- by x32x01 ||
If you're looking to turn your OnePlus 7 into a powerful mobile penetration-testing device, Kali NetHunter is one of the best tools you can install. It's basically a “portable hacking lab” that fits in your pocket - perfect for WiFi attacks, USB attacks, networking tools, HID attacks, and more.
In this full step-by-step guide, we’ll walk through how to install NetHunter from scratch - even if your phone is fully locked or freshly reset. The process looks long, but don’t worry - I’ll break everything down in simple, American-style English so you can follow smoothly.
Important Warning:
This process includes unlocking your bootloader, flashing images, and disabling encryption. Doing this will wipe all your data. Back up everything before starting.
Overview of What We’ll Do
You're basically going from a clean device → custom recovery → root → decrypted storage → full NetHunter install.
Here’s the quick roadmap:
Step 1 - Flash the Latest Android 10 Stock ROM
Before installing anything, you must return the OnePlus 7 to a clean Android 10 base.
This ensures compatibility with TWRP, Magisk, and NetHunter.
Download and unzip the following file on your Windows PC:
https://build.nethunter.com/contributors/re4son/guacamole/guacamoleb_14_P.32_210127.zip
Open Command Prompt as Administrator:
Reboot your PC.
Run:
Click Start in MSM Tool and let it complete.
After the flash completes, reboot your device normally.
Go to:
Settings → About Phone → Tap Build Number 7 times
Settings → Developer Options → Enable OEM Unlock + USB Debugging
If you’re using Linux:
This will erase all data.
Your device is now ready for custom flashing.
Step 2 - Flash TWRP Recovery & Magisk Root
Now that your bootloader is unlocked, it's time to install TWRP and gain root access with Magisk.
Copy both Magisk.zip and TWRP installer files to your OnePlus 7.
Download from GitHub:
https://github.com/topjohnwu/Magisk/releases/download/v19.3/Magisk-v19.3.zip
Transfer it to the phone.
Download it
If needed:
Double-check in Developer Options.
(Not flashing yet)
Your device will automatically boot into TWRP.
In TWRP:
You now have:
TWRP installed
Root access active
Bootloader unlocked
You're getting close.
Step 3 - Disable Force Encryption of Data
Android normally encrypts the /data partition.
NetHunter needs decrypted storage for modules and low-level access.
Turn off the phone → Hold Power + Volume Down
In TWRP:
Format Data → Type "yes"
This erases everything again.
This ensures the partition mounts correctly.
Flash Magisk so root is restored after formatting.
Flash:
Your phone now has decrypted storage.
Complete Android setup normally, but skip fingerprint and security settings for now.
Step 4 - Install Kali NetHunter
This is the part everyone’s waiting for.
From the official Kali download page:
https://www.kali.org/get-kali/#kali-mobile
Choose the OnePlus 7 build.
There’s a current bug where the kernel must be flashed separately.
Boot TWRP again.
Install: nethunter-oneplus7
Keeps root alive.
Yes, again: Disable_Dm-Verity
Open the Kali NetHunter app and let it set up the environment.
This may take several minutes.
Restart device after initial configuration.
From the Play Store → “Update”.
You're officially running a portable hacking machine now.
Step 5 - Disable OnePlus System Update Service
OTA updates can break root, TWRP, or NetHunter.
Disable the update service:
Use Termux or the built-in terminal.
This permanently disables the update system.
You're now safe from accidental firmware updates.
Final Thoughts
After completing all steps, your OnePlus 7 becomes a fully functional Kali NetHunter mobile hacking lab, capable of:
✔ Wireless attacks
✔ HID keyboard attacks
✔ USB MITM
✔ Custom kernels
✔ Full Linux chroot
✔ Packet injection
✔ Portable penetration testing
Enjoy your new power machine!
In this full step-by-step guide, we’ll walk through how to install NetHunter from scratch - even if your phone is fully locked or freshly reset. The process looks long, but don’t worry - I’ll break everything down in simple, American-style English so you can follow smoothly.
Important Warning:This process includes unlocking your bootloader, flashing images, and disabling encryption. Doing this will wipe all your data. Back up everything before starting.
Overview of What We’ll Do 
You're basically going from a clean device → custom recovery → root → decrypted storage → full NetHunter install.Here’s the quick roadmap:
- Flash Android 10 stock firmware (OOS)
- Install TWRP + Magisk
- Disable force-encryption of data
- Install Kali NetHunter
- Disable OnePlus update service (to prevent breaking the installation)
Step 1 - Flash the Latest Android 10 Stock ROM
Before installing anything, you must return the OnePlus 7 to a clean Android 10 base.This ensures compatibility with TWRP, Magisk, and NetHunter.
1.01 - Download the OOS Firmware
Download and unzip the following file on your Windows PC:https://build.nethunter.com/contributors/re4son/guacamole/guacamoleb_14_P.32_210127.zip
1.02 - Enable Test Signing Mode
Open Command Prompt as Administrator: Code:
bcdedit /set testsigning on 1.03 - Launch MSM Download Tool
Run: Code:
MsmDownloadTool V4.0.exe 1.04 - Boot OnePlus 7 into EDL Mode
- Power off your device
- Hold Volume + and Volume – together
- Count to 5
- Connect phone to your laptop
1.05 - Start Flashing
Click Start in MSM Tool and let it complete. 1.06 - Reboot & Initial Setup
After the flash completes, reboot your device normally. 1.07 - Enable Developer Options
Go to:Settings → About Phone → Tap Build Number 7 times
Settings → Developer Options → Enable OEM Unlock + USB Debugging
1.08 - Install ADB on Linux
If you’re using Linux: Code:
sudo apt install adb 1.09 - Restart ADB
Code:
adb kill-server
adb start-server 1.10 - Reboot to Bootloader
Code:
adb reboot bootloader 1.11 - Unlock the Bootloader
This will erase all data. Code:
sudo fastboot oem unlock 1.12 - Reboot and complete setup
Your device is now ready for custom flashing.Step 2 - Flash TWRP Recovery & Magisk Root 
Now that your bootloader is unlocked, it's time to install TWRP and gain root access with Magisk. 2.01 - Transfer Files
Copy both Magisk.zip and TWRP installer files to your OnePlus 7. 2.02 - Download Magisk
Download from GitHub:https://github.com/topjohnwu/Magisk/releases/download/v19.3/Magisk-v19.3.zip
Transfer it to the phone.
2.03 - Download TWRP
Download it 2.04 - Install Android Platform Tools
If needed: Code:
sudo apt install android-sdk-platform-tools 2.05 - Ensure USB Debugging Is Enabled
Double-check in Developer Options. 2.06 - Restart ADB Again
Code:
adb kill-server
adb start-server 2.07 - Boot into Bootloader
Code:
adb reboot bootloader 2.08 - Boot TWRP Temporarily
(Not flashing yet) Code:
sudo fastboot boot twrp-3.3.1-1-guacamoleb.img 2.09 - Install TWRP Permanently + Root
In TWRP:- Flash
https://build.nethunter.com/contributors/re4son/guacamole/guacamoleb_14_P.32_210127.zip - Flash
https://github.com/topjohnwu/Magisk/releases/download/v19.3/Magisk-v19.3.zip
2.10 - Reboot
You now have: TWRP installed Root access active Bootloader unlockedYou're getting close.
Step 3 - Disable Force Encryption of Data 
Android normally encrypts the /data partition.NetHunter needs decrypted storage for modules and low-level access.
3.01 - Boot Into Recovery
Turn off the phone → Hold Power + Volume Down 3.02 - Format /data
In TWRP:Format Data → Type "yes"
This erases everything again. 3.03 - Reboot Back Into Recovery
This ensures the partition mounts correctly. 3.04 - Install Magisk Again
Flash Magisk so root is restored after formatting. 3.05 - Install Force Encryption Disabler
Flash: 3.06 - Reboot
Your phone now has decrypted storage. 3.07 - Initial Setup
Complete Android setup normally, but skip fingerprint and security settings for now.Step 4 - Install Kali NetHunter
This is the part everyone’s waiting for. 4.01 - Download NetHunter Image
From the official Kali download page:https://www.kali.org/get-kali/#kali-mobile
Choose the OnePlus 7 build.
4.02 - Known Bug
There’s a current bug where the kernel must be flashed separately. 4.03 - Reboot Into Recovery
Boot TWRP again. 4.04 - Flash NetHunter ZIP
Install: nethunter-oneplus7 4.05 - Flash Magisk Again
Keeps root alive. 4.06 - Flash Disable Encryption Again
Yes, again: Disable_Dm-Verity 4.07 - Reboot
4.08 - Run NetHunter App
Open the Kali NetHunter app and let it set up the environment.This may take several minutes.
4.09 - Reboot After Setup
Restart device after initial configuration. 4.10 - Update the NetHunter App
From the Play Store → “Update”.You're officially running a portable hacking machine now.
Step 5 - Disable OnePlus System Update Service 
OTA updates can break root, TWRP, or NetHunter.Disable the update service:
5.01 - Open Terminal on Android
Use Termux or the built-in terminal. 5.02 - Run:
Code:
su -c pm disable com.oneplus.opbackupYou're now safe from accidental firmware updates.
Final Thoughts 
After completing all steps, your OnePlus 7 becomes a fully functional Kali NetHunter mobile hacking lab, capable of:✔ Wireless attacks
✔ HID keyboard attacks
✔ USB MITM
✔ Custom kernels
✔ Full Linux chroot
✔ Packet injection
✔ Portable penetration testing
Enjoy your new power machine!
Last edited: