Jump to content

mimipenguin


b0N3z
 Share

Recommended Posts

https://github.com/huntergregal/mimipenguin

IDK if anybody has seen this yet but I ran across it earlier today.  Id try to edit this myself but I have no time at the present moment with work and child taking up all my time right now.  Ill just leave it here if somebody wants to mess with it.

Link to comment
Share on other sites

15 minutes ago, b0N3z said:

so kali is about the only thing it will work on lol

Right. Or anyone who is dumb enough to run in root all the time, lol. Now it might be possible to pull this off with a little social engineering though. For example, what if you were able to tailor a scenario where the user had to legitimately (or so they think) needed to enter the sudo password. From there - you pipe the password they enter into the actual command they think they're executing - while executing mimipenguin in the background. You would most likely need to have removed the bash bunny at this point, but the shell script could still be running in the background, and utilize some sort of server to receive the password dump.

Edited by Decoy
Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...