Thursday, January 26, 2017

SamyKam: A set of pentesting tools to test Mag-Stripe readers & tokenization processes #piday #raspberrypi @Raspberry_Pi

NewImage

Project by Salvador Mendoza Blog

SamyKam is a new project to pentest mag-stripe information, including its hardware and software. I have been working with Electronic Cats to design a portable hardware where the user can interact with it directly on the ssh, OLED, phone or browser. The code is an integration of MagSpoof and Raspberry Pi. The main idea behind this tool is to provide a toolset for mag-stripe scenarios.

Moreover, the name SamyKam is in honor of Samy Kamkar for his hard work and his support to the community.

The initial project was MagSpoofPI. In that design, the main limitation was the necessary to re-program the MagSpoof over ssh all the time. Even when it is easy to do it, sometimes the network could be an issue. So in this new project, we integrated Bluetooth support(a mini-shell) for a direct interaction through a cell phone or another device with Bluetooth support. Adding http support to execute a micro web-server(flask) to run, compile or alter MagSpoof tracks in any web browser. The mini OLED display and rotary encoder were designed for prepared tests and for fast access to the main services implementing a navigation menu.

Read more.


3055 06Each Friday is PiDay here at Adafruit! Be sure to check out our posts, tutorials and new Raspberry Pi related products. Adafruit has the largest and best selection of Raspberry Pi accessories and all the code & tutorials to get you up and running in no time!e!

No comments:

Post a Comment