Great Marketing Video For "Multi-Tool For Hackers" Flipper Zero Raising $4+ Million
Check out the video:
It's for a Kickstarter for "Flipper Zero" that has raised $4+ million, its many claimed functionalities include access control, bluntly declaring:
Low-frequency proximity cards are widely used in access control systems around the world. It's pretty dumb, keeps only a short few-byte ID, and has no authentication mechanism, allowing it to be easily read, cloned, and emulated by anyone. A 125 kHz antenna is located on the bottom of Flipper's body — it can read the EM-4100 and HID Prox cards, save them to the memory and emulate any of the saved cards by choosing one from the menu.
You can also emulate the card by entering its ID manually, so you can easily send it to your friend in a text format. Thus, Flipper owners can exchange card dumps with each other remotely without ever touching a physical card.
I'll defer to Brian and others in this area for technical comment. Clearly, though, its a highly produced video and campaign with millions in funding to show for it.
Expected ship date is February 2021, though, Kickstarter projects are often late.
Seems cool. But one question is WHY!!!. Just because you can doesn't mean you should. I get so sick and tired of lazy ass hackers who just want to hide in the shadows and make everyone else's lives miserable. GET A JOB!!
His sponsors are concerning as well. So you have a Russian hacker being sponsored by Bitdefender. I believe I will be finding another security platform for my gear.
08/27/20 02:05pm
I saw that in a Facebook ad. I looked at the Kickstarter, and the specs and delivery date, and figured I'd pass.
It's neat, but they're not really doing anything new, just combining some common things together (SDRs, rubber ducky, IR, etc).
anything new, just combining some common things together (SDRs, rubber ducky, IR, etc).
Is what's new the claim to make it easier? I don't track this area so I don't know but that's the gist of what I got from the video is that, while you good do these things before this is hacking for dummies.
| 08/27/20 02:37pm
Yes, the integrated and presumed ease of bringing all these things into one device is somewhat novel. This just looked like the kind of project that ships with some funky hardware and incomplete open-source software where they ultimately expect the buyer to do the last 20% of the work (which is way more than 20%...). Little things like hardware drivers and solid libraries to interface everything can make or break a device like this.
The board layout and packaging is really fairly easy in the grand scheme of things. But I personally think that trying to jam all the claimed functions into something where the UI is a small screen and a cursor keypad can be more challenging than it seems.
Maybe I'm just skeptical, but I do not see this thing being as cool in real life as they make it seem.
I do not see this thing being as cool in real life as they make it seem.
So it's good marketing! ;)
| 08/27/20 02:49pm
It's "good", yes. But nowhere near "great", ex:
what a bunch of garbage
Let's prototype a butter churn that we sneak a tub of Country Crock inside.
Looks like a fantastic and fun toy to play with. I'm not sure that I need the toy though.
We backed it and will test it when it arrives.
The 'multi-tool' claim is based on the fact this is an SDR (software-defined radio) which is what was used to jam various RF alarm systems (detailed in How to Hack an ADT Alarm System)
This device is a low-powered version and runs off small batteries, but it will be interesting to see what sort of trouble this thing can cause.
So, depending on the range, you could stick this in a trash can (non metallic) or planter near a door and capture cards to use later.
If you capture 20 cards and it maintains a constant facility code, you could cycle through valid numbers.
This is good for reader sales, bad for existing large sites
IPVMU Certified | 08/27/20 08:02pm
Yea I’m going to go ahead and order one. It’s cool.
IPVMU Certified | | 08/27/20 08:05pm
Let me be clear why I would want something like this. Talking about how insecure someone’s access control is one thing. Doing it in front of them is another. I have a card duplicator I got off eBay. I’ve showed a lot of prospective clients how easy it is to copy their cards. This helps to up sell them a better system and helps the understand that cheaper is often less secure.
There are many devices available on ebay which can copy not only prox cards but many smart cards too.
It is time that people woke up to the fact that you need to choose your card wisely, and not just keep using the same old card that has been around for years.
Most card technologies in Access control that have been around for 10 years or more can now be easily copied.
So this "Multi-Tool for hackers" offers nothing new in card hacking or cloning , except some good marketing to get the topic made more aware.
So, the little UI isn't that hard to navigate and it isn't hard to use.
It clones credit cards as well.
Newest Discussions
| Discussion | Posts | Latest |
|---|---|---|
|
Started by
Charles Rollet
|
1
|
less than a minute by Charles Rollet |
|
Started by
Charles Rollet
|
1
|
less than a minute by Charles Rollet |
|
Started by
John Honovich
|
20
|
less than a minute by David Morgan |
|
Started by
Undisclosed Integrator #1
|
7
|
16 minutes by Vincent Tong |
|
Started by
Undisclosed #1
|
32
|
about 7 hours by Undisclosed #5 |
