Anybody know where I can get used Flipper Zero’s? Ebay seems to not allow them.
Facebook marketplace
what are those?
It’s the best all in one ethical and unethical hacking tool out there.
I wish I’d had one… Never found the right moment.
Cool, what hacking can be done with it? What is it?
I have one. Never found a great use case for it…
Wikipedia:
The Flipper Zero is a portable multi-functional device developed for interaction with access control systems.[1] The device is able to read, copy, and emulate RFID and NFC tags, radio remotes, iButtons, and digital access keys. It also has a GPIO interface.[2] It was first announced in August 2020 through the Kickstarter crowdfunding campaign, which raised $4.8 million.[3] The first devices were delivered to backers 18 months after completion of the crowdfunding campaign. The device’s user interface embodies a pixel-art dolphin virtual pet. The interaction with the virtual pet is the device’s core game mechanic. The usage of the device’s functions defines the appearance and emotions of the pet.[4]
In the built-in game, the main mechanism to “upgrade” the dolphin is to use the various hacking tools. While harmless uses (like as a remote control for a television, or carbon dioxide sensor) exist, some of the built-in tools have potential criminal uses, including RFID skimming, Bluetooth spamming (spamming a Bluetooth connection, crashing a person’s phone), and emulation of RFID chips such as those found in identification badges, using the built-in radio cloner to open garage doors, unlocking cars, and functioning as a wireless BadUSB
Overview
edit
Flipper Zero is designed for interaction with various types of access control systems, radio protocols, RFID, near-field communication (NFC), and infrared signals.[6][7] To operate the device, a computer or a smartphone is not required; it can be controlled via a 5-position D-pad and a separate back button. Flipper Zero has a monochrome orange backlight LCD screen with a resolution of 128 × 64 pixels. For connection with external modules, the device has general-purpose input/output (GPIO) pinholes on the top side. User data and firmware updates are stored on a microSD card. Some actions, such as firmware or user data update, require a connection to a computer or a smartphone with the developer’s software installed.
In July 2023, an app store was opened for the device.[8]
U2F (Universal 2nd Factor)
edit
Use the flipper as a second authentication factor for your Google account and others
HID controllers
edit
Flipper Zero can replace certain HID (human interface device) controllers. This allows it to interact with your phone or computer. It can remotely control media players, computer keyboards or mouse, presentations, and more.
Keynote: Presentations remote
Keyboard: Double as a keyboard for a computer
Media: Controls media on a computer, camera remote control for a phone
Mouse: Double as a mouse for a computer
TikTok Controller: Control TikTok app on a phone
Mouse Jiggler: Duplicate mouse movements on a computer to keep computer showing as active at all times
PTT : use the flipper as a PTT (push to talk) controller / wireless PTT remote
zdnet
One year later: 7 useful things the Flipper Zero can do that still blows my mind
This weird little device blew up on TikTok, but there’s more to it than what lies on the surface. Here are some of the most useful features I’ve discovered.
After over a year of use, I love my Flipper Zero, and I’m still finding cool things to do with it.
Am I using it to steal cars, clone credit cards, or change the prices shown on gas station displays? Of course not! That’s just fake trash people upload to TikTok to try to look cool, and you can’t do anything like that.
But that doesn’t mean the Flipper Zero can’t do some very cool and useful things. Over the past year, I’ve been exploring the suite of tools built into the Flipper Zero, as well as extending its capabilities by installing custom firmware. It’s been a game-changer in so many ways!
The Flipper Zero might be small, but there’s a lot of hardware packed into a small space.
Flipper Zero is a portable multi-tool for pen-testers and geeks in a toy-like shell.
To begin with, there’s a sub-GHz wireless antenna that can capture and transmit wireless codes to operate wireless devices and access control systems, such as garage door remotes, boom barriers, IoT sensors, and even remote keyless systems.
RFID support allows it to read, store, and emulate a number of different RFID cards.
It can also read, write, store, and emulate NFC tags. On the front, there’s a 1-Wire connector that can read and emulate iButton (aka DS1990A, CYFRAL, Touch Memory, or Dallas key) contact keys.
There’s also a built-in infrared transceiver that can both capture and transmit IR codes to control things like TVs. Finally, on the top, there are GPIO connectors that allow the Flipper Zero to connect to other gadgets in the real world.
That’s a lot of features crammed into a tiny $169 device. But every week, I hear from buyers who are frustrated and disappointed because their Flipper Zero won’t do the things that it can seemingly do based on fake social media videos.
Here are some of the things I’ve been doing with my Flipper Zero over the past few weeks.
Note: I’m usually running third-party software on my Flipper Zero, which gives me access to a bunch of additional features. But worry not—loading third-party software doesn’t invalidate your warranty, and you can easily go back to the stock software at any time using the Flipper Zero app on a desktop, laptop, or mobile device.
- Testing car key fobs, wireless doorbells and more
The sub-GHz wireless antenna can pick up signals from devices such as wireless doorbells and car key fobs, making the Flipper Zero a handy tool for testing if wireless transmitters are working properly. I use mine to test if the fobs are working and to test their range.
And yes, the Flipper Zero can record the codes transmitted by car key fobs, but retransmitting these codes to a modern car won’t unlock it due to a feature called ‘rolling codes’ that changes the code with each use. On older cars – those 20 years old and more – you could use a code captured to unlock the vehicle (but don’t do that unless it’s your car or you have permission!), but you still couldn’t drive away with it.
On the flip side – pun intended – retransmitting the codes to a wireless doorbell will cause the bell to ring, as most of these systems don’t have a mechanism to protect against such annoyances.
- Reading/saving/emulating NFC
NFC is everywhere nowadays, and the Flipper Zero allows you to work with this wireless protocol. It’s built into plastic cards and fobs and used for all sorts of things, from unlocking hotel room doors to controlling barriers.
But this doesn’t mean you can cause chaos in the world, because to unlock things you more often than not need access to the NFC key.
NFC signals can be read by the Flipper Zero, and many NFC cards can also be copied and cloned (this depends on the security used for the card, so I can’t give you any hard and fast rules about which NFC devices can be cloned). I’ve used my Flipper Zero to copy my hotel room card on occasion when the hotel only gives you a single card or when we have multiple rooms and don’t want to juggle a handful of cards.
However, note that while the Flipper Zero can read NFC cards and fobs, it cannot decode the card’s encrypted security code used on credit and debit cards, so they can’t be cloned.
Flipper Zero cannot decode the card’s encrypted security code, so it cannot clone bank cards.
- Reading and unlocking RFID tags and cards
Along with NFC, the Flipper Zero can read and clone RFID cards and fobs, including hotel cards as shown in the picture above.
RFID cards and tags can be locked to prevent them from being overwritten or having their security keys extracted, but the Flipper Zero can bypass many of these mechanisms. For example, it can offer to unlock the card if you present it to a valid reader (such as the lock it has been programmed to open). This allows you to clone the card and unlock the door using both the card and the Flipper Zero.
- Universal infrared remote control
The Flipper Zero has a built-in infrared module that can be programmed to operate a wide range of devices, from TVs to AC units.
Pretty much any consumer device with an IR remote control interface can be controlled using the Flipper Zero.
Another cool use of this functionality is to test if infrared remote controls are working. Simply point the remote control at the Flipper Zero in ‘read IR’ mode, and it will detect the signals.
I use this feature all the time to test remote controls that I’ve fixed after battery leaks have damaged the device. It’s an incredibly handy feature!
- Bypassing Sentry Safe security
Yes, the Flipper Zero can bypass the security on some Sentry Safe electronic safes using an output from the GPIO.
This is definitely not something you want to be doing if it isn’t your safe or you don’t have permission, but it goes to show just how insecure the “complimentary” safes found in hotels, spas, and Airbnbs actually are.
- Automating scripts in a variety of platforms
Flipper Zero can act as a BadUSB device, which means that when connected to a port it is seen as a Human Interface Device (HID), such as a keyboard.
A BadUSB device can change system settings, open backdoors, retrieve data, initiate reverse shells, or do anything that can be achieved with physical access. These tasks are completed by using a set of commands written in the Rubber Ducky Scripting Language, also known as DuckyScript.
Flipper Zero opens a browser and navigates to a webpage with no user input.
- Signal generator
Adrian Kingsley-Hughes/ZDNET
The Flipper Zero can use the GPIO to output electrical signals and act as a signal generator. I last used this to simulate an antilock braking system module on a vehicle to confirm that all the wiring and computers in the car were working.
- If I want to test my A/C remote, I point it at the A/C.
- Tested and cool, but no real world applications for me…
- I can copy hotel cards to carry around a slightly bulky toy instead of a slim hotel card…
- I dont have a TV.
- I dont own a sentry safe
- Great use but like I can also move the program on a USB stick…
- Interesting.
I am not at all saying its not an awesome device. Its built well, fun, intuitive to use, and has a great online community, I am just saying personally I havent found as many use cases as I would have liked… Many of the applications feel a bit forced VS other methods. (e.g. just using the actual A/C remote…)
Some of its uses sound cool, but not for $160.
Hacking Wi-Fi with the Wi-Fi module?
Dont know how to do that, and not sure why I would want / need to do that…
Can it do that?
Are there any cheaper devices that can do that?
laptop + wireshark
How exactly?
I replied to the wrong post, it was for this one
which is a lot more complicated with today’s wi-fi