{"id":5716,"date":"2025-07-29T10:03:51","date_gmt":"2025-07-29T10:03:51","guid":{"rendered":"https:\/\/serisec.com\/index.php\/2025\/07\/29\/apples-new-containerization-feature-allows-kali-linux-integration-on-macos\/"},"modified":"2025-07-29T10:03:51","modified_gmt":"2025-07-29T10:03:51","slug":"apples-new-containerization-feature-allows-kali-linux-integration-on-macos","status":"publish","type":"post","link":"https:\/\/serisec.com\/index.php\/2025\/07\/29\/apples-new-containerization-feature-allows-kali-linux-integration-on-macos\/","title":{"rendered":"Apple\u2019s New Containerization Feature Allows Kali Linux Integration on macOS"},"content":{"rendered":"<p>    Apple\u2019s New Containerization Feature Allows Kali Linux Integration on macOS<br \/>\n \t<BR><br \/>\n<BR><\/BR><br \/>\n    <!-- no image --><br \/>\n \t<BR><br \/>\n<BR><\/BR><\/p>\n<div>\n<p>Apple quietly slipped a game-changing developer feature into its WWDC 25 announcements: a native containerization stack that lets Macs run Open Container Initiative (OCI) images inside ultra-lightweight virtual machines.<\/p>\n<p>In practice, that means you can launch a full <a href=\"https:\/\/cybersecuritynews.com\/tag\/kali-linux\/\" target=\"_blank\" rel=\"noreferrer noopener\">Kali Linux environment<\/a> on macOS \u201cSequoia\u201d 15 today, and you won\u2019t need Docker Desktop when macOS \u201cTahoe\u201d 26 ships this fall. Here\u2019s what it\u2019s like to spin up Kali with Apple\u2019s fresh \u201cContainer\u201d command-line tool.<\/p>\n<p>Container is the user-facing CLI. Under the hood, it calls the new Swift-based Containerization framework, which talks to Virtualization.framework.<\/p>\n<figure class=\"wp-block-embed is-type-video is-provider-youtube wp-block-embed-youtube wp-embed-aspect-16-9 wp-has-aspect-ratio\">\n<div class=\"wp-block-embed__wrapper\">\n<div class=\"youtube-embed\" data-video_id=\"JvQtvbhtXmo\"><iframe loading=\"lazy\" title=\"WWDC25: Meet Containerization | Apple\" width=\"696\" height=\"392\" src=\"https:\/\/www.youtube.com\/embed\/JvQtvbhtXmo?feature=oembed&amp;enablejsapi=1\" frameborder=\"0\" allow=\"accelerometer; autoplay; clipboard-write; encrypted-media; gyroscope; picture-in-picture; web-share\" referrerpolicy=\"strict-origin-when-cross-origin\" allowfullscreen><\/iframe><\/div>\n<\/div>\n<\/figure>\n<p>Every container gets its own minimal VM created via Hypervisor.framework, delivering stronger isolation than Docker\u2019s single-VM model while keeping startup times below one second, Kali Team <a href=\"https:\/\/www.kali.org\/blog\/kali-apple-container-containerization\/\" target=\"_blank\" rel=\"noreferrer noopener nofollow\">said<\/a>.<\/p>\n<p>In effect, Apple has built a macOS analogue to Microsoft\u2019s WSL 2, except each container lives in its own micro-VM instead of sharing one kernel.<\/p>\n<h2 class=\"wp-block-heading\" id=\"getting-set-up-in-minutes\"><strong>Getting Set Up in Minutes<\/strong><\/h2>\n<p>On an Apple-silicon Mac running macOS 15.5 or later, install the CLI with a single Homebrew command:<\/p>\n<pre class=\"wp-block-preformatted\">text<code>brew install --cask container<\/code><\/pre>\n<p>After installation, start the background service:<\/p>\n<pre class=\"wp-block-preformatted\">text<code>container system start<\/code><\/pre>\n<p>The first launch prompts you to download a slim Kata Containers kernel; accept the prompt, and you\u2019re ready to run.<\/p>\n<p>Because Apple\u2019s runtime is OCI-compliant, the official <code>kalilinux\/kali-rolling<\/code> image from <a href=\"https:\/\/cybersecuritynews.com\/docker-hub-pushing-malware\/\" target=\"_blank\" rel=\"noreferrer noopener\">Docker Hub<\/a> works out of the box. A clean interactive session is just one command away:<\/p>\n<pre class=\"wp-block-preformatted\">text<code>container run --rm -it kalilinux\/kali-rolling<\/code><\/pre>\n<p>Seconds later you\u2019re dropped into a Kali root shell, complete with the latest 6.12 aarch64 kernel. Need workspace persistence? Mount the current directory just as you would with Docker:<\/p>\n<pre class=\"wp-block-preformatted\">text<code>container run --rm -it -v $(pwd):\/mnt -w \/mnt kalilinux\/kali-rolling<\/code><\/pre>\n<p>Early models from Apple\u2019s developer docs show sub-second cold starts and near-native I\/O, thanks to per-container VMs that bypass heavy translation layers.<\/p>\n<p>The strict VM boundary removes the \u201ceverything shares one VM\u201d lateral-movement risk that plagues Docker Desktop on macOS, a point Apple emphasized in its WWDC session.<\/p>\n<p>Networking in macOS 15 is still rough: containers sometimes launch without an IP address or lose <a href=\"https:\/\/cybersecuritynews.com\/dns-filtering\/\" target=\"_blank\" rel=\"noreferrer noopener\">DNS resolution<\/a>. Apple lists the issue as \u201cunder investigation,\u201d promising full networking parity in Tahoe 26 betas. Intel Macs are also left out; Apple Silicon and the upcoming Tahoe release are the official targets.<\/p>\n<p>Kali\u2019s mantra is \u201cpenetration testing from anywhere.\u201d Until now, Mac users have had to juggle heavyweight VMs or Docker Desktop\u2019s resource-hungry LinuxKit VM.<\/p>\n<p>Apple\u2019s native solution slashes the overhead, cuts cold-start latency, and hardens isolation, all while keeping the familiar Docker-style workflow. That makes Kali a first-class citizen on macOS for red teams and hobbyists alike.<\/p>\n<p>Containerization ships as a developer preview today and will be fully integrated when macOS 26 Tahoe lands, likely in September.<\/p>\n<p>With Apple promising continued open-source development on GitHub and <a href=\"https:\/\/cybersecuritynews.com\/category\/kali-linux\/\" target=\"_blank\" rel=\"noreferrer noopener\">Kali<\/a> maintaining official arm64 images, the gap between Mac hardware and Linux tooling just got dramatically smaller. Security researchers who usually carry extra laptops may soon find that one Mac will be enough for their needs.<\/p>\n<p class=\"has-text-align-center has-background\" style=\"background:linear-gradient(180deg,rgb(238,238,238) 93%,rgb(169,184,195) 100%)\">Experience faster, more accurate phishing detection and enhanced protection for your business with real-time sandbox analysis-&gt; <strong><a href=\"https:\/\/intelligence.any.run\/plans?utm_source=csn_jul&amp;utm_medium=article&amp;utm_campaign=freemium-exclusive&amp;utm_content=plans1&amp;utm_term=220725\" target=\"_blank\" rel=\"noreferrer noopener nofollow\">Try ANY.RUN now<\/a><\/strong><\/p>\n<ol class=\"wp-block-list\"><\/ol>\n<p>The post <a href=\"https:\/\/cybersecuritynews.com\/apples-containerization-feature-macos\/\">Apple\u2019s New Containerization Feature Allows Kali Linux Integration on macOS<\/a> appeared first on <a href=\"https:\/\/cybersecuritynews.com\/\">Cyber Security News<\/a>.<\/p>\n<\/div>\n<p> \t<BR><br \/>\n <BR><\/BR><br \/>\n    Guru Baran<br \/>\n \t<BR><br \/>\n<BR><\/BR><br \/>\n<a href=\"https:\/\/cybersecuritynews.com\/apples-containerization-feature-macos\/\">Go to cyber-security-news<\/a><br \/>\n \t<BR><br \/>\n <BR><\/BR><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Apple\u2019s New Containerization Feature Allows Kali Linux Integration on macOS Apple quietly slipped a game-changing developer feature into its WWDC 25 announcements: a native containerization stack that lets Macs run Open Container Initiative (OCI) images inside ultra-lightweight virtual machines. In practice, that means you can launch a full Kali Linux environment on macOS \u201cSequoia\u201d 15 [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[129,63,1440],"tags":[130],"class_list":["post-5716","post","type-post","status-publish","format-standard","hentry","category-cyber-security","category-cyber-security-news","category-tech-news","tag-cyber-security-news"],"_links":{"self":[{"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/posts\/5716"}],"collection":[{"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/comments?post=5716"}],"version-history":[{"count":0,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/posts\/5716\/revisions"}],"wp:attachment":[{"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/media?parent=5716"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/categories?post=5716"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/tags?post=5716"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}