QRLJacking or Quick Response Code Login Jacking is a simple-but-nasty attack vector affecting all the applications that relays on “Login with QR code” feature as a secure way to login into accounts which aims for hijacking users session by attackers.


Download Here: https://github.com/OWASP/QRLJacking


What is QRLJacking?
QRLJacking or Quick Response Code Login Jacking is a simple social engineering attack vector capable of session hijacking affecting all applications that rely on the “Login with QR code” feature as a secure way to login into accounts. In a nutshell, the victim scans the attacker’s QR code which results in session hijacking.

What are the requirements to achieve a successful QRLJacking attack?

The QRLJacking attack consists of two sides:

Server Side: A server side script is needed to serve and shape the final look to the victim.
Client Side: Cloning the QR Code and pushing it to the phishing page.

-----------------------------------------------------------------------------------------------

â˜‘ď¸Subscribe for More Videos: https://goo.gl/MrTQ5r

Education Purpose Only !!

đŸŒGet More Tutorials Here: https://www.patreon.com/theshadowbrokers

Follow Me:
Face-book: https://goo.gl/ScNuSH
Twitter: https://goo.gl/TTYpMR
Stumble-upon: https://goo.gl/M5DnF6
Tumber: https://goo.gl/dzuhE9

-The NSA Hackers

Thanks !