Attacker view simulation
Credentials captured from the fake login page
Entries shown here never leave this browser. Clear them after each class.
| Time | Username | Password value | Source | Status |
|---|
No captures yet. Submit the fake login form with dummy credentials.
Debrief prompts
- Was the QR code expected, trusted, and tied to a known process?
- Did the destination address match the service the page claimed to be?
- Would multi-factor authentication, password managers, or reporting the QR have helped?