n1nj4sec/mimipy n1nj4sec/mimipy

  • Stars
    star
    203
  • Rank 192,890 (Top 4 %)
  • Language
    Python
  • License
    BSD 3-Clause "New...
  • Created over 7 years ago
  • Updated over 7 years ago
Twitter logo Share LinkedIn logo Share Facebook logo Share
n1nj4sec/mimipy
github

n1nj4sec

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

port of mimipenguin.sh in python with some additional protection features

Mimipy

Tool to dump passwords from various processes memory. Works on windows/linux/OSX ! Features :

  • Embbed technique from @huntergregal's mimipenguin.sh to dump passwords from gnome-keyring with some additional features :
    • can dump passwords from lightDM
    • possibility to mitigate the attack by overwriting passwords found in memory (you might want to add a cron)
  • find GET/POST/Basic passwords from browsers memory or HTTP Servers
  • function to search for any trace of your password in all your processes
  • function to scan a process by pid with all techniques available

Install

you can install memorpy and run mimipy.py or directly use the packed version that doesn't require any dependency

python packed/mimipy.py

you can also use one the following oneliner :

sudo python -c 'import urllib;exec urllib.urlopen("https://raw.githubusercontent.com/n1nj4sec/mimipy/master/packed/mimipy.py").read()'

Usage

usage: mimipy.py [-h] [--clean] [-v] [-n] [-p PID] [-i IGNORE]
                 [--search-password] [-m {cleartext,xor,b64,all,no-cleartext}]

    mimipy can loot passwords from memory or overwrite them to mitigate mimipenguin's dumps !

    Author: Nicolas VERDIER ([email protected])
    orginal mimipenguin.sh script and idea from @huntergregal
    Bleeding Edge version: https://github.com/n1nj4sec/mimipy



optional arguments:
  -h, --help            show this help message and exit
  --clean               @blueteams protect yourself and clean found passwords from memory ! You might want to regularly run this on your workstation/servers
  -v, --verbose         be more verbose !
  -n, --no-optimize     disable optimisations (search the whole memory whatever region perms are) (slower)
  -p PID, --pid PID     choose the process's pid to scan instead of automatic selection
  -i IGNORE, --ignore IGNORE
                        ignore a process. This option can be used multiple times. ex: -i apache2 -i firefox
  --search-password     prompt for your password and search it in all your processes !.
  -m {cleartext,xor,b64,all,no-cleartext}, --search-mode {cleartext,xor,b64,all,no-cleartext}
                        search for different obfuscations methods

Contact

by mail: [email protected]
on Twitter: Follow me on twitter

Special thanks

Special thanks to @huntergregal for releasing his mimipenguin.sh idea and @gentilwiki for the awesome mimikatz tool

More Repositories

1

pupy

Pupy is an opensource, cross-platform (Windows, Linux, OSX, Android) C2 and post-exploitation framework written in python and C
Python
8,340
star
2

memorpy

Python library using ctypes to search/edit windows / linux / macOS / SunOS programs memory
Python
774
star
3

pr0cks-py

python script setting up a transparent proxy to forward all TCP and DNS traffic through a SOCKS / SOCKS5 or HTTP(CONNECT) proxy using iptables -j REDIRECT target
Python
347
star
4

pymemimporter

import pyd or execute PE all from memory using only pure python code and some shellcode tricks
Python
71
star
5

pr0cks

Go
9
star
6

gitfiveGirlfriend

Shell
1
star