Security system to prevent Shoulder Surfing Attacks

Related tags

Security related resourcesSurf_Security
Overview

Surf_Sec

Security system to prevent Shoulder Surfing Attacks.

REQUIREMENTS:

  • Python 3.6+
  • XAMPP INSTALLED

    • METHOD TO CONFIGURE PROJECT:

    1. Clone the repo to a root folder. (eg. SSP)
    2. Extract the repo to root directory.
    3. Go to directory SurfSecurity-master , just created.
    4. Move all the folders and file to root folder(SSP)
    5. Delete SurfSecurity-master (as ir is empty)
    6. Open Command Prompt
    7. CD TO root folder(SSP) 8 Enter the following commands --> A. pip install virtualenv B. virtualenv ssp_env C. ssp_env\Scripts\activate --> Virtual environment is created and run. D. pip install requirements.txt (do not close command prompt)

    CREATING THE DATABASE REQUIRED:

    1. Open the XAMPP controller.
    2. Start the Apache and MySQL server. (KEEP THEM OPEN)
    3. Open Browser and go to localhost/phpmyadmin
    4. Create a databae named "ssp". Create no table in it.
    5. Go to root folder(SSP). Go to Register Folder. Fo to LogicFiles Folder. Open "connectToDatabase.py" in a text editor (preferable IDLE).
    6. Uncomment the commentd part (the SQL query and cursor.execute). Run the file.
    7. Once file is run, again comment the both part (the SQL query and cursor.execute). Save the file and close it.

    RUN THE PROJECT

    1. Open the command project. (Virtual environment should be running and the curent folder open should be root folder(ssp))
    2. Run the following commands --> A. python manage.py makemigrations B. python manage.py migrate C. python manage.py runserver
    3. Open browser and enter the url --> localhost:8000/login
    Owner
    Aman Anand
    I am a multi-faceted engineering student currently studying at VIT, Vellore with a keen interest in ML, Blockchain, Web, and Open Source development!
    Aman Anand
    GitHub Repository
    A Python & JavaScript Obfuscator made in Python 3.

    Python Code Obfuscator A script that converts code into full on random numerical expressions. Simple Scripts: Python Mode... Input: Function that deco

    Karim 3 Mar 24, 2022
    HTTP Protocol Stack Remote Code Execution Vulnerability CVE-2022-21907

    CVE-2022-21907 Description POC for CVE-2022-21907: HTTP Protocol Stack Remote Code Execution Vulnerability. create by antx at 2022-01-17. Detail HTTP

    赛欧思网络安全研究实验室 365 Nov 30, 2022
    Bypass 4xx HTTP response status codes.

    Forbidden Bypass 4xx HTTP response status codes. To see all the test cases, check the source code - follow the NOTE comments. Script uses multithreadi

    Ivan Šincek 165 Dec 28, 2022
    Lnkbomb - Malicious shortcut generator for collecting NTLM hashes from insecure file shares

    Lnkbomb Lnkbomb is used for uploading malicious shortcut files to insecure file

    Joe Helle 216 Jan 08, 2023
    web指纹识别工具

    前言 一直苦于没有用的顺手的web指纹识别工具,学习前辈s7ckTeam的Glass和broken5的WebAliveScan优秀开源程序开发的轻量型web指纹工具。

    EASY 966 Dec 26, 2022
    BuddyPress is an open source WordPress plugin to build a community site. In releases of BuddyPress from 5.0.0 before 7.2.1 it's possible for a non-privileged, regular user to obtain administrator rights by exploiting an issue in the REST API members endpoint. The vulnerability has been fixed in BuddyPress 7.2.1. Existing installations of the plugin should be updated to this version to mitigate the issue.

    CVE-2021-21389 BuddyPress 7.2.1 - REST API Privilege Escalation to RCE PoC (Full) Affected version: 5.0.0 to 7.2.0 User requirement: Subscriber user

    KIEN HOANG 17 Nov 09, 2022
    A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or LFI.

    BurpParamFlagger A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF

    Allyson O'Malley 118 Nov 07, 2022
    Fuzzercorn - Bring libfuzzer to Unicorn

    Fuzzercorn libfuzzer bindings for Unicorn. API // The main entry point of the fu

    lazymio 23 Nov 17, 2022
    Burp Suite extension for encoding/decoding EVM calldata

    unblocker Burp Suite extension for encoding/decoding EVM calldata 0x00_prerequisites Burp Suite Java 8+ Python 2.7 0x01_installation clone this reposi

    Halborn 16 Aug 30, 2022
    A Static Analysis Tool for Detecting Security Vulnerabilities in Python Web Applications

    This project is no longer maintained March 2020 Update: Please go see the amazing Pysa tutorial that should get you up to speed finding security vulne

    2.1k Dec 25, 2022
    对安卓APP注入MSF PAYLOAD,并且对手机管家进行BYPASS。

    520_APK_HOOK 介绍 将msf生成的payload,注入到一个正常的apk文件中,重新打包后进行加固,bypass手机安全管家的检测。 项目地址: https://github.com/cleverbao/520apkhook 作者: BaoGuo 优点 相比于原始的msf远控,此版本ap

    BaoGuo 368 Jan 02, 2023
    A Python application to predict what is cooking

    ez-cuisine-classifier A Python application to predict what is cooking Environment Python 3.9 Windows 10 Install python -m venv venv .\venv\Scripts\act

    Zeheng Li 1 Jun 21, 2022
    Using python 3 and Flask an MVC system where the AES 128 CBC and Trivium algorithms

    This project was developed using python 3 and Flask, it is an MVC system where the AES 128 CBC and Trivium algorithms can be tested through a communication between the computer and a device such as a

    Brandon Israel Camacho Reyes 1 Dec 26, 2021
    AutoScan 有多个目标时,调用xray+rad进行自动扫描

    Usage: 在高级版Xray和rad同目录下运行 python3 X-AutoXray.py xxxx.txt 写的蛮人性化的哦,os,linux,windows通用 生成的xray报告会在当前目录的/result下面 Ctrl+c 打断脚本运行时还可以结算扫描进度,生成已扫描和未扫描的进度文件,

    斯文 73 Jan 01, 2023
    All in One CRACKER911181's Tool. This Tool For Hacking and Pentesting.🎭

    This is A Python & Bash Programming Based Termux-Tool Created By CRACKER911181. This Tool Created For Hacking and Pentesting. If You Use This Tool To Evil Purpose,The Owner Will Never be Responsible

    CRACKER911181 1 Jan 10, 2022
    CVE-2022-22963 PoC

    CVE-2022-22963 CVE-2022-22963 PoC Slight modified for English translation and detection of https://github.com/chaosec2021/Spring-cloud-function-SpEL-R

    Nicolas Krassas 104 Dec 08, 2022
    Spray365 is a password spraying tool that identifies valid credentials for Microsoft accounts (Office 365 / Azure AD).

    What is Spray365? Spray365 is a password spraying tool that identifies valid credentials for Microsoft accounts (Office 365 / Azure AD). How is Spray3

    Mark Hedrick 246 Dec 28, 2022
    RCE Exploit for Gitlab < 13.9.4

    GitLab-Wiki-RCE RCE Exploit for Gitlab 13.9.4 RCE via unsafe inline Kramdown options when rendering certain Wiki pages Allows any user with push acc

    Enox 52 Nov 09, 2022
    BurpSuite Extension: Log4j RCE Scanner

    BurpSuite Extension: Log4j RCE Scanner

    1 Dec 16, 2021
    Consolidating and extending hosts files from several well-curated sources. You can optionally pick extensions to block pornography, social media, and other categories.

    Take Note! With the exception of issues and PRs regarding changes to hosts/data/StevenBlack/hosts, all other issues regarding the content of the produ

    Steven Black 22.1k Jan 02, 2023