Kali Linux 2026.1 Released With 8 New Tools, Kernel 6.18, and New BackTrack Mode
Kali Linux 2026.1, the first release of the year for the popular penetration testing distribution, is now available with a refreshed look, a kernel jump to Linux 6.18, eight newly added security tools, and a nostalgic new BackTrack mode for Kali-Undercover.
The release continues Kali’s long-running pattern for its first annual build by introducing a full theme refresh across the boot menu, installer, login screen, desktop, and wallpapers. Kali said the 2026.1 release delivers a new visual identity from the moment users boot the image, while also fixing smaller quality-of-life issues such as a smoother boot animation loop on live images.
The more eye-catching addition, however, is BackTrack mode, a new option in kali-undercover created to mark the 20th anniversary of BackTrack Linux, Kali’s predecessor. When enabled, the mode transforms the desktop to resemble BackTrack 5, complete with matching wallpaper, colors, and window styling. Kali says users can enable it from the menu or directly from the terminal with kali-undercover --backtrack, and toggle it off the same way.
As with every major Kali release, new tooling is a central part of the update. Kali Linux 2026.1 adds eight new tools to its network repositories:
- AdaptixC2 - Extensible post-exploitation and adversarial emulation framework
- Atomic-Operator - Execute Atomic Red Team tests across multiple operating system environments
- Fluxion - Security auditing and social-engineering research tool
- GEF - Modern experience for GDB with advanced debugging capabilities
- MetasploitMCP - MCP server for Metasploit
- SSTImap - Automatic SSTI detection tool with interactive interface
- WPProbe - Fast WordPress plugin enumeration tool
- XSStrike - Advanced XSS scanner
Kali said the update includes a total of 25 new packages, 9 removed packages, and 183 package updates on top of the new tools and kernel bump. The release ships with kernel builds based on 6.18.12.
The NetHunter side also gets attention in 2026.1. Kali says it fixed several issues in the Kali NetHunter app, including a WPS scan bug, a HID permission check issue, and a back button problem. The project also highlighted device-specific progress, including a new Android 16-capable kernel for the Redmi Note 8, internal wireless firmware fixes for the Samsung S10 series, and progress toward wireless injection support on Qualcomm chipsets through QCACLD-3.0 patching.
There is one known caveat in this release. Kali warned that users of the kali-tools-sdr metapackage may encounter breakage in parts of the GNU Radio ecosystem, with tools such as gr-air-modes and gqrx-sdr specifically called out as affected. The project said it expects the issue to be fixed in the next release.
For users already running Kali, the upgrade path remains simple. The project says existing installations can move to 2026.1 with a standard apt update followed by apt -y full-upgrade, and users can verify the result through /etc/os-release or uname. New users can download live or installable ISOs, while others can choose from pre-built virtual machine images, cloud images, containers, WSL builds, and mobile-focused NetHunter releases.
The release is less about radical platform change and more about polishing the ecosystem Kali already owns: modernized visuals, a deeper toolset, better NetHunter stability, and a nostalgic nod to the distro’s roots. For security professionals, it is another incremental but useful update to one of the most widely recognized offensive security operating systems in the field.
Reference Links and Sources
