|
|
|
|
|
|
by err_badprocrast
4791 days ago
|
|
|
I wonder if it would be possible to phish 2factor while you're at it... Something like: 1- get target to enter google credentials 2- log into target's account using those credentials with a proxy/controlled IP that shows up nearby in geoip DBs 3- display a credible message, asking for 2factor code (something something DHCP something something more buzzwords - dummy mode on) Any reason this wouldn't work? |
|
|