How to Install Kali Linux on Raspberry Pi? (Complete Guide)


Kali Linux is an open-source Linux distribution, based on Raspberry Pi OS, that includes all apps for penetration testing.
I recently installed it on my Raspberry Pi and I will give you some tips to do the same on your side. We’ll also test a few tools to learn more about this system.

Download the Kali Linux image from the official website.
Then, flash it on an SD card with Balena Etcher and start the Raspberry Pi.

In this article, I will explain in 15 steps how you can get started with this hacking distribution on Raspberry Pi.
Feel free to use the table of contents below to go directly to what interests you the most.

By the way, if you are really interested in improving your skills on Raspberry Pi, I highly recommend you check out my e-book hereIt’s a 30-day challenge from beginner to master, with step-by-step tutorials and many projects for you to practice along the way.

Kali Linux introduction

Download the Pi Glossary!
If you are lost in all these new words and abbreviations, request my free Raspberry Pi glossary here (PDF format)!

Kali Linux is a Debian-based Linux distribution that includes security and penetration testing tools.
Formerly known as Backtrack, many security companies (and also hackers) use it.
Associated with Raspberry Pi, it turns it into a perfect hacking kit. You may have seen it in “Mr. Robot”:

Kali Linux is available for the ARM architecture, so the installation is relatively simple. We will now discuss how to install it on your Raspberry Pi.

How to Install Kali Linux

Here are the required steps to install Kali Linux on a Raspberry Pi:

  • Download the image from the official website.
  • Flash it with Balena Etcher or Raspberry Pi Imager.
  • Insert the SD card into your Raspberry Pi and log in with kali / kali.

I will now explain each step in detail.

Download Kali Linux images for Raspberry Pi

Kali Linux images for the ARM architecture are available on this page of the official website.
Click on the image name to download it directly, or click on “Torrent” to download the torrent file.

If you don’t know Torrent, it’s a peer-to-peer download protocol.
You need to download and install software to use it (Transmission, Vuze, Deluge, BitTorrent, …).
On Ubuntu, for example, Transmission is part of the basic packages already installed.

As you can see, all Raspberry Pi models are now supported, including the Raspberry Pi 4 and 400. This is good news for us!

Create a new SD Card with Etcher

Now that you have the image of Kali Linux, we will create an SD card to install and use later.

If possible, I recommend installing it on a different SD card than the one you use for Raspberry Pi OS, so you don’t have to redo everything if you come back to Raspberry Pi OS later (8Gb minimum).
If you need more SD cards, you can check my recommended products here.

As usual, we will use Etcher to create our SD card.
If you don’t have it yet, you can download it from the official website; it’s available for Linux, Windows, and macOS and will make your life easier.

Once Etcher is installed, start it.
Then select your image and your SD card, and then start the copy.
I don’t know exactly why, but Kali Linux took me longer than other distributions to flash (even if the size is almost the same as Raspberry Pi OS Full), probably more compressed than Raspberry Pi OS.

First boot on Kali Linux

Just insert the SD card into your Raspberry Pi and start.
Kali Linux will start directly with the login screen.
No questions or anything, insert, start, and wait.

Raspberry Pi Bootcamp
Sale: 10% off today.
Take it to the next level.
I'm here to help you get started on Raspberry Pi.
Learn all the skills you need in the correct order.

There is nothing else to do.

Open a session on Kali Linux

Once Kali started, you need to log in:

The default credentials on Kali Linux are:
– login: kali
– password: kali

It is strongly recommended that you change these credentials quickly.
You can change it by opening a terminal and typing the command:
passwd

Kali Linux Configuration

You are now on the Kali Linux Desktop, and we can move to the configuration.

Keyboard layout

If you don’t use a US keyboard, you can change it in the main menu > Settings > Keyboard.
Disable the system defaults, add your custom layout and set it by default (or remove the US layout).
But be careful, on the login screen you will keep the US layout for the moment, so choose your password knowing this.

Connect to your Network

Follow this part only if there is a DHCP server on your network.
If not, or if you need to set a static IP address, look at the following step.

Ethernet:

Just connect the RJ45 cable to your Raspberry Pi and wait a few seconds for an IP address to be assigned to it, there is nothing else to do.

WiFi:

On the Kali desktop, click on the network icon at the top right, and choose the SSID of your Wi-Fi network.

Type the password of your access point, and wait a few moments.

Get your current IP address:

Whatever your connection mode, you can check the IP address obtained with the ifconfig command:
sudo ifconfig
The addresses are indicated on the second line of each interface, after the keyword “inet”.

eth0 = Ethernet, wlan0 = Wi-Fi

I recommend not activating both simultaneously, even if it seems to work.
I had problems with response time by moments. Probably a problem with routing (I didn’t take any longer to look at this, but disabling the Wi-Fi fixed the problem).

Are you a bit lost in the Linux command line? Check this article first, for the most important commands to remember, and a free downloadable cheat sheet so you can have the commands at your fingertips.

Set a static IP address

A static IP address will allow you to choose the IP address associated with your Raspberry Pi, and therefore find it more easily later:

  • Open a terminal or connect with SSH.
  • To set a static IP open the /etc/network/interfaces file:
    sudo nano /etc/network/interfaces
  • You will see something like this:
    auto eth0
    iface eth0 inet dhcp
  • Replace it with something like this:
    auto eth0
    iface eth0 inet static
    address 192.168.1.200
    netmask 255.255.255.0
    gateway 192.168.1.1
    nameserver 8.8.8.8

    Replace the IPs indicated by what fits your network.
  • Reboot your Raspberry Pi or unplug/plug the network cable to update your IP.

You can do the same thing for your Wi-Fi connection by replacing eth0 with wlan0.

Update Kali

As for any fresh new installation, a good practice is to update your system.
Kali is based on Debian, so you can use the same commands as on Raspberry Pi OS:
sudo apt update
sudo apt upgrade

Note: In my tests, I got this error when trying to upgrade:
The following packages have unmet dependencies:
libwacom9 : Depends: libwacom-common (= 2.1.0-2) but 1.12-1 is to be installed
E: Broken packages

I fixed it with:
sudo apt reinstall libwacom-common && sudo apt reinstall libwacom-bin
Then apt upgrade should work.

By the way, I had approximately 800 packages to upgrade, so I think this is pretty important to do it right away.

Enable SSH and VNC

Now that we have a fixed IP address, it’s time to make our Raspberry Pi accessible from another network computer.

Enable SSH

In theory, SSH is installed and enabled by default.
If you don’t have access, it’s probably because you need to start the service:
service ssh start

If you need help with SSH, look at this tutorial here.

Enable VNC

VNC will allow you to have access to a remote desktop on your Raspberry Pi.
On the latest Kali Linux versions, TightVNC is already installed.
You just need to set a password:

  • Open a terminal or connect via SSH.
  • Use this command to define your password:
    vncserver
  • Once done, this will also start the service.
Master your Raspberry Pi in 30 days
Sale: 10% off today.
Download the eBook.
Uncover the secrets of the Raspberry Pi in a 30 days challenge.
Learn useful Linux skills and practice multiples projects.

You can now connect to your Raspberry Pi on Kali Linux with any VNC Viewer.
For example, on Ubuntu:
sudo apt install xtightvncviewer
xtightvncviewer 192.168.1.200:1

On Windows, you can download TightVNC here. Don’t forget to add “:1” after the IP address.

Remember that VNC is not a secure protocol, and if you use it at home it’s ok, but in a more extensive network, it is better to use it through an SSH tunnel for example.

You can find more details about the remote desktop on Raspberry Pi in my tutorial linked here. It’s for Raspberry Pi OS, but it’s very similar.

Note: If you get a grey screen when connecting to Kali Linux with VNC Viewer, you may need to edit the startup file for VNC:
sudo nano ~/.vnc/xstartup
Paste these lines (backup the old content if needed):
!/bin/sh
unset SESSION_MANAGER
unset DBUS_SESSION_BUS_ADDRESS
startxfce4 &

[ -x /etc/vnc/xstartup ] && exec /etc/vnc/xstartup
[ -r $HOME/.Xresources ] && xrdb $HOME/.Xresources
xsetroot -solid grey
vncconfig -iconic &

Kali Linux tools

Ok, you are now ready to try the Kali Linux tools available directly after the installation.
There are so many apps available that it can quickly become overwhelming.
That’s why I’ll show you a few ones here, that you can easily try.

Change your MAC Address

Overview

A MAC address is a unique identifier for each network adapter. It depends on each manufacturer, and it’s often used to give access to a specific part of the network to restricted computers. A DHCP server can also assign always the same IP to a MAC Address.
For example, you can configure your Wi-Fi network to whitelist your MAC address, and prevent anyone else from connecting to it. I have a detailed article here on how to find the MAC address of your Raspberry Pi.

MacChanger is a tool that allows you to do MAC address spoofing, i.e. to pretend to be someone else.

Usage

Install it if needed (in my tests it was already installed):
sudo apt install macchanger

See your current MAC Address:
ifconfig eth0

  • Disable your network card:
    ifdown eth0
  • Get a random MAC address:
    macchanger -r eth0
  • Set a specific MAC address:
    macchanger -m XX:XX:XX:XX:XX:XX eth0
  • Reboot to reset and get the standard MAC Address.

Hack Wi-Fi password

Overview

AirCrack-NG is one of the most popular tools on Kali Linux.
It’s a complete suite of tools to test the wireless security of a network.
It provides tools for monitoring, attacking, testing, and cracking Wi-Fi networks.

Usage

You need to disconnect the Wi-Fi on your Raspberry Pi before starting:

  • Then check that your network card is compatible (it is):
    sudo airmon-ng
  • Start monitoring:
    sudo airmon-ng start wlan0
  • Show wireless network available:
    sudo airodump-ng wlan0mon
    airodump scan wifi networks

And you are ready to go!
You can read this post to get more details on how to do this.

Brute force with Hydra

Overview

Brute force is a password cracking method, that tries passwords from a dictionary or other sources, and tries all the possibilities until it works.

Hydra is a tool to make very fast brute force from Kali Linux software and that supports many protocols.

Usage

First, you will need a list of passwords and put it in a file, like /root/passwords.txt (one per line).
You can find the most common passwords on the Internet, or generate your own.
For the test, just put a few random passwords manually in the file.

Then you can try it, for example, I have decided to brute force SSH on my computer from the Raspberry Pi:
hydra -l root -P /root/passwords.txt -t 6 ssh://192.168.222.51

If I check in my /var/log/auth.log, I can see tries from the Raspberry:

May 22 15:55:37 ubuntu sshd[2481]: Failed password for root from 192.168.222.31 port 37226 ssh2
May 22 15:55:37 ubuntu sshd[2487]: Failed password for root from 192.168.222.31 port 37234 ssh2
May 22 15:55:39 ubuntu sshd[2482]: Failed password for root from 192.168.222.31 port 37228 ssh2
May 22 15:55:39 ubuntu sshd[2484]: Failed password for root from 192.168.222.31 port 37232 ssh2

Packet Analyzer

Overview

A packet analyzer (or sniffer) is a tool that can intercept traffic from the network and capture it to analyze it.

On Kali Linux, you can use Wireshark, which is the most used tool to analyze network traffic.
It’s a graphical tool, but you can capture packets with tcpdump or something else, and then open it with Wireshark.

Usage

You can find the app in the Applications menu, under Sniffing and spoofing:

  • Start it and then go to Capture > Start.
  • You will now see all packets from the network.
  • Click Stop when you want.

Then there are many features that you can use to filter or analyze what you have captured:

SQL Injection

Overview

SQL injection is a technique to attack insecure applications, including injecting code into user fields that are not protected.

This technique is mainly used to attack websites.
For example, if you replace a parameter of the URL, say ?user=yourname with something like ?user=yourname ‘ OR 1.
If the field is poorly protected, the SQL query will be modified and will return all the data, not just those of your user.

Master Python on Raspberry Pi
Sale: 10% off today.
Get the eBook.
Do more with your Raspberry Pi, learn the useful concepts and take the shortcuts.
You miss half of the fun of using a Raspberry Pi if you don’t know anything about Python.

On Kali Linux, the sqlmap tool allows testing SQL injection vulnerabilities.

Usage

Sqlmap is a straightforward tool to use.

You only need to put the URL of the page to test, something like this:
sqlmap -u https://www.domain.com/?p=123

Once you have found a security hole, it is possible to dig deeper with this tool to see what you can get. But the best thing to do is to fix it.

Vulnerabilities exploit

Overview

Metasploit is a tool that will allow you to validate vulnerabilities and use them.
Metasploit allows you to automate the process of discovery and exploitation and provides you with the tools required to perform the manual testing phase of a penetration test.

Usage

You can start it in Applications > Exploitation Tools > Metasploit framework.

This tool will initialize and start a terminal that will allow you to use it.
For example, you can use nmap in the framework:
db_nmap -v -sV 192.168.222.1

You can also retrieve information about a known vulnerability, and try to use it:
db_rebuild_cache
search CVE-2018-9864
use exploit/folder/folder/name

Replace the search parameter with your vulnerability ID and use the exploit path displayed in the search results.
If you are interested, find a good tutorial on the topic (or read the documentation), it’s not possible to explain everything in a few short lines.

Video

If you want a visual explanation, you can watch this video on how to install Kali Linux on your Raspberry Pi:

Subscribe to get all the other videos about Raspberry Pi:

Support me: Join the community on Patreon to show your support, get behind-the-scenes content and other awesome perks!

Conclusion

Get My Cheat Sheet!
Grab your free PDF file with all the commands you need to know on Raspberry Pi!

We learned how to install Kali Linux on Raspberry Pi, including the first steps of the system configuration, and some exciting tools to use on this distribution.

As I said at the beginning, this article is not exhaustive. There are hundreds of apps and most are quite complicated to take in hand which would require an article each, but that was not the goal here.

I still hope you understand the basics and that this article made you want to try 🙂

Raspberry Pi Resources

Not sure where to start?
Understand everything about the Raspberry Pi, stop searching for help all the time, and finally enjoy completing your projects.
Watch the Raspberry Pi Bootcamp course now.

Master your Raspberry Pi in 30 days
Don’t want the basic stuff only? If you are looking for the best tips to become an expert on Raspberry Pi, this book is for you. Learn useful Linux skills and practice multiple projects with step-by-step guides.
Download the e-book.

VIP Community
If you just want to hang out with me and show your support, you can also join the Patreon community. I share behind-the-scenes content there and give you early access to my content. You’ll also get a shoutout when you join.
More details here.

Need help building something with Python?
Create, understand and improve any Python script for your Raspberry Pi.
Learn the essentials, step-by-step, without losing time understanding useless concepts.
Get the e-book now.

You can also find all my recommendations for tools and hardware on this page.


This tutorial doesn't work anymore? Report the issue here, so that I can update it!

4 1 vote
Article Rating

Patrick Fromaget

I'm the lead author and owner of RaspberryTips.com. My goal is to help you with your Raspberry Pi problems using detailed guides and tutorials. In real life, I'm a Linux system administrator with a web developer experience.

Subscribe
Notify of
guest
14 Comments
Oldest
Newest Most Voted
Inline Feedbacks
View all comments
Andrew
Andrew
2 years ago

perhaps you can help me with something.i’m trying to remote to a raspberry pi from a phone then start a pentest.but the catch is i have the pi in a coat pocket.giving the appearance i’m just playing on my phone.all the while using my tools on kali while walking through a site i’ve been tasked with.basicly (phone-raspberry pi(in pocket)-wireless router-loot)ideas?

Maya
Maya
2 years ago

This article was extremely helpful. It explained important things that YouTube tutorials did not.

Eduardo
Eduardo
2 years ago

Thanks for the very explained tutorial, it teaches much more than just intallation!
I’m having an issue with the network devices. I’m not sure, but after the update and upgrade or after I changed the interfaces file as you suggested and rebooted the Pi there is the message “device not managed” under the “Ethernet Networks” and Wo-Fi Networks”.

Could help me?

Thanks

noyal
noyal
1 year ago

i dont have another computer,is there a way to flash image using rasbian on raspberry pi.plzzzz reply caus i need help and does 64 bit kali version works on raspberry pi 4?

Vicente
Vicente
1 year ago

This guide is very complete. But i have a problem. When I do the command: sudo apt upgrade, at the moment that the percentage is 15% the screen goes black and rebooting doesn’t solve it. If you got an idea of what I’m not doing or anything, tell me please. I keep reinstalling kali and try different things.
Raspberry 4b 4gb
Kingston 32gb 10
Also I used the Raspberry Pi Imager

adi
adi
1 year ago

i just found this site. Not just a basic knowledge, but very interesting. Thanks so much.

Oluwashina
Oluwashina
11 months ago

Good article, it’s awesome . But how can I use Rpi GPIO with Kali Linux

John Simopoulos
John Simopoulos
11 months ago

When I try it on raspberry pi 400 by my self i just get stuck on the code from the boot yea thar no moving code or code with bracets where inside have a green V as usual. When i use the card on my rpi 4 it works completly normal. What is going on I cant even see the login session and bringing my big razer keyboard on trips for the rpi4 it is not the best idea. Please help

Recent Posts

Master your Raspberry Pi - 10% off