rfid attacks and proxmark hands on
play

RFID attacks and proxmark hands-on @ KirilsSolovjovs +4fd9 About - PowerPoint PPT Presentation

Jan 18, 2024 •730 likes •946 views

RFID attacks and proxmark hands-on @ KirilsSolovjovs +4fd9 About me Programming sysad networking IT security for the past 10+ y Owner and Lead Researcher at Possible Security Hacking and breaking things

  1. RFID attacks and proxmark hands-on @ KirilsSolovjovs +4fd9

  2. About me ● Programming → sysad → networking ● IT security for the past 10+ y ● Owner and Lead Researcher at Possible Security ● Hacking and breaking things http://kirils.org/ – http://possiblesecurity.com/news/ – +4fd9

  3. Contents ● RFID basics ● RFID standarts ● Hacking tools ● Proxmark + Lots of demos +4fd9

  4. Let’s get this out of the way: RFID vs NFC? ● NFC is a subset of RFID – 13.56MHz – ISO/IEC 14443 – NFC device can be both a reader and a tag +4fd9

  5. RFID tag ● Microchip ● Antenna ● No power source +4fd9

  6. RFID ● Radio Frequency Identification +4fd9

  7. Typical RFID frequencies ● HF ● LF ● 13.56 MHz ● 125 kHz ● ... ● 134.2 kHz ● ... +4fd9

  8. RFID standards ● em4xxx ● ISO/IEC 14443A ● HID Global – Mifare iClass ● ISO/IEC 14443B – Hitag2 – ● ISO/IEC 15693 Indala – ● TI +4fd9

  9. Tools ● RFID readers ● RFID duplication “gun” ● Frequency scanner ● BLEkey ● hackRF… ? ● Proxmark III ! +4fd9

  10. Proxmark III +4fd9

  11. Proxmark III RDV 2 / 4 +4fd9

  12. Wiegand interface Problematic for UID-based protocols ● BLEKey ● – Bluetooth connected UID sniffer / storage +4fd9

  13. Card cloning Duplicating contents of one card into another ● Often involves breaking some cryptography or defeating some other protection ● +4fd9

  14. Mifare Ultralight +4fd9

  15. Mifare Classic +4fd9

  16. +4fd9

  17. Proxmark III setup ● https://github.com/Proxmark/proxmark3/wiki/Kali-Linux +4fd9

  18. Proxmark III magic ● reading cards... ● attacks… + mfkey – +4fd9

  19. Proxmark III snooping +4fd9

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Relay Attacks and Distance Bounding Protocols in RFID Environments Prof. Gildas Avoine

Relay Attacks and Distance Bounding Protocols in RFID Environments Prof. Gildas Avoine

Relay Attacks and Distance Bounding Protocols in RFID Environments Prof. Gildas Avoine Universit e catholique de Louvain, Belgium Information Security Group SUMMARY RFID Background Relay Attacks Countermeasures and Evolved Frauds

633 views • 40 slides
Relay Attacks and Distance Bounding Protocols in RFID Environments Prof. Gildas Avoine

Relay Attacks and Distance Bounding Protocols in RFID Environments Prof. Gildas Avoine

Relay Attacks and Distance Bounding Protocols in RFID Environments Prof. Gildas Avoine Universit e catholique de Louvain, Belgium Information Security Group SUMMARY RFID Background Relay Attacks Distance Bounding Protocols Conclusion

666 views • 53 slides
Insider attacks and RFID Privacy models Ton van Deursen and Saa Radomirovi c

Insider attacks and RFID Privacy models Ton van Deursen and Saa Radomirovi c

Insider attacks and RFID Privacy models Ton van Deursen and Saa Radomirovi c {ton.vandeursen, sasa.radomirovic}@uni.lu University of Luxembourg Financial support received from the Fonds National de la Recherche (Luxembourg) Ton van Deursen

144 views • 12 slides
Evaluation of the feasible attacks against RFID tags for access control systems Hristo Dimitrov

Evaluation of the feasible attacks against RFID tags for access control systems Hristo Dimitrov

Evaluation of the feasible attacks against RFID tags for access control systems Hristo Dimitrov & Kim van Erkelens University of Amsterdam February 4, 2014 1 / 20 Contents Introduction 1 Background 2 Methods 3 Findings 4

847 views • 20 slides
Atlanta, USA 1. TSA worldwide RFID Trial History 2. ASTREC research effort in RFID 3. Inflight

Atlanta, USA 1. TSA worldwide RFID Trial History 2. ASTREC research effort in RFID 3. Inflight

March 2, 2014 Monte Jade's RFID Seminar Atlanta, USA 1. TSA worldwide RFID Trial History 2. ASTREC research effort in RFID 3. Inflight RFID 4. Current Airport RFID Deployments 5. Atlanta International Airport Activity with IATA RFID

912 views • 35 slides
IntelliSense RFID RFID PLATFORM WITH SENSORS INTEGRATION CAPABILITIES One Global Sensing

IntelliSense RFID RFID PLATFORM WITH SENSORS INTEGRATION CAPABILITIES One Global Sensing

IntelliSense RFID RFID PLATFORM WITH SENSORS INTEGRATION CAPABILITIES One Global Sensing Tag Oslo, 28 November 2007 IntelliSense RFID Workshop IntelliSense RFID RESEARCH PROJECT FOR TECHNOLOGY DEVELOPMENT WITHIN THE FIELDS OF RFID

788 views • 13 slides
RFID and ticketing application Who? C edric Lauradoux EPL/INGI/GSI When? January 22, 2009

RFID and ticketing application Who? C edric Lauradoux EPL/INGI/GSI When? January 22, 2009

RFID and ticketing application Who? C edric Lauradoux EPL/INGI/GSI When? January 22, 2009 Outline RFID primer Technology Information leakage Malicious tracability Denial of service Relay attacks Ticketing primer

1.2k views • 35 slides
The Art of RFID Exploitation Melanie Rieback FIRST 20 June, 2007 What is RFID? RFID = Radio

The Art of RFID Exploitation Melanie Rieback FIRST 20 June, 2007 What is RFID? RFID = Radio

The Art of RFID Exploitation Melanie Rieback FIRST 20 June, 2007 What is RFID? RFID = Radio Frequency Identification Modern RFID Applications VeriChips Subdermal RFID VeriChips Subdermal RFID VeriChips Subdermal RFID VeriChips

628 views • 29 slides
Distance Bounding for RFID Prof. Gildas Avoine Universit e catholique de Louvain, Belgium

Distance Bounding for RFID Prof. Gildas Avoine Universit e catholique de Louvain, Belgium

Distance Bounding for RFID Prof. Gildas Avoine Universit e catholique de Louvain, Belgium Information Security Group SUMMARY Relay Attacks Distance Bounding Protocols Discussion RELAY ATTACKS Relay Attacks Distance Bounding Protocols

330 views • 28 slides
Hands Overview Outline Existing hands Robot hands of the 80s Commercial hands Research

Hands Overview Outline Existing hands Robot hands of the 80s Commercial hands Research

Hands Overview Outline Existing hands Robot hands of the 80s Commercial hands Research hands Prosthetics Design issues Kinematics Compliance Sensing Actuation Control Robustness Evaluation Discussion Hands of the 80s Hirose

237 views • 22 slides
TrainTraxx.com HiveID RFID/NFC Solutions for Model Railroaders Presented by Carlton Brown &

TrainTraxx.com HiveID RFID/NFC Solutions for Model Railroaders Presented by Carlton Brown &

TrainTraxx.com HiveID RFID/NFC Solutions for Model Railroaders Presented by Carlton Brown & Blaine McDonnell Using RFID for Model Railroad Operations What is RFID? How does RFID Work? RFID Frequencies and Type of Tags

853 views • 25 slides
DEVELOPMENT OF AN RFID SYSTEM FOR SPS-ALPHA 1 OBJECTIVES RFID Implementation: SPS-ALPHA

DEVELOPMENT OF AN RFID SYSTEM FOR SPS-ALPHA 1 OBJECTIVES RFID Implementation: SPS-ALPHA

DEVELOPMENT OF AN RFID SYSTEM FOR SPS-ALPHA 1 OBJECTIVES RFID Implementation: SPS-ALPHA Structure RFID Technology Applications in SPS-ALPHA architecture Part Identification Location Referencing 2 Why Space Solar No

241 views • 22 slides
RFID from Farm to Fork Piero Filippin p.filippin@wlv.ac.uk RFID from Farm to Fork Funded by

RFID from Farm to Fork Piero Filippin p.filippin@wlv.ac.uk RFID from Farm to Fork Funded by

RFID - From Farm to Fork Strengthening SME competitive advantage through RFID implementation RFID from Farm to Fork Piero Filippin p.filippin@wlv.ac.uk RFID from Farm to Fork Funded by the EU as part of the Competitiveness and Innovation

356 views • 9 slides
RFID Hacking Live Free or RFID Hard 01 Aug 2013 Black Hat USA 2013 Las Vegas, NV Presen

RFID Hacking Live Free or RFID Hard 01 Aug 2013 Black Hat USA 2013 Las Vegas, NV Presen

RFID Hacking Live Free or RFID Hard 01 Aug 2013 Black Hat USA 2013 Las Vegas, NV Presen sented ed b by: Francis Brown Bishop Fox www.bishopfox.com Agenda O V E R V I E W Qu Quic ick k Over erview ew RFID badge

883 views • 50 slides
RFID Technologies: Emerging Issues, Challenges, Policy Options A study by TNO and Telecom Italia

RFID Technologies: Emerging Issues, Challenges, Policy Options A study by TNO and Telecom Italia

RFID Technologies: Emerging Issues, Challenges, Policy Options A study by TNO and Telecom Italia for IPTS IFIP/FIDIS Summerschool Karlstad - 2007 Overview RFID Technologies RFID Markets RFID Privacy issues Conclusions 2

734 views • 19 slides
Mobile Data Entry for RFID RFID MRR NCDOT Materials and Tests Unit Welcome Transportation 2

Mobile Data Entry for RFID RFID MRR NCDOT Materials and Tests Unit Welcome Transportation 2

Mobile Data Entry for RFID RFID MRR NCDOT Materials and Tests Unit Welcome Transportation 2 WELCOME Transportation 3 Introduction The final link in the RFID program is the receiving of the project onto the project site. The producer

508 views • 30 slides
Performance Analysis of Location Performance Analysis of Location y Tracking System for Multiple

Performance Analysis of Location Performance Analysis of Location y Tracking System for Multiple

UNIVERSITI TEKNOLOGI MALAYSIA UNIVERSITI TEKNOLOGI MALAYSIA Performance Analysis of Location Performance Analysis of Location y Tracking System for Multiple Tracking System for Multiple Levels Levels Presenter: Norhidayu Presenter:

579 views • 33 slides
Strategies to Harden and Neutralize UAVs using RF DEW Jos L OPES E STEVES , Emmanuel C OTTAIS

Strategies to Harden and Neutralize UAVs using RF DEW Jos L OPES E STEVES , Emmanuel C OTTAIS

Strategies to Harden and Neutralize UAVs using RF DEW Jos L OPES E STEVES , Emmanuel C OTTAIS AND Chaouki K ASMI ABOUT THE AUTHORS ANSSI: National Cybersecurity Agency of France Wireless Security Lab 10 members, 2 PhDs, 2 PhD

663 views • 40 slides
WIDE Project RFID/Auto-ID activities Yojiro UO Auto-ID Labs, JAPAN WIDE Project Auto-ID

WIDE Project RFID/Auto-ID activities Yojiro UO Auto-ID Labs, JAPAN WIDE Project Auto-ID

WIDE Project RFID/Auto-ID activities Yojiro UO Auto-ID Labs, JAPAN WIDE Project Auto-ID activities in WIDE Why are we working for RFID? RFID (radio frequency Identification) is a one of the key device to glue Real and Virtual space

820 views • 6 slides
Overview of Technology Division Studies and Projects Wednesday, May 13, 2009 Michael Johnsen

Overview of Technology Division Studies and Projects Wednesday, May 13, 2009 Michael Johnsen

Overview of Technology Division Studies and Projects Wednesday, May 13, 2009 Michael Johnsen Chris Flanigan Jeff Loftus Quon Kwan Technology Division Top Projects 1. SmartPark: Real-Time Parking Availability 2. Employer Notification

618 views • 18 slides
U H F b a n d ( 8 6 0 - 9 6 0 M H z ) R F I D U H F b a n d ( 8 6

U H F b a n d ( 8 6 0 - 9 6 0 M H z ) R F I D U H F b a n d ( 8 6

APRICOT 2005, Feb. 21, 2005 U H F b a n d ( 8 6 0 - 9 6 0 M H z ) R F I D U H F b a n d ( 8 6 0 - 9 6 0 M H z ) R F I D d e v e l o p m e n t i n J a p a n d e v e l o p m e n

479 views • 28 slides
121.03.04 - Low Level Radio Frequency SC1 - Accelerator Systems In partnership with: Brian

121.03.04 - Low Level Radio Frequency SC1 - Accelerator Systems In partnership with: Brian

121.03.04 - Low Level Radio Frequency SC1 - Accelerator Systems In partnership with: Brian Chase India/DAE Italy/INFN PIP-II IPR UK/STFC 4-6 December 2018 France/CEA/Irfu, CNRS/IN2P3 Outline Scope/Deliverables (Including In-Kind

687 views • 23 slides
The changing face of cyberspace Lara Srivastava Strategy and Policy Unit International

The changing face of cyberspace Lara Srivastava Strategy and Policy Unit International

The changing face of cyberspace Lara Srivastava Strategy and Policy Unit International Telecommunication Union (ITU) Public Lecture Michigan State University 22 nd March 2006 Note: The views expressed in this presentation are those of the

541 views • 28 slides
Mobile e-Health with HL7 CAS 757 Modern Software Technology for eHealth Term 2, Winter 2010 Dr.

Mobile e-Health with HL7 CAS 757 Modern Software Technology for eHealth Term 2, Winter 2010 Dr.

Mobile e-Health with HL7 CAS 757 Modern Software Technology for eHealth Term 2, Winter 2010 Dr. Kamran Sartipi Jianhui (Jeffrey) Lei Yao (Aaron) Song Agenda Wireless Concepts and Technologies Mobile e-Health Service Mobile

806 views • 76 slides

More recommend