QrlJacker - QrlJacking Exploitation Framework

Friday, September 30, 2016


A python framework which goal is to exploit QrlJacking attack vector easily

Installation

Requirements

  • Python 2.7.x
  • Requests
  • Pillow
  • Selenium
  • configparser

Installation on Windows

After downloading the framework
cd QrlJacking-Framework
pip install -r requirements.txt
python QRLJacker.py

Installation on Ubuntu 16.04

sudo apt-get install python-dev python-pip libncurses5-dev git
git clone https://github.com/OWASP/QRLJacking
cd QrlJacking-Framework
pip install -r requirements.txt
python QRLJacker.py

Installation on OSX

git clone https://github.com/OWASP/QRLJacking
cd QrlJacking-Framework
sudo easy_install pip
sudo pip install -r requirements.txt
python QRLJacker.py

Currently QrlJacker support the following websites :
1)whatsapp
2)WeChat
3)Weibo
4)Yandex
5)Taobao
6)Taobao Trips
7)AliPay
8)Yandex Money
9)Yandex Passport
10)Airdroid
11)MyDigiPass
12)Zapper
13)Trustly App
14)Yelophone

To Do List :
1)Line
2)QQ Instant Messaging
3)QQ Mail
4)Alibaba
5)Aliexpress
6)Tmall
7)1688.com
8)Alimama
9)TenPay
10)Alibaba Yunos



Subscribe via e-mail for updates!