The Swiss Army Knife For Hackers
This looks like something I might like to cause mischief & a tiny bit of mayhem with…I read earlier that some countries banned the importation of the device so I’m guessing they work pretty good.
Anyway, peep the article and make your own decision.
What’s the Flipper Zero about?
Flipper is a small multi-tool for pentesters that fits in every pocket. It is inspired by the pwnagotchi project. The core idea behind Flipper is to combine all hardware tools needed for pentesting in a portable device.
In addition to that, Flipper also turns hacking into a game by showing the curious personality of a cyber dolphin. It loves to hack things like access control systems, radio protocols and more.
Flipper Zero’s Features
433/868 MHz Transceiver
A large class of access control systems and devices are using this range for operation. Garage door remotes, remote keyless systems and IoT sensors are just a few. Flipper’s transceiver is capable of up to 100 meters range, which is quite a lot.
This means that during a pentest, the pentester doesn’t necessarily need to be close to the objective. Hiding behind a car nearby could be enough. So while an employee turns down the climate device remotely out of comfort, the pentester could have recorded this command and now has the possibility to replay it during another time of choice.
Flipper Zero comes with decoding functionality for popular algorithms like keeloq, doorhan, came and more. This makes it possible to find out more about an unknown protocol.
125kHz RFID
Low-frequency cards are mostly built into older access control systems. The authentication can easily be read and copied. Flipper contains a 125 kHz antenna which can be used for EM-4100 and HID Prox cards.
Gaining access to such systems is usually done with a keycard copier. With Flipper, this attack method is just one of several.
Flipper owners can even exchange card dumps remotely. This might become handy during a pentest of more than one person.
Infrared transceiver
TV’s, air conditioners and stereo systems typically contain infrared receivers. Their infrared transmitter counterpart can be used to send commands, like turning on the TV.
The learning feature of Flipper’s infrared transceiver receives signals and saves them to the library. Those signals can later be replayed and/or shared with the Flipper community.
Arduino compatibility
Flipper’s functionality can be enhanced using your own programming skills. Your code can use all built-in hardware available. The code can be run as seperate plugin.
This means that you can store your code on Flipper and run it, while using the original Flipper firmware. This eliminates the need to upload code repeatedly, like with basic Arduino boards.
Hardware hacking
Flipper can be connected to any hardware-piece that uses GPIO. This makes it possible to be used as hardware hacking, firmware flashing, debugging and fuzzing tool.
Bad USB
Flipper is capable of emulating a USB device and posing as regular input device, like a keyboard. You surely have heard of USB rubber duckies, which are known to use this attack vector.
So by posing as a keyboard, it’s allowed to do what a keyboard is – typing. Once plugged in, the stored payload is typed at high speed.
An example payload of this attack is the opening of a powershell window and typing a command that downloads and executes a malicious file. Additionally, Flipper is capable of fuzzing USB on the target device.
iButton
Flipper Zero contains a built-in iButton reader/writer. The iButton technology works with the quite old 1-wire protocol, which has no authentication. This gives the reader an easy job to accomplish.
After the ID has been saved, the writer can write the ID to a blank key. This isn’t necessary though, as the Flipper can even emulate the key itself.
There is actually a newer model called the Flipper One and it’s a little more advanced than the Flipper Zero. Check it out below…
Flipper Zero vs. Flipper One
The Flipper Zero is a lightweight and compact version built on the STM32 microcontroller. It’s able to work with basic remotes, radios and access control systems. The functionality can be expanded with programs.
The Flipper One is an advanced version with all the functions of Flipper Zero plus a seperate ARM computer running Kali Linux. This tool can be seen as a more serious tool for pentesting access control systems and networks.
And last but not least: the Flipper doing what it does. After watching the video I really want one of these fuckin’ things. Bad.
Here’s the link to the manufacturer but it says they’re sold out…on to eBay I guess.
