Dear Technogalaxy readers, today we will talk about a multifunctional portable device in the style of a Tamagotchi called Flipper Zero, developed by “legend has it” Russian hackers for interaction with access control systems.

The device is capable of reading, copying, and emulating radio frequency tags, remote controls, and digital access keys. Naturally, when used for pentesting, it is a very powerful tool that can raise the bar on security for the tested devices. However, like all things, if used for illegal purposes, it can be genuinely dangerous. Let’s dive into the technical details. Are you READY?

What is Flipper Zero, and what is its purpose?

Flipper Zero is a portable “All In One” device for hacking, penetration testing, and cybersecurity activities. It is described on the official website as a “Portable Multi-tool Device for Geeks.”

In practice, Flipper Zero is a versatile portable tool for pentesters and technology enthusiasts, allowing exploration of an unlimited number of digital devices based on various radio protocols, access control systems, hardware, and more.

Being open source and customizable, it can be extended in numerous ways.

A closer look at Flipper Zero

The modules present in the device are indeed many. It’s a small technological object with a plastic casing and battery-powered, easily fitting in the palm of your hand.

Let’s take a closer look at the modules on board Flipper Zero:

  • Module for intercepting and emulating waves below 1GHz.
  • 433MHz antenna with a 50-meter coverage.
  • 125kHz RFID reader and emulator.
  • NFC reader and emulator.
  • Bluetooth module.
  • Infrared module.
  • Touch Memory (i-Button) module.
  • GPIO (General Purpose Input/Output).
  • USB port (for Bad USB attacks).
  • MicroSD card reader.
  • Built-in 2000mAh battery.
  • Buzzer.
  • Vibration motor.

What Flipper Zero Can Do

In practice, thanks to this small gadget, it will be possible to test and clone hotel NFC cards, remote controls to open doors and gates (most of which are based on the 433MHz frequency), i-Button access keys (used by many vending machines, gates, and doors), RFID keys/cards, which are also used to open doors, gates, and even deactivate alarm systems.

There is also a section dedicated to infrared systems, such as television remote controls, gate openers, air conditioners, and more.

With Flipper Zero, it is possible to intercept the signal transmitted by the original transmitter, open a car’s doors, clone a card to access hotel rooms, emulate its content, and transform Flipper into a genuine access card.

Even the Tesla car’s fueling door can be opened by Flipper Zero. When a Tesla approaches a charging station, the charging column sends a signal that automatically opens the fueling door, and Flipper Zero can emulate the same signal.

As with all open-source things, the possibilities are virtually infinite. The community around Flipper Zero works daily to expand its functions, even releasing unofficial firmware capable of unlocking certain default parameters, such as usable frequencies.

For any support or assistance, there is the official Discord server (in English) or the unofficial Telegram channel in Italian.

When you purchase Flipper Zero, it comes with the default official firmware, but since it is open source, there are more reputable firmware options, such as Unleashed and RogueMaster.

Another powerful feature is the Bad USB, allowing Flipper Zero to connect to a computer or phone and become a keyboard.

I’ve tested the RogueMaster firmware, and I must say it is truly impressive. So far, all the tests I’ve conducted on my devices or devices with authorization have been successful. Flipper Zero has done its job by exposing the vulnerabilities of the tested devices.

In the next article, we will see other tests we are conducting with this device, so stay tuned.

As always, please use it responsibly by testing it on your own devices or computers. Conducting tests on devices/computers that don’t belong to you is illegal.

Read also:

Was this article helpful to you? Help this site to keep the various expenses with a donation to your liking by clicking on this link. Thank you!

Follow us also on Telegram by clicking on this link to stay updated on the latest articles and news about the site.

If you want to ask questions or talk about technology you can join our Telegram group by clicking on this link.

© - It is forbidden to reproduce the content of this article.