<p>Organizations are implementing two-factor on more and more web services. The traditional methods for phishing credentials is no longer good enough to gain access to user accounts if 2FA is setup. In this episode Mike Felch (@ustayready) and Beau Bullock (@dafthack) demonstrate a tool that Mike wrote called CredSniper that assists in cloning portals for harvesting two-factor tokens.</p> <p>Links: <a href= "https://github.com/ustayready/CredSniper">https://github.com/ustayready/CredSniper</a></p>

<description>&lt;p&gt;Organizations are implementing two-factor on more and more web services. The traditional methods for phishing credentials is no longer good enough to gain access to user accounts if 2FA is setup. In this episode Mike Felch (@ustayready) and Beau Bullock (@dafthack) demonstrate a tool that Mike wrote called CredSniper that assists in cloning portals for harvesting two-factor tokens.&lt;/p&gt; &lt;p&gt;Links: &lt;a href= "https://github.com/ustayready/CredSniper"&gt;https://github.com/ustayready/CredSniper&lt;/a&gt;&lt;/p&gt;</description>

Tradecraft Security Weekly (Audio)

Phishing 2FA Tokens with CredSniper - Tradecraft Security Weekly #25

Phishing 2FA Tokens with CredSniper - Tradecraft Security Weekly #25

Description