RFID Cards Cloning Using Arduino

Video Statistics and Information

Video
Captions Word Cloud
Reddit Comments
Captions
in this video I'm going to show you how you can copy your original RF id member card or maybe employee badge to a new programmed key fob where you will be able to use your new programmed key fob to get access or to get authorized instead of using your old original member card or employee badge all of this in this video stay tuned now what is RF id RF id or radio frequency identification is the use of radio waves to read and capture information from an R ID card attached to an object now when we are talking about RF IDs then we always have two main components we have the RF id tag SLC card and we have the RF id readers for example you have a an RF id tag or an RF id card and you want to get authorized to do something or get access to somewhere so you basically present your RF id tag to the reader and then the reader reads your tag and if you have the correct tag then it lets you in so basically RFID is a contactless form of authentication now RFID works on different frequencies we have the low frequency high frequency and ultra high frequency the low frequency operates on 125 khz and it's it's the oldest version of R ID and the easiest to clone and it's mostly used in employee Badges and door and gate access control then we have the high frequency that operates on 13.56 MHz and it has higher security format and it's mostly used in electronic IDs passports and credit cards and last but not least we have the ultra high frequency that operates on between 860 MHz to 960 and Ultra high frequency cards have a read range up to 50 ft and it's mostly used in identification and transaction processes now if you want to read low frequency cards then we need a low frequency reader and if you want to read a high frequency cards then we need a high frequency reader the reader that we are going to use in this video is the rc522 and it's a high frequency reader because my member card actually is a operates on uh 13.56 MHz which is high frequency that's why we are going to use the RC 522 now H RF id tag or card has a unique identification number or U ID and in my case when I try to clone my member card it actually used a unique ID so the reader will only look on the uid and compare it to its database and if my member ID matches the uid that's in its database then it lets me in so our only job is to program our uh RF id tag and change its uid so the uid of this card has to be exactly the same of the uid of my member card and then when when we go to the reader that's in the gem so when I go to the gem I can just present my RF id tag to the reader the reader will look at the U ID that's inside the chip and if it matches what it has in the database then it lets me in now we have two different types or RF id tag chips we have the read right microchip and we also have the read only microchip with the read write microchip you are allowed to read write erase and overwrite data as much as you want but if you have a read only microchip then you can only write once to the card and then read as much as you want so you cannot overwrite or modify or erase the data from the microchip so the RF id tag that we have to have or to get from eBay or maybe Amazon is a red RF id tag that allows us to change its U ID write data on it modify the data and maybe erase the data so we don't want to buy the read on RF id this won't work for us and as I said we have two types of microchips we have the em4100 chips that are not writable so don't get these what we actually want is the t5577 or t5577 chip that allow us to change the uid and modify it and maybe erase the data or even um override the data to the card and they are also called the Chinese Magic card so if you want to buy it from AliExpress then you just type Chinese magic cards and then uh make sure that they are the t55 77 chips and then get them if you don't have them now if we want to protect ourself from this attack then we need to buy or have a protective sleeve that will isolate our card from the reader so when you put the sleeve on the card and then you present the card to the reader the reader won't be able to read the card because actually your card is isolated now without being said let's dive to our computer and see how we can perform this attack now before we get started we need to make sure that we have the following we should have the Arduino Uno or it could be the Arduino Mega Nano Leonardo or Pro micro you can use either one of these versions of Arduino we also should have the Arduino software installed and we have an RF id writable card as well as the rc522 module that we will connect it to the Arduino so you can buy the Arduino from the official website this in my case I have the Arduino Mega so you can buy the Uno Mega Nano Pro micro Etc and all of these versions should work with us and you can buy them either from Amazon eBay or from the official website second we need to install the Arduino software and I'll add all the links in the description and installing the software is very easy just download the installer file and double click on it next next next and then it will be installed then we need to have the key fob or the card that you want to write your data on so we'll be using these key fobs to paste our data from the card that we have cloned into this card and you can see that this is a 13.56 MHz changeable smart key fob that will allow us to change its data and lastly we need the RC 522 module that you can buy from AliExpress and Amazon or Ebay but of course the cheapest website will be AliExpress and this is the module that you are looking for like this one and the last thing we want to do is to connect like once we have the um RC 520 TI 522 module and we have the Arduino then we need to connect the Arduino with the module and you can look at this website that will show you how you can connect to it and you can see these are the pins on the RC module and these are the pins on the Arduino for example here the SDI pin has to be connected to the port on digital temp port on the Arduino Uno and you can look at the graph here where you can see how you can connect to it so I think connecting it to the ardua won't be a trouble and if you have any problem connecting to it so please comment on this video and I'll be glad to response once we have all the requirements the Arduino the software the cards and the module and we have successfully connected the module to the arduin owner the first thing we are going to do is to run the Arduino software and then we need to install a library that will allow us to change the uid dump all the data from the card and maybe clone the card that we want to clone without having to code any program so all of this will be ready to use so to do this we are going to the edit or to sketch and then I'm going to go to the include library and then manage libraries and from here we are going to download a library called RF or I think it's RC 522 so here is it it's mfrc522 which is the name of the module you just have to click on install in your case you'll find like a button like this it's called install install install it and wait for 1 or 2 minutes and then it will be installed after installing the library to the Arduino we are going to browse the library by going to sketch and then include library and here where you will see the MFR 522 Library installed so if you want to have a look what's inside this Library we are going to file and then examples and these are all the modules that come with Arduino software and we can use any of these ones but in our case we are going to use the one that we have installed which is the mfrc 522 and you can see that the all of these modules are for the MFR 5 module and what's interesting here is the change your ID dump info and we also have the RF id cloner so the dump info module will allow us to read the data that are on our RF id card the change U ID module will allow us to change the U ID of our writable key fob or card that we have bought from AliExpress which is the magic card and the RF id cloner will allow us to copy all the data that are on the first card for example my fitness card and put it in our new card and the difference between the RF id cloner and the change U ID the change U ID will only change the U ID or the RF id card but the RF id cloner would not change the U ID of the card instead it's going to copy the information that is on the old card to the new card for example if our old card has its first name or our first name and last name then we can copy our first and last name to the new card which means that whenever someone reads our new card he will be able to see our first and last name so I'm going to be starting with dump info module which is this one and you can see that this payload is configured to run on the r uino Uno but in my case for example I have the Arduino Mega so I'm going to be changing the reset and the SDA ports from 9 and 10 to 5 and 53 and if you have for example the Arduino Nano then you are going to change it from 9 to D9 and from 10 to d10 for example so here we have N9 I'm going to change it to five and here we have a 10 and I'm going to change it to 53 and and then we want to make sure that we go to the tools and make sure that our board is connected so you want to make sure that your Arduino is connected to your PC and after doing that go to to the tools and then click on get board info and here you can see that you have an Arduino Mega or Mega 2560 in my case and then you want to go to tools again and then go to board and you want to select the port or not the port the board that you are using for example if you are using using the Arduino Uno then click on the Arduino Uno and if you are using any different type of Arduino then you can select it from here so in my case I have selected this one the mega one and then I'm going to make sure that it's clicked on the port or the port is selected which is in my case there is only one port which is the come three so you want to make sure that this is selected and this means that our Arduino Mega is connected to our PC and we are ready to upload any program so I'm going to click on this Arrow to upload the file and now we are done uploading and if we want to execute the code then we can just go to this search or serial Monitor and click on it and now it's waiting for us to present our RF id card or tag to the reader so that it can read it so first I'm going to present my empty or my new RF id tag so I'm going to put it here and wait and now it's done now the first thing it scans is the card you ID which is very important that this is where're going what we're going to change and we also have the card s AK or it's the manufacturer code and with this code you can know what is the manufacturer it's very similar ilar to the MAC address where the first six letters or six digits allow you to know which manufacturer manufactured your card and then we have the type of the card which is my fair 1 kilobit and then we have all of the information now we can see that that this card is empty and I'm going to show you how an empty card looks like and how a card with information actually looks like we can see that there is bunch of zeros and ff07 at the beginning of each sector and in the Le in the last sector in the last uh block we can see the uid at the beginning of it or the uid of the card and now let me show you how a card with information look lies so I'm going to present my fitness card to the reader so when we scroll up we can see that we have a different uid it starts with AB the first one actually start with 97 you can see here and then when we look here at the bottom you can see that it's full of zeros and ff07 and when when we come down we can see that we have different information in here and this is what the RFID cloner module will copy when you want to clone the information from the old card to the new card now let me copy the U ID of the first card which is the empty one and paste it in my notepad so the first uid is for the empty card and the second uid is for the fitness card so and now we are going to see how we can change the U ID of this card to be identical to this one so I'm going to close this window and I'm going to open a new example which is the change your ID module so I'm going to click on change your ID so here is the module let me close this one and we have to do the same we have to change the port from 9 and 10 to 5 to 53 and 53 and then I'm going to scroll down and here we can see where we can change our uid so we only have to change these letters that are after The X to the new one so here is my new fitness Cod card uid this is the one that I'm going to copy to the new card or to the empty card so I'm going to replace the de with ab and the a with 41 be with 6D and lastly EF with FC now that we have the new U ID in here the last thing we are going to do is to upload the script or the code and now it's done uploading then I'm going to execute it and now I'm going to place my new card or my new RFID tag on the card reader so here is it I'm going to place it here for some reason in the first try didn't work and you can see that we have got an error in here which is activating the uid back door failed and then what I did is I just placed the card again which changed the uid we can see wrote a new uid to the card and when we go to the bottom of the uh card or the code we can see that this is our new uid so when we close this window for example and open the dump info module I'm going to change the values here now let me execute it and now let me place my new RF id tag to the reader and see what is its U ID so as we can see here that our new U ID is ab41 D6 FC so we have successfully change the uid you can see this is our old uid it start with 97 and now we have the similar uu ID of the fitness card so when we place our fitness card again we can see that we have the same uid so as you can see we have the same new ID as our new card and now with your new RF id tag you can access your gem without having to have your old card I have already used the RF id tag to access to the gem just by using my new RF id tag and how the reader actually works is just by looking at the uid and comparing it whether it have it in in its database or not if it has it then it lets you in and if it doesn't have it then the door won't open I actually wanted to show you this in real time where I can go to the gym and present it to the reader and show you how we can open the door but now because of Co if you want to go to the gym then you need to present your card to the receptionist and you also have to show him a negative covid test and then the receptionist will let you in so it's not about the card even if you tried the right card the door won't open because they need or the receptionist need to see your ARF ID card the or the member card and your covid test and in our case we can't show him our new RF id tag because he may ask us how did you get this how did you do this but this video is only for educational purposes now let's say that we want to copy the information that are on our member ID card like this one to our new RF id tag which has the similar U ID so what we're going to do is to use the AR ID cloner module so let's go to the file example and click on RF id cloner and we also have to change the port number and then I'm going to upload it and we are done let me execute the code and you can see that you have three options the first option is read card the second one one is write to card and the third one is copy the data now let me tell you that read the card or the first option is used to copy the information from the old card so what you should do is to place your old RF id card or your member card in my case my gem card on the reader and then press one and then hit enter and then it will copy the information from the card after copying you need to paste the information in your new ARF ID tag so you are going to be using option number three so first you have to use option number one to copy the information and then you have to use option number three to paste the information to your new RF id tag so let's try this I'm going to place my first or my member card on the reader and then I'm going to click on one and hit enter so now it's done it's copied all all of the information and what we are going to do now now is to use option number three and before we do this we have to place our new RF id tag on the reader like this and then I'm going to press number three and hit enter and now it's done so let's see how the information looks like when we use dump info we want to see if we have actually uploaded this um or copied the card to the new RF id tag so I'm going to be using the same module the dump info I'm going to upload it and then execute and now let me place my new R ID tag and we can see that we have the exactly same information that were on our gem member card so let me show you let me remove this and add this card so we can see that the results are identical this is from the new or this is from the old card it started with 47 b or 8 a 88 B let's go up and see that we have similar information so we have copi the new information which means that whatever was on our old card like the first last name or maybe the address is now on our new RF id tag so we have the same U ID and we have the same information which means that these two the r ID tag and the card are now identical now the last thing I'm going to show you is how we can erase the information from from our new RF id tag the only thing that we have to do is just to place the card and use the exact same module which is the RF id cloner so let me upload it to uo and then let me run the script and then now let me place my RF id tag and then hit uh number three and enter so this will actually clear all the information that are on our new R ID tag so let me hit enter and now let me come back to the dump info and upload this script and I'm going to run it and now we can see that they we have no affirmation so all the information that we had previously are now gone and replaced with zeros and FF that's it for this video I hope you enjoyed watching the video and learned something new please if you like this video don't forget to subscribe to the channel and like the video and follow us on social media and lastly thank you very much for watching please if you have any question please post it in the Q&A section or in the comment section I'll be very happy to answer all of your questions
Info
Channel: CyberSudo
Views: 3,593
Rating: undefined out of 5
Keywords: RFID, Arduino, RFID Cloning
Id: 48M9njLlrqE
Channel Id: undefined
Length: 23min 44sec (1424 seconds)
Published: Wed Jan 24 2024
Related Videos
RFID EXPLAINED: HOW TO READ DATA FROM RFID CARDS WITH ARDUINO #rfid #arduino #esp32
Mikael Abehsera
2.6K
This is the best OSINT framework
Gary Ruddell
8.7K
I KNEW I’d Hate this (I Was Wrong)
Linus Tech Tips
790K
RFID Locks are way too easy to "Hack"! Let me show you!
GreatScott!
1.3M
quick introduction to UART communication with example
Startobytes
843
We should use this amazing mechanism that's inside a grasshopper leg
Steve Mould
1.1M
Dive into RFID Fuzzing with Flipper Zero, the RFID fuzzer app.
Lab 401
124K
Cloning and Emulating RFID cards with Proxmark3
Hacker Warehouse
210K
It’s Been a Good Run, Phone Providers.
Data Slayer
3.6M
Don't Throw Your Old Sim Card
TEST COMPARE
1.5M
Arduino MASTERCLASS | Full Programming Workshop in 90 Minutes!
Programming Electronics Academy
2.3M
Electronics 101: RFID vs NFC (Explained)
Bren Maartens
206K
How to Control a 12V Motor with Arduino: Easy Wiring & Code Examples
Rachel De Barros
356K
28(ish) 3D Printed Tools That Are ACTUALLY Useful!
The Next Layer
539K
Google Dorks: Find Public Sensitive Information
CyberSudo
953
How to use RFID with Arduino | How to use the RC522 RFID module with an Arduino - Tutorial
electronic GURU
85K
How safe is contactless payment? || How does RFID & NFC work? || EB#40
GreatScott!
970K
Réaliser un système de serrure RFID avec l'Arduino 🔒
BoilingBrains
25K
A Better Way to Waterproof Fabric
NightHawkInLight
18K
SSH Tunneling [Explained] Reverse Shell over the Internet
CyberSudo
592
Note
Please note that this website is currently a work in progress! Lots of interesting data and statistics to come.