Great Marketing Video For "Multi-Tool For Hackers" Flipper Zero Raising $4+ Million

Check out the video:

It's for a Kickstarter for "Flipper Zero" that has raised $4+ million, its many claimed functionalities include access control, bluntly declaring:

Low-frequency proximity cards are widely used in access control systems around the world. It's pretty dumb, keeps only a short few-byte ID, and has no authentication mechanism, allowing it to be easily read, cloned, and emulated by anyone. A 125 kHz antenna is located on the bottom of Flipper's body — it can read the EM-4100 and HID Prox cards, save them to the memory and emulate any of the saved cards by choosing one from the menu.

You can also emulate the card by entering its ID manually, so you can easily send it to your friend in a text format. Thus, Flipper owners can exchange card dumps with each other remotely without ever touching a physical card.

I'll defer to Brian and others in this area for technical comment. Clearly, though, its a highly produced video and campaign with millions in funding to show for it.

Expected ship date is February 2021, though, Kickstarter projects are often late.

Agree
Disagree
Informative: 1
Unhelpful
Funny

Seems cool. But one question is WHY!!!. Just because you can doesn't mean you should. I get so sick and tired of lazy ass hackers who just want to hide in the shadows and make everyone else's lives miserable. GET A JOB!!

Agree
Disagree: 4
Informative
Unhelpful: 2
Funny

To your point, ethically, many of the things they promote in the video are at least grey area if not highlighting things that are illegal.

Agree: 1
Disagree
Informative
Unhelpful
Funny

I think you're being a little short-sighted. As Brian says below, this isn't revolutionary, just repackaging things that are already in existence. These are tools the bad guys already have access to. Meanwhile, good guys need to stop hiding their heads in the sand and get their security systems fixed. All this product does is raise awareness. Also great for red team pen testers.

For the record, this kind of thing has been done before, by reputable companies/organizations. Check out these websites:

- Top Pentest Devices

- Red Team Tools

- Metasploit | Penetration Testing Software, Pen Testing Security | Metasploit

- Kali Linux | Penetration Testing and Ethical Hacking Linux Distribution

Agree: 2
Disagree
Informative: 2
Unhelpful
Funny

I am full aware this has all been done before. To me it's just aggravating to how people want to mainstream devices like this and make it simple for the average Joe to use. All they are trying to do is wrap up a bunch of junk into a small little box.

Agree: 1
Disagree
Informative
Unhelpful
Funny

His sponsors are concerning as well. So you have a Russian hacker being sponsored by Bitdefender. I believe I will be finding another security platform for my gear.

IPVM Image

Agree
Disagree: 1
Informative
Unhelpful
Funny

I saw that in a Facebook ad. I looked at the Kickstarter, and the specs and delivery date, and figured I'd pass.

It's neat, but they're not really doing anything new, just combining some common things together (SDRs, rubber ducky, IR, etc).

Agree
Disagree
Informative
Unhelpful
Funny

anything new, just combining some common things together (SDRs, rubber ducky, IR, etc).

Is what's new the claim to make it easier? I don't track this area so I don't know but that's the gist of what I got from the video is that, while you good do these things before this is hacking for dummies.

Agree
Disagree
Informative
Unhelpful
Funny

Yes, the integrated and presumed ease of bringing all these things into one device is somewhat novel. This just looked like the kind of project that ships with some funky hardware and incomplete open-source software where they ultimately expect the buyer to do the last 20% of the work (which is way more than 20%...). Little things like hardware drivers and solid libraries to interface everything can make or break a device like this.

The board layout and packaging is really fairly easy in the grand scheme of things. But I personally think that trying to jam all the claimed functions into something where the UI is a small screen and a cursor keypad can be more challenging than it seems.

Maybe I'm just skeptical, but I do not see this thing being as cool in real life as they make it seem.

Agree
Disagree
Informative
Unhelpful
Funny

I do not see this thing being as cool in real life as they make it seem.

So it's good marketing! ;)

Agree
Disagree
Informative
Unhelpful
Funny

It's "good", yes. But nowhere near "great", ex:

Pl8ty bluetooth speaker

Agree
Disagree
Informative
Unhelpful
Funny

what a bunch of garbage

Let's prototype a butter churn that we sneak a tub of Country Crock inside.

Agree
Disagree
Informative
Unhelpful
Funny: 1

Looks like a fantastic and fun toy to play with. I'm not sure that I need the toy though.

Agree
Disagree
Informative
Unhelpful
Funny

We backed it and will test it when it arrives.

The 'multi-tool' claim is based on the fact this is an SDR (software-defined radio) which is what was used to jam various RF alarm systems (detailed in How to Hack an ADT Alarm System)

This device is a low-powered version and runs off small batteries, but it will be interesting to see what sort of trouble this thing can cause.

Agree: 1
Disagree
Informative: 2
Unhelpful
Funny

So, depending on the range, you could stick this in a trash can (non metallic) or planter near a door and capture cards to use later.

If you capture 20 cards and it maintains a constant facility code, you could cycle through valid numbers.

This is good for reader sales, bad for existing large sites

Agree
Disagree
Informative
Unhelpful
Funny

Yea I’m going to go ahead and order one. It’s cool.

Agree
Disagree
Informative
Unhelpful
Funny

Let me be clear why I would want something like this. Talking about how insecure someone’s access control is one thing. Doing it in front of them is another. I have a card duplicator I got off eBay. I’ve showed a lot of prospective clients how easy it is to copy their cards. This helps to up sell them a better system and helps the understand that cheaper is often less secure.

Agree: 3
Disagree
Informative: 3
Unhelpful
Funny

There are many devices available on ebay which can copy not only prox cards but many smart cards too.

It is time that people woke up to the fact that you need to choose your card wisely, and not just keep using the same old card that has been around for years.

Most card technologies in Access control that have been around for 10 years or more can now be easily copied.

So this "Multi-Tool for hackers" offers nothing new in card hacking or cloning , except some good marketing to get the topic made more aware.

Agree
Disagree
Informative
Unhelpful
Funny

So, the little UI isn't that hard to navigate and it isn't hard to use.

It clones credit cards as well.

Agree
Disagree
Informative
Unhelpful
Funny