QRShield is a python script that analyzes QR codes by decoding the URL encoded within them and retrieving information from the VirusTotal and AbuseIPDB APIs. It provides insights into the potential maliciousness of the decoded URL and additional details about the associated IP address. It will also attempt to recieve SSL information on the domain and store it in a file for further analysis.
- QR Code Decoding: Decode QR codes from images to extract URLs.
- VirusTotal Integration: Submit decoded URLs to the VirusTotal API for analysis and retrieve information on malicious detections by various antivirus engines.
- AbuseIPDB Integration: Query the AbuseIPDB API to obtain information about the IP address associated with the decoded URL.
- SSL Lookup: Lookup the SSL records of the extracted domain.
- colorama: For terminal text coloring.
- requests: For making HTTP requests.
- opencv-python: For image processing.
- pyzbar: For decoding QR codes.
- json: For JSON handling.
- os: For interacting with the operating system.
- socket: For low-level network programming.
- urllib.parse: For URL parsing.
-
Clone the repository:
git clone https://github.com/qLJB/QRShield.git
-
Add Api keys to config.json
- Virus Total: Sign up for virus total api access
- AbuseIPDB: Sign up for abuseipdb api access