{"id":9585,"date":"2022-11-02T06:35:44","date_gmt":"2022-11-02T06:35:44","guid":{"rendered":"https:\/\/conference.hitb.org\/hitbsecconf2023ams\/product\/in-person-hands-on-hacking-for-nfc-rfid-hitb2023ams\/"},"modified":"2023-04-18T06:25:58","modified_gmt":"2023-04-18T06:25:58","slug":"hands-on-hacking-for-nfc-rfid-hitb2023ams","status":"publish","type":"product","link":"https:\/\/conference.hitb.org\/hitbsecconf2023ams\/product\/hands-on-hacking-for-nfc-rfid-hitb2023ams\/","title":{"rendered":"Hands-On Hacking for NFC\/RFID [2-Day]"},"content":{"rendered":"

 <\/p>\n

\n
\n
\n

This 2-day NFC\/RFID course is part of a 4-day BLE & NFC\/RFID course.<\/strong><\/em><\/span><\/h4>\n

\n– To join the 2-day BLE course instead, click here<\/strong>.<\/a>
\n– To join both BLE and NFC\/RFID with a combo discount for 4 days, click here<\/strong>.<\/a>
\n– To join only this 2-day NFC\/RFID class, read further below.
\n<\/em><\/span><\/h5>\n
\n
\n<\/div>\n<\/div>\n<\/div>\n
\n
\n

\u00a0<\/span><\/strong><\/h4>\n<\/div>\n<\/div>\n
\n
\n

REGISTRATION CLOSED<\/span><\/strong><\/h2>\n

DATE: 19-20 April 2023<\/strong><\/h4>\n

TIME: 09:00 to 17:00 CEST\/GMT+2<\/strong><\/h4>\n<\/div>\n<\/div>\n\n\n\n\n\n
Date<\/strong><\/td>\nDay<\/strong><\/td>\nTime<\/strong><\/td>\nDuration<\/strong><\/td>\n<\/tr>\n
19 Apr<\/td>\nWednesday<\/td>\n09:00 to 17:00 CEST\/GMT+2<\/td>\n8 Hours<\/td>\n<\/tr>\n
20 Apr<\/td>\nThursday<\/td>\n09:00 to 17:00 CEST\/GMT+2<\/td>\n8 Hours<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

 <\/p>\n

\n
\n
It is still surprisingly easy to clone so many access control tags used today.<\/h5>\n
RFID\/NFC has been around us for quite some time now. However, many of its vulnerabilities pointed out since years ago probably won\u2019t yet be resolved in the near future.<\/h5>\n

During this training\u2019s practical hands-on exercises, we will clone, crack, simulate and brute-force both \u00a0\u201cLow Frequency\u201d 125kHz RFID (EM, HID Prox, \u2026) as well as \u201cHigh Frequency\u201d 13.56MHz (Mifare, iClass, DESFire, ISO15693, \u2026) – using dedicated hardware (trainees get to keep these!), or in some cases with just a typical smartphone. We will examine and attack communication between the reader and access controller.\u00a0 We will also exploit reader vulnerabilities allowing to unlock without the need to have a valid card, and reverse-engineer a sample hotel system and create an \u201cemergency\u201d card that will unlock unconditionally all the doors in the facility \u2013 having nothing more than just a guest card and a phone.<\/p>\n

The training aims not only to raise awareness about the weaknesses of legacy systems, but also provide a solid insight of current technologies which are regarded as more secure. We will abuse implementation flaws and perform remote relay and downgrade attacks on both latest HID SEOS as well as DESFire access control installations. Attendees will also learn how to approach modern contactless smart cards and analyse currently trending mobile access control systems (phone acting as an NFC tag) \u2013 based among others on real vulnerabilities of a sample system.<\/p>\n<\/div>\n<\/div>\n

 <\/p>\n

Key Learning Objectives<\/strong><\/h5>\n