Offensive Security has officially announced the release of Kali Linux 2025.3, marking it as the third update of this Debian-based distribution aimed at ethical hacking and penetration testing in 2025. This version comes over three months after the previous update, 2025.2, and introduces ten new hacking tools to enhance user capabilities.
One significant addition is the Nexmon support, which brings “patched” firmware for certain wireless chips, enabling monitor mode and injection mode for the built-in Wi-Fi on Raspberry Pi devices. The update also extends support to Raspberry Pi 5, while other devices can also utilize Nexmon.
The new hacking tools included in Kali Linux 2025.3 are notable:
- Caido and Caido-cli: Web security auditing tools.
- Detect It Easy (DiE): A file type identification tool.
- Gemini CLI: An open-source AI agent that integrates with the terminal.
- Ligolo-mp: A solution for multiplayer pivoting.
- Vwifi-dkms: A tool for managing "dummy" Wi-Fi networks.
- Krbrelayx: A toolkit for Kerberos relaying and unconstrained delegation abuse.
- LLM-tools-nmap: Facilitates network discovery and security scanning using nmap.
- Mcp-kali-server: Connects an AI agent to Kali.
- Patchleaks: Identifies security fixes with detailed descriptions for validation or weaponization.
In addition to new tools, Kali Linux 2025.3 features a new Xfce panel plugin for quickly checking and copying VPN IP addresses, enhancements for CARsenal and wireless injection in Kali NetHunter, and the removal of support for the ARMel architecture.
Users can download Kali Linux 2025.3 from the official website in various formats, including versions for 64-bit, ARM, Virtual Machines, Cloud, WSL, and mobile platforms. For existing users, simply updating their installation with sudo apt update && sudo apt full-upgrade will suffice.