https://github.com/0xnahim/talpido
Linux tool to exfiltrate information through Cloudflare
https://github.com/0xnahim/talpido
exfiltration golang info-stealing linux post-exploitation red-team
Last synced: 27 days ago
JSON representation
Linux tool to exfiltrate information through Cloudflare
- Host: GitHub
- URL: https://github.com/0xnahim/talpido
- Owner: 0xNahim
- Created: 2025-04-01T19:00:56.000Z (about 1 year ago)
- Default Branch: main
- Last Pushed: 2025-04-01T19:37:42.000Z (about 1 year ago)
- Last Synced: 2025-06-18T00:36:57.141Z (12 months ago)
- Topics: exfiltration, golang, info-stealing, linux, post-exploitation, red-team
- Language: Go
- Homepage:
- Size: 3.64 MB
- Stars: 1
- Watchers: 1
- Forks: 0
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
README
## talpido
talpido
What's it? •
Features •
Background •
Installation •
Usage •
To Do
# What's it?
Talpido is a tool designed for rapid collection and exfiltration of sensitive information from Linux systems.
> [!IMPORTANT]
> Crucial information necessary for users to succeed.
> For using Talpido, it is necessary to have the [cloudflared](https://github.com/cloudflare/cloudflared.git) program installed on the attacking machine.
# Feautures
### Features
- Volatile Memory
- Does not store information on disk; everything is kept in memory, reducing detection and enhancing stealth.
- Automatic implementation
- Implements a server that automatically receives compressed (ZIP) files and exposes the server via a Cloudflare tunnel, hiding the underlying infrastructure.
- Payload Generation
- Automatically generates the payload, facilitating quick execution and distribution.
# Background
## What the f* is a talpido?
This tool creates a tunnel and creates a payload that exfiltrates information through a tunnel, so I thought it was appropriate to name it after the mole family.
# Installation Instructions
Talpido requires **go1.18** to install successfully. Run the following command to install.
```
git clone https://github.com/0xNahim/talpido.git && cd ./talpido/cmd/talpido
go build -o talpido main.go
```
> [!NOTE]
> It's not possible to use go install, because I have two main functions. If anyone knows how to fix this, I'd be happy to accept your PR.
# Usage
Using this tool is as simple as typing talpido in the console. The server will automatically start and the payload will be created.
```
./talpido
```
## To Do
- Persistence Module: Implement a persistence mechanism to maintain access to compromised systems even after reboots or other system changes.
- Web Panel for Monitoring "Moles": Develop a web-based control panel to monitor the activities of the "moles" (compromised agents) in real-time.
- Privilege Escalation Implementation: Integrate a module for privilege escalation to increase access levels on compromised systems, allowing deeper exploitation.