MimiPenguin 2.0 Logo

MimiPenguin 2.0

0
Free
Visit Website

A tool to dump the login password from the current Linux desktop user, adapted from the idea behind the popular Windows tool mimikatz. Takes advantage of cleartext credentials in memory by dumping the process and extracting lines with a high probability of containing passwords. Introduces a clean C port in version 2.0 to increase speed and portability. Known issue with 32bit variant in a 64bit userspace. Requires root permissions. Supported on Kali 4.3.0 (rolling) x64, Ubuntu Desktop 12.04 LTS x64, 14.04.1 LTS x64, and 16.04 LTS x64.

FEATURES

ALTERNATIVES

Find RCE gadgets for CTF pwn challenges with ease.

Wfuzz is a tool designed for bruteforcing Web Applications with multiple features like multiple injection points, recursion, and payload combinations.

Alpha release of External C2 framework for Cobalt Strike with enhanced data channels.

Tool for enumerating proxy configurations and generating CobaltStrike-compatible shellcode.

A framework for testing and exploiting race conditions in software

A quick and dirty dynamic redirect.rules generator for penetration testers and security professionals.

A VM for mobile application security testing, Android and iOS applications, with custom-made tools and scripts.

Rip web accessible (distributed) version control systems: SVN, GIT, Mercurial/hg, bzr, ...