A tool to dump the login password from the current Linux desktop user, adapted from the idea behind the popular Windows tool mimikatz. Takes advantage of cleartext credentials in memory by dumping the process and extracting lines with a high probability of containing passwords. Introduces a clean C port in version 2.0 to increase speed and portability. Known issue with 32bit variant in a 64bit userspace. Requires root permissions. Supported on Kali 4.3.0 (rolling) x64, Ubuntu Desktop 12.04 LTS x64, 14.04.1 LTS x64, and 16.04 LTS x64.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
Parrot Security OS is a comprehensive, secure, and customizable operating system for cybersecurity professionals, offering over 600+ tools and utilities for red and blue team operations.
A CVE compliant archive of public exploits and corresponding vulnerable software, and a categorized index of Internet search engine queries designed to uncover sensitive information.
Kali Linux is a specialized Linux distribution for cybersecurity professionals, focusing on penetration testing and security auditing.
SharpShares efficiently enumerates and maps network shares and resolves names within a domain.
A collection of Python scripts for password spraying attacks against Lync/S4B & OWA, featuring Atomizer, Vaporizer, Aerosol, and Spindrift tools.
Tool for enumerating proxy configurations and generating CobaltStrike-compatible shellcode.
A suite of tools for Wi-Fi network security assessment and penetration testing.
PyBOF is a Python library that enables in-memory loading and execution of Beacon Object Files (BOFs) with support for argument passing and function targeting.
PINNED

Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.