Kali Linux 2025.3 brings Nexmon support, new Vagrant images, ARMel removal & 10 new tools

Kali Linux 2025.3 is now available as the latest release of this Debian-based security-focused distribution, geared toward professionals and enthusiasts in penetration testing, digital forensics, and reverse engineering.

This update introduces the integration of Nexmon, allowing monitor mode and packet injection on certain Broadcom and Cypress Wi-Fi chips, including those found in the Raspberry Pi. This enables advanced wireless audits on widely used hardware. Following these wireless improvements, the update also brings changes to virtualization workflows: Vagrant VM images are now built with DebOS instead of the earlier Packer-based approach. This shift raises build consistency and includes refreshed pre-seed samples, plus support for Packer v2.

With this release, support for the ARMel (Acorn RISC Machine, Little-Endian) architecture has been discontinued. Kali mirrors upstream changes in Debian, as Debian testing no longer provides ARMel packages. Building on previous desktop enhancements, users of the Xfce desktop can now choose which network interface the VPN panel plugin monitors, streamlining workflows for those with multiple VPNs. The release also introduces 10 new tools, updates for Kali NetHunter and CARsenal, Magisk module changes, and a number of bug fixes and enhancements.