Kali Linux - Hardening
- Updating Kali
$ sudo apt update -y && sudo apt full-upgrade -y && sudo apt autoremove -y && sudo apt autoclean -y

- Install required software using a tool list
$ cat tools.list
$ sudo apt install $(cat tools.list | tr "\n" " ") -y

- Install Software from githubg repos
$ git clone https://github.com/carlospolop/privilege-escalation-awesome-scripts-suite.git

- Customize Bash prompts
use time stamps

- Create a server for the scripts and tool list:
$ cat customization-scripts.txt
for script in $(cat customization-scripts.txt); do curl -s http://myvps.vps-provider.net/$script | bash; done

- Check for rootkits, backdoors and exploits
$ sudo apt install rkhunter
$ sudo rkhunter -c

VM Encryption

https://linuxconfig.org/hardening-kali-linux:
check for rootkits
$ sudo apt install chkrootkit
$ sudo chkrootkit

Don’t always use the root account
Use secure passwords

Since Kali is not meant as a daily driver, it can be tempting to throw usual guidelines out the window, and simply use the root account for almost everything. This is frowned upon in any other system, but Kali seems to faciliate this behavior.

For example, it’s possible to login to the GUI with root account on Kali. It’s very easy to do, and the developers even included a package that can easily be installed in order to enable this setting.

If you’re trying to keep your Kali Linux install as secure as possible, it’s recommended that you stick with your unprivileged user whenever possible, especially when launching the GUI.