Skip to content

port of mimipenguin.sh in python with some additional protection features

License

Notifications You must be signed in to change notification settings

n1nj4sec/mimipy

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

18 Commits
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

Mimipy

Tool to dump passwords from various processes memory. Works on windows/linux/OSX ! Features :

  • Embbed technique from @huntergregal's mimipenguin.sh to dump passwords from gnome-keyring with some additional features :
    • can dump passwords from lightDM
    • possibility to mitigate the attack by overwriting passwords found in memory (you might want to add a cron)
  • find GET/POST/Basic passwords from browsers memory or HTTP Servers
  • function to search for any trace of your password in all your processes
  • function to scan a process by pid with all techniques available

Install

you can install memorpy and run mimipy.py or directly use the packed version that doesn't require any dependency

python packed/mimipy.py

you can also use one the following oneliner :

sudo python -c 'import urllib;exec urllib.urlopen("https://raw.githubusercontent.com/n1nj4sec/mimipy/master/packed/mimipy.py").read()'

Usage

usage: mimipy.py [-h] [--clean] [-v] [-n] [-p PID] [-i IGNORE]
                 [--search-password] [-m {cleartext,xor,b64,all,no-cleartext}]

    mimipy can loot passwords from memory or overwrite them to mitigate mimipenguin's dumps !

    Author: Nicolas VERDIER ([email protected])
    orginal mimipenguin.sh script and idea from @huntergregal
    Bleeding Edge version: https://github.com/n1nj4sec/mimipy



optional arguments:
  -h, --help            show this help message and exit
  --clean               @blueteams protect yourself and clean found passwords from memory ! You might want to regularly run this on your workstation/servers
  -v, --verbose         be more verbose !
  -n, --no-optimize     disable optimisations (search the whole memory whatever region perms are) (slower)
  -p PID, --pid PID     choose the process's pid to scan instead of automatic selection
  -i IGNORE, --ignore IGNORE
                        ignore a process. This option can be used multiple times. ex: -i apache2 -i firefox
  --search-password     prompt for your password and search it in all your processes !.
  -m {cleartext,xor,b64,all,no-cleartext}, --search-mode {cleartext,xor,b64,all,no-cleartext}
                        search for different obfuscations methods

Contact

by mail: [email protected]
on Twitter: Follow me on twitter

Special thanks

Special thanks to @huntergregal for releasing his mimipenguin.sh idea and @gentilwiki for the awesome mimikatz tool

About

port of mimipenguin.sh in python with some additional protection features

Resources

License

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published

Languages