#pentestips : Identify credit card skimmers with the hunter cat
by Lab401 Lee June 11, 2021
If you want to ensure your magstripe cards are secure (hotel cards, credit cards, access control cards...), you can easily test a reader to ensure that no skimmer has been installed. Just slide the Hunter Cat in the target reader, and secure your assets. Check out this #pentetips video to see how to do just that :)
Is your iCopy-XS showing a "Boot Timeout" error? This is caused by a faulty or corrupted internal microSD card. Fortunately, it's an easy fix - no soldering or special tools required. Follow this guide to open the device, replace the microSD card, and flash a fresh image.
Bought a refurbished IoT device on Amazon? It might still be paired to the previous owner. Using a WHIDBoard Pro, we exploited a smart cooker's UART debug port to gain root access in minutes. From Android vulnerabilities to remote ADB shells, we weaponized this kitchen gadget - then installed DOOM for good measure. Refurbished doesn't mean factory reset.
Seduce sensors into spilling secrets, with the DigiLab by Lab401 and the FlipperZero. Within minutes, you can peek and poke directly into the memory of millions of modules. In this hands on tutorial, we pull temperature data directly from a LM75A temperature sensor - without anything but the DigiLab and Flipper. No Arduinos, no code, no fuss!
With Lab401's DigiLab and the FlipperZero you can interact directly with millions of modules that use I2C. What took hours now takes minutes! In this in-depth tutorial, we target a BMP280 barometric sensor: detection, identification, communication and data interpretation!