be-gay-do-crimes
/
duo-cli
mirror of https://github.com/xBytez/duo-cli
1
0
Fork 0
Code Issues Releases Wiki Activity
Duo Command Line App
15 Commits 5 Branches 0 Tags 39 KiB
Python 100%
Go to file
xBytez fb57239727
Merge pull request #2 from xBytez/feature/quiet-generation 
Silence generate script
 		2019-10-02 23:58:42 +02:00
.gitignore Improve gitignore. 2019-03-20 14:49:53 +01:00
README.md Add qr code generator for third party apps. 2019-03-20 13:07:11 +01:00
duo_activate.py Fix filename in argument example. Change URL format to Duo's new QR code format. Update device details to be a bit more descriptive and more recent versions. Fix Python 3 support. Remove functionality to generate tokens on activation. 2019-10-02 23:52:50 +02:00
duo_export.py Add qr code generator for third party apps. 2019-03-20 13:07:11 +01:00
duo_gen.py Don't ouput secret, count by default. Don't prepend token with "Code: " by default. 2019-10-02 23:56:05 +02:00
requirements.txt Pin dependencies to make sure the script stays functional. 2019-10-02 23:43:28 +02:00

README.md

Duo One Time Password Generator

This is a little script I put together after I reverse engineered the Duo 2FA Mobile App and figured out how their auth flow works. This can be ported into probably a useful desktop app or chrome extention and can probably be used to write bots for MIT Services that require auth.

Usage

Install stuff,

pip install -r requirements.txt

Just grab the QR Code URL and copy the string after value

https://api-XXX.duosecurity.com/frame/qr?value={VALUE}

./duo_activate.py {VALUE}

If everything worked you can then generate a code by running:

./duo_gen.py

Warning: These are HOTP tokens and generate codes increments a counter. If you get too far out of sync with the server it will stop accepting your codes.

./duo_export.py

Export the duo hotp secret as a QR code for inclusion in third-party hotp apps like freeotp.