MXtract is an opensource Linux based tool that analyses and dumps memory. Its developed as an offensive pentration testing tool which can be used to scan memory for private keys, IP, and passwords using regexes. Remember your results are only as good as your regexes.
In most Linux environments users can access the memory of processes, this allows attackers to harvest credentials, private keys, or anything that isn’t suppose to be seen but is being processed by a program in clear text.
Also Read – DNSDmpstr : Unofficial API & Client for DnsDumpster & HackerTarget
Features
Getting started
Compiling: g++ -std=c++11 -O2 src/main.cpp -o mxtract
Commands
-v Enable Verbose Output
-s Suppress Banner
-h Help
-c suppress colored output
-r= Regex DB
-a Scan all memory ranges not just heap/stack
-w Write raw memory to file Default directory is pid/
-o Write regex output to file
-d= Custom Ouput Directory
-p= Specify single pid to scan
Either -r= or -w needed
Screenshots
Scan with verbose and with a simple IP regex, scanning every data segment.
Scan with verbose and with a simple IP regex, scanning only heap and stack.
Scan without verbose, and with a simple IP regex.
ParadeDB is an Elasticsearch alternative built on Postgres. We're modernizing the features of Elasticsearch's product…
Invoke-AtomicAssessment is a powerful tool designed to facilitate adversary emulation by leveraging Atomic Red Team.…
This is a simulation of attack by the Wicked Panda group (APT-41) targeting U.S. state…
A simple application that extracts your IoCs from garbage input and checks their reputation using…
Flutter Mobile Application Reverse Engineering Tool by Compiling Dart AOT Runtime. Currently, the application supports…
Welcome to FLARE-VM - a collection of software installations scripts for Windows systems that allows…