Kali Linux is one of the most popular and powerful Linux distributions for pentesting. There are large enterprise users who want to scale up massive pentesting against their infrastructure. There are individuals (researchers) who want to use Kali Linux for educational purposes. There are security firms that do pentesting. Kali Linux is an ideal platform for these markets. Akamai Linode has brought the distribution to the cloud to make it even more accessible to the infosec and DevSecOps community. Akamai Linode has opened the gate for the market for pentesting as a service, allowing users to make it part of their DevSecOps workflow.
Why Kali Linux?
Anyone can grab the tools needed for pentesting and install them on their choice of Linux distribution, but that’s a lot of effort and you still have to optimize and fine-tune the system configes to ensure that the distribution is ‘safe’ for that specific use-case. That’s the power of the Linux distribution community where there are specialized distributions, created by experts of that use-case meant for specialized jobs.
Kali Linux is one such distribution, created by pen testers for pen testers. It takes away all the complexity that comes with preparing such distributions and allows users to just focus on that task. In addition to that, Kali has created many tools that are exclusive to the distribution and can only be found inside of Kali.
In this interview, I sat down with Ben Wilson, senior developer at Kali Linux and Billy Thompson, solutions engineer at Akamai Linode to discuss the importance of bringing Kali to the cloud with Linode and how there needs to be more awareness around offensive security.