be-gay-do-crimes
/
duo-cli
mirror of https://github.com/xBytez/duo-cli
1
0
Fork 0
Code Issues Releases Wiki Activity
Duo Command Line App
4 Commits 5 Branches 0 Tags 39 KiB
Python 100%
Go to file
Andreas Thienemann 5cb5600104 Update activation code. 
The duo activation process has changed, the server now expects way
more information from the client as well as a new URL scheme.

Make the server happy, provide some fake data.
Save server response as a response.json file for later use.
Sanity check response, abort if no secret was passed.
 		2019-03-20 00:52:58 +01:00
.gitignore Init 2017-05-15 08:54:22 -04:00
README.md Cleanup and built a barebones command line interface 2018-12-01 20:30:08 -05:00
duo_activate.py Update activation code. 2019-03-20 00:52:58 +01:00
duo_gen.py Allow for different hotp files/secrets 2019-03-20 00:50:26 +01:00
requirements.txt Init 2017-05-15 08:54:22 -04:00

README.md

Duo One Time Password Generator

This is a little script I put together after I reverse engineered the Duo 2FA Mobile App and figured out how their auth flow works. This can be ported into probably a useful desktop app or chrome extention and can probably be used to write bots for MIT Services that require auth.

Usage

Install stuff,

pip install -r requirements.txt

Just grab the QR Code URL and copy the string after value

https://api-XXX.duosecurity.com/frame/qr?value={VALUE}

./duo_activate.py {VALUE}

If everything worked you can then generate a code by running:

./duo_gen.py

Warning: These are HOTP tokens and generate codes increments a counter. If you get too far out of sync with the server it will stop accepting your codes.