search

kgretzky / evilginx2

Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication
BSD 3-Clause "New" or "Revised" License
10.54k stars 1.91k forks source link

Phishing or bypass #774

Closed ladversaire closed 1 year ago

ladversaire commented 2 years ago

Hi this method can be used for bypass 2fa with login? or its just phishing login and then bypass 2fa

thank you

Manmade404 commented 2 years ago

Yes grabs session cookies... And thats all you need to bypass 2fa