Purse of Pwnge

By @5w0rdfish

Purse of Pwnge 

As featured in my Breaking the Bodyguard talk at BSides London 2018.
Details of talk can be found on our Talks page.
This is a sly way to read the RFID cards of unsuspecting victims. I created it to use to bring something different to the table. I have tried to work on the components to slim them down enough so it would fit into the purse whilst maintaining the range and capabilities.

What is shown here is the HID 5355, its the little brother of the HID 5375 which is often used in a large messenger style bag and paired up with the Boscloner. It does not have the same amount of range but it works perfectly inside the purse.
I initially started off testing with just a basic RFC522 reader and Arduino, this was so I could understand everything a little better.  I bought the basics to get this off the ground, and opted to use the Arduino in the end as I am looking to use the Raspberry Pi Zero W with another project, and I wanted to learn some further Arduino skills. The Arduino code used with the RFC522 can be found here, although there is code online which can work with the Pi and  RFC522 reader.

Currently as it stands, since the talk I have upgraded the battery, I had somewhat a collection of wires and 9v batteries attached to the ESP-RFID-Tool  by Corey Harding and the HID reader.

Coreys awesome ESP Arduino "firmware" allows for you to read the card data and send it wirelessly to an access point.
The code runs on the esp8266, the esp8266 is a wifi SOC(system on chip) so the RFID Tool can be set up to either hosts its own access point, (you connect to the SSID broadcast by the RFID Tool) or you can set the RFID Tool to connect to an existing access point. Either way the complete web interface is provided by the esp8266 itself (RFID Tool)
This data can then be written to a card to clone it. There has been an interesting blog post written by Alex Dib with regards to processing the data and working with Proxmarks with the various readers on the market since my talk in June, this uses Rasberry Pi and a similar web interface.

Please take a read of it, as its packed full of solid information with regards to the technical set up with these types of readers and some great diagrams. It features further information about the Tastic RFID-Thief  and Wiegotcha 

Next steps are to pretty much undo the last lot of upgrades and go for a smaller form battery, I will be integrating a small switch to save on the battery power and then developing the code further to enhance the remote cloning capabilities.

The RD4 has arrived and I literally can't wait to get a weekend off to get it set up and some testing underway.


  1. Does this system really copy credit cards? This is very dangerous !


Post a Comment

Popular Posts