{"id":13143,"date":"2019-04-01T03:19:05","date_gmt":"2019-04-01T03:19:05","guid":{"rendered":"http:\/\/www.appservgrid.com\/paw92\/?p=13143"},"modified":"2019-04-01T03:19:05","modified_gmt":"2019-04-01T03:19:05","slug":"mimipenguin-dump-login-passwords-from-current-linux-users","status":"publish","type":"post","link":"https:\/\/www.appservgrid.com\/paw92\/index.php\/2019\/04\/01\/mimipenguin-dump-login-passwords-from-current-linux-users\/","title":{"rendered":"mimipenguin \u2013 Dump Login Passwords From Current Linux Users"},"content":{"rendered":"

Mimipenguin<\/strong>\u00a0is a free and open source, simple yet powerful Shell\/Python script used to dump the login credentials (usernames and passwords) from the current Linux desktop user and it has been tested on various Linux distributions.<\/p>\n

Additionally, it supports applications such as: VSFTPd (active FTP client connections), Apache2 (active\/old HTTP BASIC AUTH sessions but this requires Gcore) and openssh-server (active SSH connections with\u00a0sudo command usage<\/a>). Importantly, it\u2019s gradually being ported to numerous languages to support all imaginable post-exploit situations.<\/p>\n

How does Mimipenguin Works?<\/h4>\n

To understand how mimipenguin works, you need to keep in mind that all if not most Linux distributions store a great deal of such critical information as: credentials, encryption keys, as well as personal data in memory.<\/p>\n

Particularly usernames and passwords are held by processes (running programs) in memory and stored as plain text for relatively long periods of time. Mimipenguin technically exploits these clear-text credentials in memory \u2013 it dumps a process and extracts lines that have a likelihood of accommodating clear-text credentials.<\/p>\n

It then tries to perform a calculation of each word\u2019s chances of being present by determining hashes in:\u00a0\/etc\/shadow<\/strong>, memory, and regex searches. Once it finds any, it prints them on standard output.<\/p>\n

Installing Mimipenguin in Linux Systems<\/h3>\n

We will use git to clone the mimipenguin repository, so first install git on the system if in case you don\u2019t have it.<\/p>\n

$ sudo apt install git \t\t#Debian\/Ubuntu systems\r\n$ sudo yum install git\t\t#RHEL\/CentOS systems\r\n$ sudo dnf install git\t\t#Fedora 22+\r\n<\/pre>\n
Then clone the mimipenguin directory in your home folder (any where else) like this:<\/p>\n
$ git clone https:\/\/github.com\/huntergregal\/mimipenguin.git\r\n<\/pre>\n
Once you have downloaded the directory, move into it and run mimipenguin as follows:<\/p>\n
$ cd mimipenguin\/\r\n$ .\/mimipenguin.sh \r\n<\/pre>\n
Note<\/strong>: If you encounter the error below, use the sudo command like so:<\/p>\n
Root required - You are dumping memory...\r\nEven mimikatz requires administrator\r\n<\/pre>\n
\n
\"Dump<\/p>\n
Dump Login Passwords in Linux<\/p>\n<\/div>\n
From the output above, mimipenguin provides you the desktop environment along with the username and password.<\/p>\n
Alternatively, run the Python script as follows:<\/p>\n
$ sudo .\/mimipenguin.py\r\n<\/pre>\n
Note<\/strong>\u00a0that sometimes gcore may hang the script (this is a known problem with gcore).<\/p>\n
Future Updates<\/h4>\n
Below is a list of features yet to be added in mimipenguin:<\/p>\n