My demo and explanation of phishing multi-factor authentication credentials can be found here:
Check back here (decidedlygray.com) or on twitter for updates regarding the PoC tool used for the attack demonstration in the blog post below. I'm planning on doing a detailed code walk-through. The tool will be available on GitHub here.
The code walkthrough for the PoC for phishing multi-factor authentication has been posted here: http://decidedlygray.com/2017/08/24/mfa-slipstream-phishing-mfa-poc-walkthrough/