Titanium
MDPin
Titanium | MDPin | |
---|---|---|
1 | 2 | |
45 | 42 | |
- | - | |
0.0 | 0.0 | |
over 1 year ago | about 3 years ago | |
JavaScript | JavaScript | |
Apache License 2.0 | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Titanium
MDPin
-
Made a program to steal Android devices Pin Codes
Hey there!
I'm just new here, because I joined this community to share this in. I hope you don't mind. However, I'm pretty glad to say I built my first Pentesting/Hacking tool (Link here: https://github.com/bastien8060/MDPin).
Of course it is open-source, and it relies on social engineering to work. Although it is not an exploit, it exploits some browser's trust in fullscreen mode (Eg. In-App browsers like instagram/reddit's browser which open links has the feature to enter fullscreen but do not give any warning to the user, when using it).
This program lets you start a server with a backend and a frontend which mimics as close as possible Android's login screen. It detects the phone's brand and loads the brand's default wallpaper. Ios does not work on purpose and will be greeted with a blank screen. The user will be shown a screen off animation then will be shown a lockscreen. They would slide up and enter their pin. An unlock animation will be shown and the phone will seem to be on google.com. The backend will collect the pin code.
Of course this is to be used only for educational purposes. The goal here is to show how people are affected/uneducated about social engineering attacks still today. (People can't always be trusted. Google does not ask for card details by email from a foreign email address. Social engineering over phone calls or even posted letters are also a thing etc...)
Thank you very much for reading this.
I'm still not entirely sure this is the right subreddit to post this in, however, I'm pretty glad to say I built my first Pentesting/Hacking tool (Link here: https://github.com/bastien8060/MDPin).
What are some alternatives?
GrimeyPhisher - Phishing Toolkit
enmodal - transit planning & analysis in your browser
Hemera - O Hemera é um Software voltado para o desenvolvimento de Phishings. Seu intuito é auxiliar nos estudos de segurança digital.
stuhack - Chrome extension for studocu premium free
web-benchmarks - A set of HTTP server benchmarks for Golang, node.js and Python with proper CPU utilization and database connection pooling.