Create your own portable RFID pentest kit

I’ve been wanting to write an article about the Proxmark 3 for a long time but didn’t have enough time… Until now!The Proxmark 3 is an amazing device for any RFID enthusiast like me, as the possibilities are infinite compared to a regular ACR122 or a SCL3711.It can be purchased from various sellers, but for my Western European fellows, I would recommend Lab401, I’ve purchased a lot of hardware from them and never had any problems (especially taxes/custom related etc), and their support is great too. I would like to… Read More »Create your own portable RFID pentest kit

My first infosec conference

In this post I would like to share with you my thougts about the first infosec conference I have ever attended, earlier this year in June. But I would like to start by thanking again my company and my boss for allowing me to attend this event on working days, and for funding the whole trip. This may not look like a big deal, but 2 of my coworkers and me attended and that is already 25% of our small company that our boss cut loose for 3 entire days.… Read More »My first infosec conference

Hacking your first RFID tags

As we’ve seen in a previous post here, RFID is a technology widely used in our lives, from our building access badges, to payment facilities, or even our gates’ remotes. We know some of them are utilizing little to no security mechanisms, like MIFARE, and today we will start working on a really basic series of hacks. What you will need Hardware What’s covered can be done with a simple RFID card reader found on Amazon for ~30€ (~35$). Mine was the ACS ACR122U simply because it was the most mentioned… Read More »Hacking your first RFID tags

Introduction to RFID

For this first article we will be working on RFID and more precisely on the MIFARE technology. In this article you won’t find anything that has never been done before, but rather my own vision of many different things that have been done about RFID, and maybe a try at being more thorough than some other proofs of concept. The main goal here is to cover the process of cloning and editing some RFID tags, especially MIFARE Classic ones, which are still widely used nowadays despite the many hacks found… Read More »Introduction to RFID