NEWS
Kali Linux 2026.2 Lands With 9 Tools and Faster VM Boots
Kali Linux 2026.2 ships nine new tools, GNOME 50, KDE Plasma 6.6, kernel 6.19, and a graphics firmware trim that roughly tripled QEMU boot times.
Offensive Security shipped Kali Linux 2026.2 at the end of June 2026, the second quarterly release of the year for its Debian-based penetration testing distribution. The release brings nine new offensive security tools to the network repositories, ships GNOME 50 and KDE Plasma 6.6 desktop environments, and runs on Linux kernel 6.19.
The tools make the headlines. Below them sits the change for VM users: pre-built VM images no longer ship with graphics firmware, the initrd drops to 60 MB, and QEMU boots run roughly three times faster on a Linux host, per the Kali team. Existing installations come along through the standard apt full-upgrade.
Nine New Tools Land in the Network Repositories
Kali Linux 2026.2 adds nine packages to the network repositories. Here is the team’s list, in the order it was published:
- arsenal-ng: Go-based command library with 200+ cybersecurity cheat sheets.
- hydra-gtk: reintroduced GTK+ GUI for the network logon cracker.
- legba: multiprotocol credentials bruteforcer, password sprayer, and enumerator.
- oletools: analyzer for MS OLE2 files and Microsoft Office documents.
- penelope: shell handler.
- shell-gpt: AI-powered command-line productivity tool.
- tailscale: secure connectivity platform.
- tookie-osint: OSINT tool for finding social media accounts.
- uro: URL decluttering tool for crawling and penetration testing.
A few entries carry momentum from outside the core toolset. shell-gpt puts a large language model on the command line for explaining commands and drafting one-liners; tookie-osint cross-references social media handles tied to a username; and tailscale, the secure connectivity platform, joins the standard image as a managed networking option. hydra-gtk, a GTK front end for the THC-Hydra logon cracker, returns to the repos after an absence. oletools gives analysts a dedicated path through MS OLE2 and Office documents, useful for phishing payload triage.
The Kali team also refreshed its service helper scripts. New helper packages handle start and stop, show service status, list default credentials, and surface the access URL of the running service, optionally auto-opening the browser for web front ends. Multiple packages now follow that contract, including <tool>-start and <tool>-stop naming, so users no longer have to guess which command owns which service.

Pre-Built VM Initrds Drop to 60 MB
For VM users, the operative change in 2026.2 sits below the tool list. Kali has historically pre-installed firmware for nearly every NVidia, AMD, and Intel graphics chip it could find, which kept bare-metal installs working out of the box and pushed the initrd past 200 MB. Pre-built VM images no longer carry that payload in 2026.2, and the installer detects a virtual machine environment and skips the firmware in those cases.
As a result, the initrd is down to 60 MB for VM users, and the boot time is cut by ~3x (tested for QEMU VM on a Linux host, your mileage may vary). That’s a massive improvement in boot time.
The 60 MB initrd applies only to VM users. On physical hardware, the full 200 MB initrd with every supported firmware blob is still loaded, so anyone installing Kali on a laptop or desktop sees no change in boot behaviour. Bare-metal optimisers can uninstall the firmware themselves, though the Kali team warns that removing the wrong driver can leave a system without graphics after reboot.
On top of faster boots, the firmware trim clears space on tight /boot partitions, a problem the Kali team flagged as part of the motivation. Analysts who launch a fresh Kali VM per engagement will spend less time waiting on each boot.
GNOME 50 and KDE Plasma 6.6 Ship Together
Every other Kali release gets a major desktop bump, and 2026.2 is the cycle where GNOME and KDE both move forward. GNOME 50 arrives with file manager optimizations for faster thumbnails and lower memory use, a redesigned preferences window, automatic language switching, and document annotations inside the Document Viewer app. The full GNOME 50 release notes cover the additions in depth.
KDE Plasma 6.6 ships an on-screen keyboard suited to touch-driven sessions, an OCR mode inside the Spectacle screenshot tool that lifts text directly from the screen, expanded colour-vision options, Slow Keys support on Wayland, and adoption of the standardised Reduced Motion setting. Both desktops can be installed side by side at setup time, and users choosing neither will land on the default Xfce image. Neither change is sweeping, and both projects focused on usability and accessibility on top of their existing feature surface.
APT Sources Move to a deb822-Style File
Kali’s APT setup has lived in /etc/apt/sources.list for the lifetime of the distribution. 2026.2 retires that file for fresh installs and ships a deb822-style file at /etc/apt/sources.list.d/kali.sources instead. The new file holds the same kali-rolling repository, components, and signed-by key, just in the format Debian and Ubuntu have been moving to.
Existing installations are not migrated automatically, and APT will eventually warn that the legacy file is in use and suggest moving. The Kali team describes the switch as a once-in-a-distro-lifetime change, and the move is purely cosmetic for anyone not running scripts that read the old file. The full release notes include both file contents side by side.
NetHunter Picks Up Magisk and an EvilTwin Tab
NetHunter, the Android penetration testing layer that runs Kali on supported phones, ships several platform updates. Standalone kernel flashing via Magisk now works for any installer zip built with kali-nethunter-installer: open the file in the Magisk app and flash it directly, without a separate recovery step. New kernels include qcacld3 injection support for Qualcomm Wi-Fi chips, and more devices support NetHunter Pro with bare-metal installs.
The NetHunter app launches faster, bugs in custom commands and the chroot manager are fixed, and a new EvilTwin tab offers a Wi-Fi Fake Access Point with a password verification captive portal. A related iptables fix means Android Hotspot works again after running EvilTwin or Wifipumpkin3, a sequence that previously broke tethering. Together those changes widen the pool of phones that can run NetHunter without manual recovery.
Two Reboot-Worthy Upgrades and a Kernel Compromise
Two package updates in this release require a reboot even if no other changes pulled one in. The polkitd update triggers a “reboot the system when convenient” line during upgrade; without the reboot, GUI applications launched as root fail with cryptic errors. xrdp and xorgxrdp moved to the v0.10 series, and Hyper-V Enhanced Session Mode users should run kali-tweaks to disable and re-enable the feature if remote desktop does not come back afterwards.
Picking the kernel version came with an explicit trade-off:
We decided to release with a 6.19 kernel to avoid breaking NVidia users. At the same time, for those who prefer to get the latest kernel and don’t care about NVidia compatibility, we have the kernel 7.0 ready for you in kali-experimental.
Linux kernel 7.0 had hit Debian with reports of incompatibilities against NVidia’s DKMS driver builds, so the Kali team held back rather than ship a release that would break those installs. Recent vulnerability disclosures, including Copy Fail (CVE-2026-31431) and Dirty Frag (CVE-2026-43284 and CVE-2026-43500), were cited by the Kali team as a reason to move to 7.0. Users without NVidia can opt in by enabling the kali-experimental repository. Kernel 7.0 also reaches kali-rolling, so a normal full-upgrade picks it up on systems without NVidia.
How to Upgrade an Existing Kali Installation
Fresh installs need an ISO, pre-built VM image, or container from the official Kali download page, available for x86_64 hardware, ARM single-board computers including the Raspberry Pi, NetHunter Pro devices, and the major cloud providers. Upgraders should run the four commands the Kali team published for this cycle:
- Ensure the repository is configured:
echo "deb http://http.kali.org/kali kali-rolling main contrib non-free non-free-firmware" | sudo tee /etc/apt/sources.list - Refresh and upgrade:
sudo apt update && sudo apt -y full-upgrade - Copy skeleton files to home:
cp -vrbi /etc/skel/. ~/ - Reboot if required:
[ -f /var/run/reboot-required ] && sudo reboot -f
After the reboot, the new version string is verifiable with grep VERSION /etc/os-release. WSL users should be on WSL 2 before the upgrade for proper graphical application support, and the current version is checkable from a Windows command prompt with wsl -l -v. The official blog confirms 2026.2 is a rolling release build, so the same system can continue to receive updates through normal package channels as the Kali team ships further quarterly releases.
Frequently Asked Questions
What Is New in Kali Linux 2026.2?
Kali Linux 2026.2 ships GNOME 50 and KDE Plasma 6.6 desktop environments, adds nine offensive security tools to the network repositories, runs on Linux kernel 6.19, and ships pre-built VM images that boot about three times faster than the 2026.1 initrd. Bare-metal installs see no change; the initrd trim is for virtual machines.
When Was Kali Linux 2026.2 Released?
The team marked the release on the official Kali blog in the final week of Q2 2026, on its established quarterly cadence. Major Linux news outlets covered the release on July 1, 2026.
Why Is Kali 2026.2 Shipping Kernel 6.19 Instead of 7.0?
The team kept kernel 6.19 to avoid breaking users with NVidia DKMS drivers, which had incompatibilities with 7.0 when it reached Debian. Users who want 7.0 can opt in via the kali-experimental repository, and Kali-rolling also carries it for systems without NVidia.
Do I Need to Reboot After Upgrading to Kali 2026.2?
In most cases, yes. The polkitd package update triggers a reboot, and the xrdp and xorgxrdp updates to the v0.10 series also require one. If /var/run/reboot-required exists after a full-upgrade, the official upgrade steps reboot automatically.
How Do I Upgrade an Existing Kali Installation to 2026.2?
Existing Kali users run four shell commands: write the kali-rolling source line to /etc/apt/sources.list with tee, refresh the package index, run apt -y full-upgrade, then copy /etc/skel/. into the home directory and reboot only if /var/run/reboot-required exists. Confirm the new build with grep VERSION /etc/os-release.
-
FINANCE4 weeks agoZcash Patched a Double-Spend Bug as ZEC Climbed 5%
-
ENTERTAINMENT4 weeks agoSteam Summer Sale 2026 Locks In June 25 to July 9 Dates
-
NEWS2 months agoMeta Adds AI Replies to Threads, But Users Can’t Block It
-
ENTERTAINMENT1 month ago‘Widow’s Bay’ Review: Apple TV’s Sleeper Horror-Comedy Earns Its Fog
-
ENTERTAINMENT4 weeks agoAmazon Scraps Its Stargate Revival After a 20-Week Writers Room
-
FINANCE4 weeks agoCitigroup Says ETF Outflows Drove Bitcoin’s Crash, Not Strategy’s Sale
-
FINANCE4 weeks agoCLARITY Act Floor Vote Likely Shifts to August, Lummis Says
-
FINANCE4 weeks agoCoinbase Invests in Ethena, ENA Jumps 10% on Open-Market Buy
