Skip to content
/ two-factor-authentication-brute-force Public

A threat actor may lunch brute force to the two-factor authentication (2FA) logic causing unauthorized access to the target

License

AGPL-3.0 license
2 stars 1 fork Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

qeeqbox/two-factor-authentication-brute-force

BranchesTags

Repository files navigation

A threat actor may lunch brute force to the two-factor authentication (2FA) logic causing unauthorized access to the target.

Example #1

  1. Threat actor has a stolen username and password pair for a vulnerable website
  2. Threat actor logs in and prompted with a four digits pin code that was sent to the victims mobile
  3. Threat actor lunches brute-force against and triggers the right pin code

Impact

Vary

Risk

  • Gain unauthorized access

Redemption

  • Increase code length
  • Limit pin code submissions

ID

58a84977-90e1-4156-a555-8568e83115d0

References

About

A threat actor may lunch brute force to the two-factor authentication (2FA) logic causing unauthorized access to the target

Topics

visualization authentication example brute-force vulnerability 2fa qeeqbox infosecsimplified

Resources

Readme

License

AGPL-3.0 license

Code of conduct

Code of conduct
Activity
Custom properties

Stars

2 stars

Watchers

1 watching

Forks

1 fork
Report repository

Sponsor this project

 
Learn more about GitHub Sponsors