Kali Linux, the new pentesting distribution by Offensive Security is out and available for free. Offsec has provided a ready-to-run VMware image for everyone, who doesn't want to go through the trouble of installing it.

The image was created using Workstation 9, which makes it incompatible with older VMware Products. At least that's the message I got when I tried to run it in Workstation 8.
Luckily, it's just a small step to get it up and running.

Download the VMware image from http://www.kali.org/download (I suggest you use the torrent!) and open the .vmx file in your favorite text editor.
change the following line to your VMware version (major). Save, and open the vm with Workstation.

virtualHW.version = ";8"

That's it.

Oh, and if you're missing the /pentest/ folder, known from Backtrack - it's gone. Offsec has removed all broken or duplicate scripts and tools and made the whole thing FHS compliant.
This means basically, that you can call any tool from any location in your shell, without having to switch to the tools directory first (e.g. /pentest/web/nikto/).

If you want to browse through the tools in search for new treasures, here you go: http://git.kali.org/gitweb/

PS: Kali is also available for ARM based PCs! (Raspberry Pi :-) )


For those of you, who prefer Virtualbox over VMware products, you can import the Kali VMware image into Virtualbox. Just create a new virtual machine and choose the kali-linux-i386-gnome-vm.vmdk file as existing hard drive.
If you want to run Kali in fullscreen mode (e.g. 1920x1080) you need to install the virtualbox-guest-x11 package.

apt-get install virtualbox-guest-x11

It worked flawlessly for me in version 4.1.12.

PS: As always, the login credentials are root with password toor, so don't forget to change that!

root@kali:~# passwd root
Enter new UNIX password:
Retype new UNIX password:
passwd: password updated successfully