search

puddly / android-otp-extractor

Extracts OTP tokens from rooted Android devices
GNU General Public License v3.0
231 stars 22 forks source link

Microsoft authenticator mismatch #39

Open pgera opened 3 years ago

pgera commented 3 years ago

I'm seeing a mismatch with MS authenticator. The tool doesn't throw any errors. The codes do not match though. Please let me know if you need any debugging info. From the other issue, I used the script to generate this dump:

'_id': 3,
 'aad_authority': '',
 'aad_ngc_totp_enabled': 1,
 'aad_security_defaults_policy_enabled': 0,
 'aad_tenant_id': 'xxx',
 'aad_user_id': 'xxx',
 'account_capability': 5,
 'account_type': 2,
 'cached_pin': '',
 'cid': '',
 'encrypted_oath_secret_key': '',
 'group_key': 'xxx',
 'has_password': 1,
 'identity_provider': '',
 'is_totp_code_shown': 1,
 'mfa_pin_encryption_key_alias': '',
 'name': 'xxx',
 'ngc_ski': '',
 'oath_enabled': 1,
 'oath_secret_key': 'xxx',
 'paws_url': 'https://mobileappcommunicator.auth.microsoft.com/mac/MobileAppCommunicator.svc/055465524',
 'restore_capability': 0,
 'update_flags': 1,
 'username': 'xxx@xxx.xxx',
 'ux_position': 1}
puddly commented 3 years ago

What type of account is this?

pgera commented 3 years ago

Work account, likely based on Azure AD