Project description

OneFactorAuth

A tool to bypass 2 factor authentication.

Usage

Installation

python3 -m pip install onefactorauth

Setup

Go to https://receivesms.cc/sms/ and choose a phone number
Run 1fa config -p <phone_number> (ex: 1fa config -p <31616099881>)
Register the phone number under your account for 2 factor authentication
Go to https://receivesms.cc/sms/<phone_number> (ex: https://receivesms.cc/sms/31616099881) to see the text message
Complete the setup of this phone number in your account settings
Take note of the pattern of the message, eg. how it is structured, where the code is

Invoking

$: 1fa code --help

usage: 1fa code [-h] [-c] [-t TIMEOUT] [-p PATTERN] [-m MAX_TIME]

Get 1fa code

options:
  -h, --help            show this help message and exit
  -c, --clipboard       copy to clipboard
  -t TIMEOUT, --timeout TIMEOUT
                        timeout (s)
  -p PATTERN, --pattern PATTERN
                        regex pattern for passcode
  -m MAX_TIME, --max-time MAX_TIME
                        maximum age of the sms code msg (min)

pattern for the passcode should have one capture group with the code
- ex: messages are like SMS p***codes: 93209
  - pattern of SMS p\*\*\*codes: (\d+)
- ex: messages are like Your Uber code is 43890
  - pattern of Uber code is (\d+) (partial matches are acceptable
bind 1fa code --pattern='code is (\d+)' --clipboard to a keybind
- windows: use winhotkey
- macos: automator or icanhazshortcut
- linux: depends on your desktop environment, there's something in the built in settings for gnome and xfce

How

It uses https://receivesms.cc/sms/ to receive and scrape texts for your text passcode

Why

UCLA makes me 2fa every time I wanna log into my portal. No one's trying to hack my BruinBill, UCLA, just lemme use my account. I have 2fa setup for GitHub and Discord which are likelier targets for hacking and neither of them ask me for 2fa on every login.

License

Do WTF You Want To Public License

Developers

Developed by Ronak Badhe (r2dev2)

Project details

These details have not been verified by PyPI

Project links

Homepage

Release history Release notifications | RSS feed

0.1.1

Nov 12, 2022

This version

0.1.0

Nov 12, 2022

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

onefactorauth-0.1.0.tar.gz (4.7 kB view details)

Uploaded Nov 12, 2022 Source

Built Distribution

onefactorauth-0.1.0-py3-none-any.whl (6.0 kB view details)

Uploaded Nov 12, 2022 Python 3

File details

Details for the file onefactorauth-0.1.0.tar.gz.

File metadata

Download URL: onefactorauth-0.1.0.tar.gz
Upload date: Nov 12, 2022
Size: 4.7 kB
Tags: Source
Uploaded using Trusted Publishing? No
Uploaded via: twine/3.8.0 pkginfo/1.8.3 readme-renderer/34.0 requests/2.27.1 requests-toolbelt/0.10.1 urllib3/1.26.12 tqdm/4.64.1 importlib-metadata/4.8.3 keyring/23.4.1 rfc3986/1.5.0 colorama/0.4.5 CPython/3.6.15

File hashes

Hashes for onefactorauth-0.1.0.tar.gz
Algorithm	Hash digest
SHA256	`f2b991d9b86bf96d4dd18896747437e9fb97e8dfe389ffc4c9264a3547164f2a`
MD5	`9fdb02622f6a9171a648b7a8a99c2f64`
BLAKE2b-256	`152d88c51b6a7d23b302ac5f1e3eed027f47da86fddf462487527d2495fb2801`

See more details on using hashes here.

File details

Details for the file onefactorauth-0.1.0-py3-none-any.whl.

File metadata

Download URL: onefactorauth-0.1.0-py3-none-any.whl
Upload date: Nov 12, 2022
Size: 6.0 kB
Tags: Python 3
Uploaded using Trusted Publishing? No
Uploaded via: twine/3.8.0 pkginfo/1.8.3 readme-renderer/34.0 requests/2.27.1 requests-toolbelt/0.10.1 urllib3/1.26.12 tqdm/4.64.1 importlib-metadata/4.8.3 keyring/23.4.1 rfc3986/1.5.0 colorama/0.4.5 CPython/3.6.15

File hashes

Hashes for onefactorauth-0.1.0-py3-none-any.whl
Algorithm	Hash digest
SHA256	`d92c8ee7a1ed8a67df49ef316ffb35eb58ffb677ee7f54f698be032f3928b0e8`
MD5	`c04c6a95cd219d5ff89a8abec4837828`
BLAKE2b-256	`fedb25b6ddc399454ba6afb2b8b934de145fd74edff3c04aab264065cb59149b`