linux hacking distributions BlackArch. BlackArch Linux is an Arch Linux-based penetration testing distribution for penetration testers and security researchers. The repository contains 2682 tools. You can install tools individually or in groups. BlackArch Linux is compatible with existing Arch installs. For more information, see the installation instructions. Also, news is published on our blog. Please note that BlackArch is a relatively new project. To report bugs and request new tools, please visit the issue tracker on Github, stop by IRC, or email us. The BlackArch Full ISO contains multiple window managers. The BlackArch Slim ISO features XFCE Desktop Enviroment. Below you will find screenshots of a few of them. The Top Linux Distributions of All Time. Annual hit counts and rankings from DistroWatch tell the story with data. Tweet Share Email. The consumer operating-system market has largely settled on three platforms: Microsoft Windows, Apple macOS, and various Linux/BSD distributions. With Linux, the underlying kernel may be the same, but the software around it (the apps, skins, window managers, and package managers) combine in different ways by different vendors in packages called distributions . We highlight nine popular distributions. Breakout Star of 2018-2021: MX Linux. Dethroning Linux Mint in 2018 and continuing to top the charts, MX Linux—a partnership relying on the antiX system and ideas from the MEPIS project—may seem counterintuitive at first glance. It's based on Debian Stable and deploys the Xfce4 desktop environment. Still, this pairing offers great medium-weight performance using trusted and well-vetted technology. This combination offers a rock-solid distribution with value-added extras like a UEFI installer, strong default encryption, and the MX Tools configuration utility. Highest Rank Since 2011: Linux Mint. From 2011 through 2017, Linux Mint dominated the ranking list, clocking in at number one for all seven years. It only slipped in 2018, ceding the top slot to Manjaro. Mint—a distribution based on Ubuntu—earns praise for stability, the variety of supported desktop managers, and full multimedia capability out-of- the-box. Mint's developers focus on stability, which is why it favors a conservative release cycle. You won't get bleeding-edge updates. Still, your Linux installation will be current, and you won't be pressed into service as an involuntary beta tester. Most Hits Since 2002: Ubuntu. Ubuntu rocked the Linux world when it arrived on the scene in 2004. It ranked in the Top 5 every year since 2005. A full 9.5 percent of all DistroWatch.org site hits for the Top 25 for each year belong to Ubuntu. In addition, many distributions are based on Ubuntu Linux and contribute further to its popularity, including Ubuntu Kylin, Lubuntu, and Xubuntu. The distribution, run by Canonical Inc., hails from the Isle of Man and is based on Debian. Ubuntu has earned mindshare in part from Canonical's controversial (and now discontinued) Unity desktop manager and the company's attempts to impose more discipline on an often fractious Linux- development universe. It's considered easy to use and has a rich application marketplace. In recent years, Canonical's partnerships with Microsoft led to the Windows subsystem for Linux and rock-solid performance of Ubuntu under the Microsoft Hyper-V virtual environment software. Most Consistent Climber: Debian. Year-over-year growth is a virtue in the Linux distribution world, and by that measure, Debian shines. Its hit count increased from 311 in 2012 to 1,903 in 2017. It earned a number two rank in 2015, 2016, and 2017, falling to number six in 2018. Debian commits to a slow and steady release schedule. Its philosophy is to wait until the software is stable and relatively bug-free before incorporating it into the distribution. This conservative approach finds favor with people who prefer to run a stable desktop that doesn't require frequent patching or rebooting. Although Debian is a distribution in its own right, it's also the base for other distributions. As of January 2021, 121 of the 275 recorded and active distributions at DistroWatch.org are based on Debian. This makes Debian's underlying architecture the most popular Linux distribution on the planet, by a considerable margin. Fallen Star: Gentoo. In 2002, Gentoo ranked number three. By 2012, it had steadily fallen to number 22, and after 2013, it didn't make the Top 25 list. In mid-2020, DistroWatch.org ranked Gentoo as number 46. Gentoo's philosophy aims to provide users with the near-ideal tools they need to get the job done. Gentoo relies on Portage as a package- management system that optimizes new software for the specific combination of hardware and software powering the machine. Most Consistent Top-Tier Performer: openSUSE. Between 2006 and 2018, openSUSE didn't take the top slot, but it hovered between number two and number nine every year in that period. Starting in 2019, it fell out of the top ten. With an emphasis on software development, openSUSE—a German distribution—aims to provide a feature-rich and beautiful desktop experience. Although openSUSE supports a variety of desktop managers, it's identified with the KDE environment and the YaST package manager. Consistent Mid-Pack Performer: CentOS. Sometimes, slow and steady wins the race. Since 2005, CentOS has earned an average annual rank of 11.2, putting it just out of the Top 10, but still holding its own in a rapidly changing environment. CentOS ranks among those distributions optimized for server environments as well as desktop clients. Because it tends to provide a predictable base layer of applications, it's useful for package development and server testing. CentOS is robust, feature-rich, and stable. It's not the best looking performer on the market, but it fills a vital niche in the software development world. Forgotten Favorite: Mandrake/Mandriva. Mandrake Linux topped the rankings in 2002, 2003, and 2004, but by 2011, it had fallen to number 10. The last release of this distribution hit the market in late 2012. The company that sponsored it filed for bankruptcy a few years later. Under-Appreciated Workhorse: Slackware. Slackware's popularity hovers in the teens, and in recent years it's failed to crack the Top 25. But the distribution is much loved by hard-core Linux aficionados who appreciate Slackware's different approach to software management. Given that experienced Linux users favor this distribution, it's unlikely that most of them need to visit DistroWatch.org to download it. They know where to get it, so the download stats for this distribution are skewed. The distribution aims for design simplicity. It avoids changing software from its upstream sources and tries not to limit end-user use cases. To that end, it's highly configurable, although the configuration is often managed through shell scripts and command-line installation procedures that may prove daunting to new users. Slackware is the oldest Linux distribution that is still actively maintained. Highest Rated Projects as of Early 2021. Visitors to DistroWatch leave reviews and scores between 1 and 10 for their favorite distributions. The top five best-reviewed distributions in early 2021 include: (9.45 average, 269 ratings) ArcoLinux (9.16 average, 200 ratings) Devuan GNU+Linux (9.13 average, 203 ratings) (9.08 average, 144 ratings) Peppermint OS (9.07 average, 200 ratings) The Top 5 from the Last Half of 2020. For the last six months of 2020, the Top 5 distributions as ranked by average hits per day are: The Top Linux Distributions of All Time. Annual hit counts and rankings from DistroWatch tell the story with data. Tweet Share Email. The consumer operating-system market has largely settled on three platforms: Microsoft Windows, Apple macOS, and various Linux/BSD distributions. With Linux, the underlying kernel may be the same, but the software around it (the apps, skins, window managers, and package managers) combine in different ways by different vendors in packages called distributions . We highlight nine popular distributions. Breakout Star of 2018-2021: MX Linux. Dethroning Linux Mint in 2018 and continuing to top the charts, MX Linux—a partnership relying on the antiX system and ideas from the MEPIS project—may seem counterintuitive at first glance. It's based on Debian Stable and deploys the Xfce4 desktop environment. Still, this pairing offers great medium-weight performance using trusted and well-vetted technology. This combination offers a rock-solid distribution with value-added extras like a UEFI installer, strong default encryption, and the MX Tools configuration utility. Highest Rank Since 2011: Linux Mint. From 2011 through 2017, Linux Mint dominated the ranking list, clocking in at number one for all seven years. It only slipped in 2018, ceding the top slot to Manjaro. Mint—a distribution based on Ubuntu—earns praise for stability, the variety of supported desktop managers, and full multimedia capability out-of- the-box. Mint's developers focus on stability, which is why it favors a conservative release cycle. You won't get bleeding-edge updates. Still, your Linux installation will be current, and you won't be pressed into service as an involuntary beta tester. Most Hits Since 2002: Ubuntu. Ubuntu rocked the Linux world when it arrived on the scene in 2004. It ranked in the Top 5 every year since 2005. A full 9.5 percent of all DistroWatch.org site hits for the Top 25 for each year belong to Ubuntu. In addition, many distributions are based on Ubuntu Linux and contribute further to its popularity, including Ubuntu Kylin, Lubuntu, and Xubuntu. The distribution, run by Canonical Inc., hails from the Isle of Man and is based on Debian. Ubuntu has earned mindshare in part from Canonical's controversial (and now discontinued) Unity desktop manager and the company's attempts to impose more discipline on an often fractious Linux- development universe. It's considered easy to use and has a rich application marketplace. In recent years, Canonical's partnerships with Microsoft led to the Windows subsystem for Linux and rock-solid performance of Ubuntu under the Microsoft Hyper-V virtual environment software. Most Consistent Climber: Debian. Year-over-year growth is a virtue in the Linux distribution world, and by that measure, Debian shines. Its hit count increased from 311 in 2012 to 1,903 in 2017. It earned a number two rank in 2015, 2016, and 2017, falling to number six in 2018. Debian commits to a slow and steady release schedule. Its philosophy is to wait until the software is stable and relatively bug-free before incorporating it into the distribution. This conservative approach finds favor with people who prefer to run a stable desktop that doesn't require frequent patching or rebooting. Although Debian is a distribution in its own right, it's also the base for other distributions. As of January 2021, 121 of the 275 recorded and active distributions at DistroWatch.org are based on Debian. This makes Debian's underlying architecture the most popular Linux distribution on the planet, by a considerable margin. Fallen Star: Gentoo. In 2002, Gentoo ranked number three. By 2012, it had steadily fallen to number 22, and after 2013, it didn't make the Top 25 list. In mid-2020, DistroWatch.org ranked Gentoo as number 46. Gentoo's philosophy aims to provide users with the near-ideal tools they need to get the job done. Gentoo relies on Portage as a package- management system that optimizes new software for the specific combination of hardware and software powering the machine. Most Consistent Top-Tier Performer: openSUSE. Between 2006 and 2018, openSUSE didn't take the top slot, but it hovered between number two and number nine every year in that period. Starting in 2019, it fell out of the top ten. With an emphasis on software development, openSUSE—a German distribution—aims to provide a feature-rich and beautiful desktop experience. Although openSUSE supports a variety of desktop managers, it's identified with the KDE environment and the YaST package manager. Consistent Mid-Pack Performer: CentOS. Sometimes, slow and steady wins the race. Since 2005, CentOS has earned an average annual rank of 11.2, putting it just out of the Top 10, but still holding its own in a rapidly changing environment. CentOS ranks among those distributions optimized for server environments as well as desktop clients. Because it tends to provide a predictable base layer of applications, it's useful for package development and server testing. CentOS is robust, feature-rich, and stable. It's not the best looking performer on the market, but it fills a vital niche in the software development world. Forgotten Favorite: Mandrake/Mandriva. Mandrake Linux topped the rankings in 2002, 2003, and 2004, but by 2011, it had fallen to number 10. The last release of this distribution hit the market in late 2012. The company that sponsored it filed for bankruptcy a few years later. Under-Appreciated Workhorse: Slackware. Slackware's popularity hovers in the teens, and in recent years it's failed to crack the Top 25. But the distribution is much loved by hard-core Linux aficionados who appreciate Slackware's different approach to software management. Given that experienced Linux users favor this distribution, it's unlikely that most of them need to visit DistroWatch.org to download it. They know where to get it, so the download stats for this distribution are skewed. The distribution aims for design simplicity. It avoids changing software from its upstream sources and tries not to limit end-user use cases. To that end, it's highly configurable, although the configuration is often managed through shell scripts and command-line installation procedures that may prove daunting to new users. Slackware is the oldest Linux distribution that is still actively maintained. Highest Rated Projects as of Early 2021. Visitors to DistroWatch leave reviews and scores between 1 and 10 for their favorite distributions. The top five best-reviewed distributions in early 2021 include: (9.45 average, 269 ratings) ArcoLinux (9.16 average, 200 ratings) Devuan GNU+Linux (9.13 average, 203 ratings) (9.08 average, 144 ratings) Peppermint OS (9.07 average, 200 ratings) The Top 5 from the Last Half of 2020. For the last six months of 2020, the Top 5 distributions as ranked by average hits per day are: Top 5 Best Linux Distributions For Hackers/Pentesters. In this article, we’re talking about the top Linux distributions for hackers. When it comes to hacking, Linux distributions reign supreme above all other Operating Systems. However, it can be quite daunting to select a particular hacking distro among the vast array available. Table of Contents. Top 5 Linux Distributions For Hackers. Let’s see the top 5 Linux distributions for hackers and how they excel in their own fields! We’ve recently published a list of 5 less-known cybersecurity tools which you can check out if you’re interested in exploring this field further! 1. Kali Linux – Most popular Linux distro for Hackers and Pentesters. Kali Linux is probably the most familiar name in the world of hacking. It is probably the most recognized distro when it comes to hacking. Apart from the usual PC, it can also run on a vast array of devices like : Android Devices ( Kali Nethunter ) Virtual Machines Cloud ARM Devices like Raspberry Pi Docker Containers Linux Containers USB devices WSL. It also has 32-bit images, hence can be run on some older computers as well. Besides that, it can be also booted from a Portable USB device which makes it extremely portable. Kali Linux has a pristine suite of all the major tools from Network Pentesting to Web Application, it got you all covered. It is based on Debian and XFCE is the default desktop environment, but it can run a variety of DEs and WMs like Gnome, KDE Plasma, i3, etc. However, Kali Linux is of a rolling-release nature and hence it is prone to bugs and crashes. This makes it unsuitable as a daily driver. It is advised to use it in a virtual machine or as a live environment. Kali Linux is the perfect fit for beginners to advanced personnel in this field alike. 2. CAINE – Top distro with a focus on digital forensics. CAINE (Computer Aided INvestigative Environment) is an Italian GNU/Linux live distribution created as a Digital Forensics project. Unlike Kali or other popular hacking distros, CAINE is specifically focused only on Digital Forensics and comes pre-loaded with an arsenal of tools geared for this very purpose. It is based on Ubuntu and it is advisable to run it as a Live Image from a USB device so as not to tamper with the main system. It also goes with a nice GUI environment which makes it super easy to navigate and helps to curate a well structured report of a Forensic analysis. 3. Security Onion – Linux distro for Blue Team Operations. Security Onion is an industry-standard free, open-source Linux distribution, which is great for threat hunting, enterprise security monitoring, log management, and other Blue Team activities. Unlike other distros discussed in this module, Security Onion is primarily focused on the Blue Teaming side of things and has all major tools for this purpose like – Elasticsearch, Logstash, Kibana, Suricata, Zeek (formerly known as Bro), Wazuh, Stenographer, TheHive, Cortex, CyberChef, NetworkMiner, etc. It also has an workstation install option for SOC analysts which allows them to use local Linux tools to perform analysis of network and host events. It is also highly scalable in nature and hence can manage every thing from small scale to enterprise level servers. Even though it was initially based on Ubuntu, from Security Onion 2, it moved from Ubuntu packages to containers and now supports both CentOS 7 and Ubuntu 18.04. Its also has a very versatile GUI and outstanding IDS capabilities which makes it one of the most popular tool among Enterprise Level Blue Teamers and Network Administrators. 4. Santoku Linux – Linux distro built for Android security and pentesting. Santoku Linux is primarily focused on Android security and pentesting. It is has been specifically geared to excel in the fields of Mobile Forensics, Mobile Malware, and Mobile Security. It comes with an arsenal of tools geared towards firmware flashing tools for multiple manufactures and also contains the free versions of some popular Enterprise level propriety tools. It also facilitates android emulations and you can decompile and disassemble Android apps very easily with Santoku Linux’s inbuilt tools. Santoku Linux also comes with a lot of inbuilt scripts which help you to automate your work. With the help of these scripts, you can very easily detect common bugs in android applications and automate the process of decrypting binaries, deploying apps, enumerating app details, and more. It is based on Lubuntu. Infact, one can download Lubuntu and update it with the Santoku Packages. It is available as a 64 bit bootable ISO image to run on x86_64 machines. 5. BlackArch/Arch – Arch-based cutting-edge Linux distro for hackers. Last but not the least we have the Beast itself. Vanilla Arch can be easily converted into an Hacking Beast by using the repositories of BlackArch (which has over 2000 tools) and Arch-Strike (which has over 500 tools). The best part about using this method is that you can take any Arch Based Distro and turn it into an hacking beast, so even if Vanilla Arch scares you, you can go for more user friendly variants like Manjaro or RebornOS and turn them into hacking beasts. Besides that, you can also grab a variety of packages from AUR repositories, and in case you get stuck at any point, you can always refer to the ArchWiki or Forums where they have abundant help available. Conclusion. Apart from the ditros discussed above, you can find many other Pentesting Distributions like Parrot Security, Pentoo, BackBox, etc which you can browse till you find your perfect match. You can also turn any Linux distro into a hacking machine by installing the necessary packages and use it for hacking and pentesting as well ! 10 Secure Linux Distributions You Need To Know About. With security constantly in the news lately, you can’t help but feel ill at ease and vulnerable — vulnerable to teams of hackers whose only motivations are to expose and attack their victims. Perhaps you think you’ve done due diligence by keeping your patches updated, installing security fixes, and maintaining a corporate firewall. Those methods are effective about 50 percent of the time. For the other 50 percent, you need to do more. You need penetration testing, security audits, intrusion prevention and intrusion detection, and you need to plug security holes that only hackers know about by using the tools they use to compromise your systems. Security is expensive no matter how you slice it but it doesn’t have to be a death knell for your business. This list of 10, in no particular order, security-enhanced Linux distributions can give you peace of mind by beating hackers on their turf. 1. Astaro Security Appliance. Formerly known as Astaro Security Linux, the Astaro Security Appliances come in three flavors: Hardware, software and virtual. In the virtual appliance category, Astaro offers appliances built specifically for network security, mail security, Web security and Web application security. Its virtual appliances hold the VMware Ready certfication. The network security virtual appliance, for example, includes a configurable firewall, intrusion protection, DoS attack protection, NAT tools, VPN, IPSec Remote Access, LDAP authentication integration, and bandwidth control. Sophos recently acquired Astaro to create one of the world’s leading security companies. Sophos boasts over 100 million worldwide business users in more than 150 countries. 2. BackTrack Linux. BackTrack Linux is the highest rated and most acclaimed Linux security distribution. BackTrack is not a business desktop or server system but is a security-oriented system built solely for the purpose of network and computer penetration testing. BackTrack can be run from a bootable DVD, a thumbdrive or a hard disk. BackTrack Linux is a specialized distribution created to assist security professionals in performing security audits on target networks. But, with BackTrack Linux, you don’t have to be a seasoned security professional to use it — even security newcomers will find BackTrack easy to setup, use, and update. You can download BackTrack as an ISO image or as a VMware virtual machine. 3. IPFire. IPFire is a firewall distribution that is small, highly secure and easy to use. IPFire developers and maintainers are experienced security professionals. Like BackTrack, IPFire enjoys widespread adoption and an active user community. IPFire has its own special packaging system called Pakfire. The Pakfire system is unique to IPFire and delivers all updates and new packages via encrypted transfer and digital signatures. IPFire also features easy addon installation. Addons include Samba, NFS, mail services, anti-virus, multimedia applications, VoIP applications, intrusion detection, network tools, security tools, backup tools and dozens of other applications. 4. Lightweight Portable Security. The Lightweight Portable Security (LPS) distribution boots a thin Linux system from a CD or USB flash drive. It isn’t meant to be run from a local hard disk. The intended use for LPS-Public version is to allow safe, public, general-purpose Web browsing and LPS-Remote Access is only for accessing internal networks. Since the system allows no traces of activity or browsing history, administrators must pay strict attention to limit where LPS users may browse by means of filtering through a proxy server. Users should reboot between sessions to clear any potential malware or browser hijacking that took place during previous sessions. LPS provides secure browsing during banking transactions or other security-sensitive sessions. 5. Live Hacking DVD. This live DVD distribution is exactly what it sounds like: An ethical hacker’s playground (workbench). There is also a CD version (Live Hacking CD). The DVD comes with a fully graphical desktop interface (GNOME) and the CD version is command line only. The CD version is as powerful as its graphical counterpart because most of the hacker tools are command line. The Live Hacking system requirements are minimal. You can use an old Pentium III or IV class system and as little as 512 MB RAM, although the developers recommend 1 GB RAM. To download and use the Live Hacking distribution, you must accept the Terms and Conditions which state that the tools are for ethical hacking only. 6. EnGarde Secure Linux. EnGarde Linux is a Linux server distribution that is secure and perfect for use as an Internet server. It features intrusion detection, simple administration, secure network services, built-in alerts, Web services, DNS services, firewall, mail services and access to the Guardian Digital Support Network (GDSN). The GDSN provides free access to all system and security updates. EnGarde Regularly scheduled updates the first Tuesday of every month. Try before you buy with a downloadable live CD version of EnGarde. 7. NetSecL. NetSecL is an OpenSUSE-based distribution that features GrSecurity, chroot hardening, auditing, and includes penetration testing software. It is versatile enough to be used as a desktop, server, or ethical hacking system. It is a live DVD but you can also install it to a hard disk. GrSecurity is an independent suite of security enhancements used by ISPs, hosting companies, and projects like NetSecL. Other tools included with NetSecL are Amap, Ettercap, Hydra, Kismet, Nessus, Nmap, Metasploit, and PADS. 8. SmoothWall Express. The SmoothWall Open Source project began in 2000 and continues to be an excellent business firewall solution. SmoothWall Express (SWX) is a security-hardened GNU/Linux operating system with a simple to use web interface. The primary goals of the SWX project are to create and maintain a simple firewall system, support a variety of hardware, work with multiple connection methods, run on inexpensive and commodity hardware, develop a supportive user community and support the project via the commercial venture SmoothWall Limited. SmoothWall Limited manufactures several different SmoothWall hardware security appliances suitable for networks of all sizes. 9. Openwall GNU/Linux. Openwall GNU/Linux (OWL) is a small, security-enhanced distribution suitable for virtual appliances, hardware appliances, and physical servers. OWL is binary compatible with Red Hat Enterprise Linux. OWL is also a distribution used by many security professionals for security penetration testing and password cracking. Openwall also develops other security products such as the famous John the Ripper password crack utility, phpass, passwdqc, and tcb. 10. Vyatta. Vyatta is a commercial security appliance vendor delivering appliances for every network class including cloud architectures. Included in Vyatta’s product line-up is the Vyatta virtual network appliance. Vyatta virtual appliances work in VMware, Xen, XenServer, and KVM environments. The virtual security appliance includes a stateful firewall, IPSec and SSL-based VPN, intrusion detection, filtering, dynamic routing and router- based services such as NAT, DHCP and is IPv6-ready.