Home Kali Linux QRLJacking : Hijack Services That Relies On QR Code Authentication

Kali Linux

QRLJacking : Hijack Services That Relies On QR Code Authentication

June 10, 2020

QRLJacking or Quick Response Code Login Jacking is a simple social engineering attack vector capable of session hijacking affecting all applications that rely on the Login with QR code feature as a secure way to login into accounts. In a nutshell, the victim scans the attacker’s QR code which results in session hijacking.

Features

Port Forwarding using Ngrok

Disclaimer

Usage of OhMyQR for attacking targets without prior mutual consent is illegal. It’s the end user’s responsibility to obey all applicable local, state and federal laws. Developers assume no liability and are not responsible for any misuse or damage caused by this program

Also Read – Nishang : Offensive PowerShell For Red Team, Penetration Testing & Offensive Security

Usage

git clone https://github.com/thelinuxchoice/ohmyqr
cd ohmyqr
bash ohmyqr.sh

Download

QRLJacking : Hijack Services That Relies On QR Code Authentication

APPLICATIONS

PSPKIAudit : PowerShell toolkit for auditing Active Directory Certificate Services (AD CS)

Cariddi : Take A List Of Domains, Crawl Urls And Scan For Endpoints, Secrets,...

Pollenisator : Collaborative Pentest Tool With Highly Customizable Tools

NebulousAD : Automated Credential Auditing Tool

HOT NEWS

WPScan – Checks Vulnerabilities and Spots Security Issues

EVEN MORE NEWS

Bomber : Navigating Security Vulnerabilities In SBOMs

EmbedPayloadInPng : A Guide To Embedding And Extracting Encrypted Payloads In...

Exploit Street – Navigating The New Terrain Of Windows LPEs

POPULAR CATEGORY

How to Get Most Out of Amazon Logistics

BugBountyScanner : A Bash Script & Docker Image For Bug Bounty...

theZoo – A Repository Of LIVE Malwares For Your Own Joy...