Kali Linux can now run in Apple containers on macOS systems

by

Kali Linux’s compatibility with macOS systems via Apple’s new containerization technology marks an important advancement for cybersecurity professionals and software development enthusiasts. Until now, running specialized Linux distributions like Kali on a Mac often involved the use of heavy virtual machines or third-party solutions like Docker Desktop. Now, with native support for Apple Containers on machines equipped with Apple Silicon chips, Kali Linux can run in isolation, smoother, and with improved integration into the macOS ecosystem. This new feature greatly facilitates penetration testing and security analysis tasks on Mac, an environment increasingly popular with security researchers.

How Kali Linux works in Apple Containers on macOS Sequoia

Containerization technology recently introduced by Apple at WWDC 2025 makes it possible to run isolated Linux systems in a virtualized environment designed specifically for Apple Silicon. This approach is similar to Windows Subsystem for Linux 2 (WSL2) on Windows, bringing the power and flexibility of Kali Linux directly to macOS without the need for full virtual machines.

To get started with Kali Linux in this context, users must first install the CLI container via Homebrew, the popular package manager on macOS:

  • Quick installation: brew install --cask container
  • Starting the container system: container system start

Once the base is in place, it is possible to launch Kali Linux in a container by typing:

  • container run --rm -it kalilinux/kali-rolling

This command retrieves the Kali Linux image from the DockerHub library and opens a Kali terminal within a lightweight macOS virtual machine. The container runs in interactive mode, providing a complete environment for penetration testing tools.

In addition, it is possible to mount a local directory within the container, facilitating file exchange between the host OS and Kali:

  • container run --remove --interactive --tty --volume $(pwd):/mnt --workdir /mnt docker.io/kalilinux/kali-rolling:latest

This feature is essential in scenarios where you want to analyze files or scripts from macOS while benefiting from Kali Linux’s expertise.

This development is part of a broader movement to make Kali Linux ubiquitous in the IT ecosystem, as evidenced by recent releases and the constantly evolving tools offered by Kali via LinuxEnCaja. This containerization capability therefore improves accessibility and flexibility for macOS users. Learn how to install and use Kali Linux on Apple Containers on macOS. This guide will provide you with all the necessary steps to take advantage of the advanced features of Kali Linux on your Mac, while benefiting from the flexibility of containers.

Technical Benefits and Limitations of Kali Linux Containers on Apple Silicon

The integration of Kali Linux into Apple Containers on macOS opens up many possibilities, but there are also some limitations associated with this emerging technology. First, this functionality is limited to machines equipped with Apple Silicon processors; Intel Macs are not yet compatible with this containerization framework.

The obvious benefits include:

Increased Isolation:

  • Each container runs in a secure and isolated environment, limiting the risk of impact on the host system. Fast launch:
  • No need to launch a full virtual machine, which saves CPU and memory resources. Interoperability with macOS:
  • Volume mounts, local file access, and integration with the container CLI streamline workflows. No dependency on Docker Desktop:
  • The operating system’s container ecosystem reduces external software dependencies. However, technical limitations currently remain. Network support appears to be still in beta, with bugs, including erratic network access or the lack of IP address assignment in some use cases. As the Kali team notes, “there are some limitations, particularly the container’s difficulty obtaining an IP address or accessing the network on macOS Sequoia.”

Furthermore, some advanced use cases requiring hardware passthrough are not supported because virtualization prevents access to physical hardware, which, for example, limits the use of certain USB devices during audits. These constraints must be fully understood before starting, especially for those using Kali for professional purposes where fine-grained management of network interfaces or external hardware is essential.

As discussed in this analysis on sudo and Linux vulnerabilities. In summary, this technology represents a significant technical advance, particularly for basic or educational use, while leaving room for future improvements in future macOS versions. Follow this on LinuxEnCaja.

https://www.youtube.com/watch?v=HAO0IlGTIak Install and configure Kali Linux on macOS with the new CLI container.The process of installing Kali Linux in an Apple container is simple, but requires a few prerequisites. First, you need a recent Mac with an Apple Silicon chip and macOS Sequoia or later.

Here are the essential steps to configure this service: Install Homebrewif it isn’t already installed. Essential for managing packages on Mac, it can be installed with:

/bin/bash -c “$(curl -fsSL https://raw.githubusercontent.com/Homebrew/install/HEAD/install.sh)”

.

Install the container CLI

with the command

  1. brew install –cask container . This provides the main tool for managing and launching Apple containers. Start the container servicesby typing:
  2. container system start . This command activates the virtualization framework. Run Kali Linux using the command detailed above:container run –rm -it kalilinux/kali-rolling
  3. Configure local volume mounting as needed to easily access files between macOS and Kali. An important point is the need to usethe latest version of Kali Linux rolling
  4. to benefit from updates and patches essential to the security and robustness of the system. Kali regularly releases new features and fixes that can be tracked on LinuxEnCaja
  5. , including in its annual releases.
  6. This simplified installation encourages users to experiment on macOS while maintaining the authenticity and power of common penetration tools, which are at the heart of modern security audits. Discover how to install and use Kali Linux on containers under macOS. Simplify your development environment while taking advantage of Kali Linux’s powerful tools for your security testing and analysis. Follow our step-by-step guide for seamless integration on your Apple system.

Implications for Cybersecurity and Software Development Environments on macOS The arrival of Kali Linux in the native Apple container world represents a profound transformation for macOS work environments in the fields of cybersecurity and software development. Kali, the ultimate penetration testing tool, is thus becoming more accessible to researchers, students, and professionals using Apple machines. Some key impacts to highlight: Facilitated security audits:Red teams can quickly import their custom scripts, run vulnerability tests, and leverage Kali tools without changing OS.

Democratized security analysis:

The absence of complex configuration encourages more users to discover advanced security assessment techniques.

Improved interoperability:

Mounting local volumes and native execution on macOS enable a seamless workflow between the host system and Kali, without the slowdowns associated with heavy virtualization.

Optimizing hardware resources:

  • Apple Silicon chips, renowned for their efficiency, would be ideal for lightweight, containerized virtualization, reducing power consumption and improving the mobility of security experts. Enriching the Linux ecosystem on macOS:
  • This advancement adds to other efforts to integrate Linux distributions into Apple operating systems, a trend that is part of regular IT monitoring
  • of technological transformations. Despite current restrictions, this approach offers a first concrete glimpse of a future where Kali Linux and macOS coexist seamlessly, potentially even supporting more advanced configurations with future updates. Professionals should remain attentive to developments to maximize the benefits in their testing and development campaigns.
  • https://www.youtube.com/watch?v=mBPQd_Y2Iog Practical tips and recommendations for leveraging Kali Linux in Apple containers
  • Using Kali Linux in a containerized environment on macOS requires a few precautions and best practices to ensure the best experience and security: Meet the prerequisites: Apple Silicon machine with macOS Sequoia or later. Follow the official Apple documentation:

To anticipate network bugs or connectivity issues, it is best to regularly check for container framework updates.

Regularly update Kali Linux:

Take advantage of the latest rolling releases to maintain security and access new tools, as discussed in the Kali post on LinuxEnCaja. Avoid use cases requiring direct hardware access:

Using containers means temporarily forgoing certain advanced features, such as USB passthrough or access to certain peripherals.

  • Use mounted volumes: To work with local scripts and files, ensure seamless exchanges between macOS and Kali Linux.
  • Test in an isolated environment: Before executing risky commands, the container provides a secure sandbox to limit potential damage.
  • To further your skills, the Linux and Kali community offers numerous tutorials, articles dedicated to sensitive commands to avoid, and USB multiboot solutions that can be found on specialized sites such as LinuxEnCaja
  • . By combining these practices, Kali Linux in Apple Containers proves to be a powerful and accessible tool, meeting the growing security testing needs of a modern macOS ecosystem.
  • Learn how to install and use Kali Linux on containers in macOS. Follow our comprehensive guide to take advantage of Kali’s advanced features on your Mac while optimizing performance and compatibility.