Skip to content
/ AIB_online_banking Public

Security theatre at Allied Irish Banks: a demonstration in python

5 stars 5 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

ocfnash/AIB_online_banking

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

5 Commits
README.md
README.md
 
 
check_balance.py
check_balance.py
 
 
check_reg_number.py
check_reg_number.py
 
 

Repository files navigation

Allied Irish Banks have web and mobile portals providing the usual sorts of services that we have come to expect our banks to provide online.

For the newer mobile API, the bank has gone to some trouble to obfuscate it, using a custom Diffie-Hellman implementation. The scripts in this repository give details on how to deal with this.

I created this repository to highlight AIB's online security problems when I wrote about them here and here. The good news is that some time in early-to-mid 2016, the bank closed the loophole highlighted in the second of these posts.

The scripts here should enable anyone to write their own front end for the bank's API.

About

Security theatre at Allied Irish Banks: a demonstration in python

Resources

Readme
Activity

Stars

5 stars

Watchers

2 watching

Forks

5 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages