Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/qeeqbox/two-factor-authentication-sim-swapping

An adversary may utilize a sim swapping attack for defeating 2fa authentication
https://github.com/qeeqbox/two-factor-authentication-sim-swapping

2fa example infosecsimplified metadata qeeqbox sim swapping visualization vulnerability

Last synced: 2 days ago
JSON representation

An adversary may utilize a sim swapping attack for defeating 2fa authentication

Host: GitHub
URL: https://github.com/qeeqbox/two-factor-authentication-sim-swapping
Owner: qeeqbox
License: agpl-3.0
Created: 2022-04-20T20:40:46.000Z (over 2 years ago)
Default Branch: main
Last Pushed: 2024-01-29T01:13:59.000Z (10 months ago)
Last Synced: 2024-05-01T11:27:25.246Z (7 months ago)
Topics: 2fa, example, infosecsimplified, metadata, qeeqbox, sim, swapping, visualization, vulnerability
Homepage:
Size: 673 KB
Stars: 9
Watchers: 2
Forks: 2
Open Issues: 0
Metadata Files:
- Readme: README.md
- License: LICENSE

Awesome Lists containing this project

README

An adversary may utilize a sim swapping attack for defeating 2fa authentication.

## Example #1
1. Adversary steals the username and password pair for website
2. Adversary compromises the victim's phone (convinces cell phone provider to swap victim's phone number with a different sim they own)
3. Adversary logs in with the stolen username and password
4. Adversary receives a pin code on the compromised phone and uses it for verification.

## Impact
High

## Risk
- gain unauthorized access

## Redemption
- use more factors

## ID
58a84977-90e1-4156-a555-8568e83115d0

## References
- [howtogeek](hthttps://www.howtogeek.com/668922/how-to-protect-yourself-from-sim-swapping-attacks/)