An opensource Linux primarily based software that analyses and dumps reminiscence.
Its developed as an offensive penetration testing software which can be utilized to scan reminiscence for personal keys, ips, and passwords utilizing regexes. Bear in mind your outcomes are solely pretty much as good as your regexes.
Scan with verbose and with a easy IP regex, scanning each information section.
Scan with verbose and with a easy IP regex, scanning solely heap and stack.
Scan with out verbose, and with a easy IP regex.
Why dump straight from reminiscence?
In most linux environments customers can entry the reminiscence of processes, this enables attackers to reap credentials, personal keys, or something that isnt suppose to be seen however is being processed by a program in clear textual content.
Options
- Potential to enter regex lists
- Clear and Readable Show
- Potential to Mass Scan Each Proccess or a Specfic PID
- In a position to decide on reminiscence sections to scan
- Reminiscence dumps mechanically removes unicode characters which permits for processing with different instruments or manually
Getting began
Compiling: g++ -std=c++11 -O2 src/fundamental.cpp -o mxtract
Instructions
-v Allow Verbose Output
-s Suppress Banner
-h Assist
-c suppress coloured output
-r= Regex DB
-a Scan all reminiscence ranges not simply heap/stack
-w Write uncooked reminiscence to file Default listing is pid/
-o Write regex output to file
-d= Customized Ouput Listing
-p= Specify single pid to scan
Both -r= or -w wanted
Download mXtract