QRLJacker is a highly customizable exploitation framework to demonstrate "QRLJacking Attack Vector" to show how it is easy to hijack services that depend on the QR Code as an authentication and login method, Mainly it aims to raise security awareness regarding all the services using the QR Code as the main way to login users to different services!

Prerequisites before installing:

Linux or MacOS. (Not working on windows)
Python 3.7+
Installing instructions:
Update Firefox browser to the latest version
Install the latest geckodriver from https://github.com/mozilla/geckodriver/releases and extract the file then do :
Code:
chmod +x geckodriver
sudo mv -f geckodriver /usr/local/share/geckodriver
sudo ln -s /usr/local/share/geckodriver /usr/local/bin/geckodriver
sudo ln -s /usr/local/share/geckodriver /usr/bin/geckodriver
3. Clone the repo with git clone https://github.com/OWASP/QRLJacking then do cd QRLJacking/QRLJacker

4. Install all the requirements with pip install -r requirements.txt
5. Now you can run the framework with python3 QrlJacker.py --help

https://github.com/OWASP/QRLJacking