Reverse Engineering HID iClass Master Keys Logo

Reverse Engineering HID iClass Master Keys

0
Free
Malware Analysis
Appsec
Appsecurity
Iot
Security Vulnerability
Debugging
Encryption
Visit Website

The HID iClass line of proximity cards and readers, known for its encryption and mutual authentication, has a vulnerability that allows retrieval of the master authentication key, enabling cloning of cards and changing reader settings. The method involves exploiting debug pins on specific readers to modify firmware and extract the key.

FEATURES

ALTERNATIVES

Masochist Logo
Masochist

A framework for creating XNU based rootkits for OS X and iOS security research

Free
Malware Analysis
Polichombr Logo
Polichombr

A collaborative malware analysis framework with various features for automated analysis tasks.

Free
Malware Analysis
a-ray-grass Logo
a-ray-grass

YARA module for supporting DCSO format bloom filters with hashlookup capabilities.

Free
Malware Analysis
TeamTNT Targeting AWS, Alibaba Logo
TeamTNT Targeting AWS, Alibaba

TeamTNT is modifying its malicious shell scripts after they were made public by security researchers.

Free
Malware Analysis
GitHunter Logo
GitHunter

A tool for searching a Git repository for interesting content

Free
Malware Analysis
Dwarf Debugger Logo
Dwarf Debugger

A debugger tool for reverse engineers, crackers, and security analysts, with a user-friendly debugging UI and custom agent support.

Free
Malware Analysis
LinkFinder Logo
LinkFinder

A Python script that finds endpoints in JavaScript files to identify potential security vulnerabilities.

Free
Malware Analysis
Dalfox Logo
Dalfox

Dalfox is a powerful open-source XSS scanner and utility focused on automation.

Free
Malware Analysis

PINNED

Mandos Brief Newsletter Logo

Mandos Brief Newsletter

A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.

Resources
PTJunior Logo

PTJunior

An AI-powered penetration testing platform that autonomously discovers, exploits, and documents vulnerabilities while generating NIST-compliant reports.

Offensive Security
CTIChef.com Detection Feeds Logo

CTIChef.com Detection Feeds

A tiered cyber threat intelligence service providing detection rules from public repositories with varying levels of analysis, processing, and guidance for security teams.

Threat Management
OSINTLeak Logo

OSINTLeak

OSINTLeak is a tool for discovering and analyzing leaked sensitive information across various online sources to identify potential security risks.

Digital Forensics
ImmuniWeb® Discovery Logo

ImmuniWeb® Discovery

ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.

Attack Surface Management
Checkmarx SCA Logo

Checkmarx SCA

A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Application Security
Orca Security Logo

Orca Security

A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

Cloud Security
DryRun Logo

DryRun

A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.

Application Security