User:Re4sonkernel/Kali NetHunter

Kali NetHunter is a free and open-source mobile penetration testing platform for Android devices, based on Kali Linux. Kali NetHunter is available for un-rooted devices (NetHunter Rootless), for rooted devices that have a custom recovery (NetHunter Lite), and for rooted devices with custom recovery for which a NetHunter specific kernel is available (NetHunter). Official images are published by Offensive Security on their download page and are refreshed every quarter. NetHunter images with custom kernels are published for the most popular of the supported devices, such as Google Nexus, Samsung Galaxy & Oneplus. Many more models are supported and images not published by Offensive Security can be generated using the NetHunter build scripts. Kali NetHunter is maintained by a community of volunteers and sponsored by Offensive Security.

Background and history
Started in 2014, the Kali Linux NetHunter project is the first Open Source Android penetration testing platform for Nexus devices, created as a joint effort between the Kali community member “BinkyBear” and Offensive Security, the company behind the Kali Linux desktop distribution.

Version 1.1 was released in January 2015 and added support for Oneplus devices & non-english keyboard layouts fot HID attacks

Version 1.2 was released in May 2015 and added support for Nexus 9 Android tablets.

Version 3.0 was released in January 2016 after a major rewrite of the application, installer, and kernel building framework. This version also introduced support for devices running Android Marshmallow

Version 2019.2 was released in May 2019 and switched to kali-rolling as its Kali Linux container. It adopted the Kali Linux versioning and release cycle to reflect that change. With this release, the list of supported Android devices has grown to over 50.

Version 2019.3 was released in September 2019 and introduced the NetHunter App Store as the default mechanism for deploying and updating apps

Version 2019.4 was released in December 2019 and premiered the "Kali NetHunter Desktop Experience"

Before December 2019, Kali NetHunter was only available for selected Android devices. Installing Kali NetHunter required a device that:


 * is rooted
 * has a custom recovery
 * had a kernel built especially for Kali NetHunter

In December 2019, "Kali NetHunter Lite" and "Kali NetHunter Rootless" editions were released to allow users of devices for which no NetHunter specific kernels were available, and users of devices that are not rooted, to install Kali NetHunter with a reduced set of functionality.

Features
Kali NetHunter is an Android ecosystem, the core of which is a ROM overlay that consists of the following core components:


 * a custom kernel with various enhancements to allow for wifi injection, HID attacks, etc.
 * a Kali Linux chroot container. Kali Linux is a Debian-derived Linux distribution designed for digital forensics and penetration testing
 * a NetHunter Android application, which allows for easier interaction with various security tools and attacks
 * a client to access the NetHunter App Store offering dozens of purpose build cyber security apps
 * a custom built boot animation
 * background services and system tools that provide a framework for various penetration testing tools
 * Kali Desktop Experience (KeX) that allows to run a full Kali Linux Desktop environment on Android devices with interfaces to output the desktop via HDMI or wirelessly

In addition to the penetration testing tools featured on desktop Kali Linux, NetHunter also enables Wireless 802.11 frame injection, one-click MANA Evil Access Points, HID keyboard functionality (for Teensy-like attacks), as well as BadUSB man-in-the-middle (MitM) attacks.

NetHunter App Store
Kali Nethunter has an applications store based on a fork of F-Droid with telemetry completely removed. The store has about 30 applications.

Editions
NetHunter can be installed on almost every Android device using one of the following editions : The following table illustrates the differences in functionality: Whilst NetHunter Rootless has less functionality, it has the advantage of being non-intrusive and not voiding manufacturers warranties.

NetHunter BadUSB Attack
Enabling this USB mode will turn a device with a USB On-The-Go cable into a network interface when plugged into a target computer. Connecting the USB cable to a PC will force all traffic from that PC (Windows or Linux) through the NetHunter device, which allows the device's user to perform a man-in-the-middle (MitM) attack.

MANA Evil Access Point
MANA is an "evil access-point" implementation by SensePost that performs rogue WAP and MitM attacks. The MitM logs get written to  in the Kali chroot. Users can change the access point's configuration to match their target environment, such as the SSID, channel number, etc.

NetHunter HID Keyboard Attacks
The NetHunter HID Attacks turn any device and its OTG USB cable into a pre-programmed keyboard, able to type any given commands. It is functionally similar to “Teensy” type devices.

NetHunter USB Arsenal - Function Selector
The NetHunter USB Arsenal controls the USB gadget mode of Android devices. It is used to prepare the device for USB attacks.

NetHunter USB Arsenal - Image Mounter
The image mounter turns an Android device into a live USB stick from which a computer can be booted.

NetHunter USB Arsenal - Network Tethering
The Network Tethering module can be used to to configure an Android device for NIC based attacks.

Reception
John Callaham of Android Authority wrote an unofficial guide for installing Kali NetHunter on most Android devices.

The installation processes and operations have been described in detail in Hands-On Penetration Testing with Kali NetHunter: Spy on and protect vulnerable ecosystems using the power of Kali Linux for pentesting on the go, and Kali Linux - An Ethical Hacker's Cookbook: Practical recipes that combine strategies, attacks, and tools for advanced penetration testing.

Daniel W. Dieterle released a detailed guide on how to use Kali NetHunter for penetration testing in his book Security Testing with Kali NetHunter.