Bitcoin is currently the world's strongest cryptocurrency with 1 btc(bitcoin) being more than $11000(As on 19th feb 2018). No wonder people are going crazy over buying it or mining it. Mining For those of who don't know about cryptocurrency mining,  mining is the process by which transactions are verified and added to the public ledger, known as the block chain, and also the means through which new bitcoin are released. Anyone with access to the internet and suitable hardware can participate in mining. People have spent crazy amount of money to build a rig to mine it. But some people like few Russian scientists who couldn't afford it or didn't want to spend money on it are trying unfair means to get a hold of it. Overview Several Russian scientists were arrested for mining at a nuclear weapon facility. Yes, you read it right, a nuclear weapon faculty. The scientists who have not been named are likely to face criminal charges. "There has been
Read more

Uber Being Sued for $13.5 Million

Image
Uber had revealed in November 2016 that hackers had stolen names, phone numbers and email ids of 57 million customers across the globe. The hackers had also stolen driver licence number of 600,000 drivers in the United States of America. While this hack was covered up for more than an year, Uber had acknowledge paying $100,000 to hackers to ensure that they do not misuse the data. The company had fired chief security officer Joe Sullivan and his senior lawyer Craig Clark for covering the same. The law According to Pennsylvania data breach law, a business must inform the victims in case of a data breach of personal information within a reasonable amount of time. They personal information may refers to first name (or initial) and last name along with social security number, driver’s license number (or state ID), or bank information along with the access code or similar codes. But no court has ever defined the length of 'Reasonable amount of Time' The Lawsuit The la
Read more