Behind Closed Doors – Hacking RFID Readers
Julia Zduńczyk
2024.09.12
Share
Behind Closed Doors – Hacking RFID Readers
Share
Author: Julia Zduńczyk
The topic of access badge attacks is well-known, but what happens when cloning a card isn’t an option? How can an adversary still infiltrate high-security areas without direct access to credentials?
In this session, Julia will explore alternative techniques for compromising RFID-based access control systems, specifically by targeting the readers themselves. She will dive into:
- Intercepting Wiegand protocol communication between readers and controllers, including a live demo of this attack.
- Leveraging this entry point to execute further attacks and escalate access.
- Understanding the OSDP protocol, its architecture, and the security implications of its adoption.
- Exploring additional methods for bypassing access control mechanisms beyond credential-based attacks.
She will also share real-world stories from Red Team operations, illustrating how these techniques have been applied in practice, ideally without getting caught 😉
Presented at: SEC-T 2024
Read more about Red Teaming
Julia Zduńczyk
2025.05.14
·6 MIN reading
Julia Zduńczyk
IT Security Consultant
