First Thoughts
Out of personal interest, I decided to get a Flipper Zero and have been playing with the firmware options available as well as trying to clone certain devices and cards I have. The Flipper Zero looks like this, wedged in its silicon protector.
The Flipper can work on Sub-Ghz channels, Bluetooth, NFC and RFID as well as Infrared. It has interfaces alone the side to add functionality via GPIO and also will work as a U2F second factor of authentication via USB. It has flexibility in what it can do, especially with 3rd party firmware installed.
So what can you do with this device?
Let’s start with the successes…..
On the Sub-Ghz functionality, I planned to pair the Flipper with my garage door opener. This did not go well initially as it seems the receiver has been changed and I could not find a “pair” button.
Undaunted, I cloned one of the garage door remotes I have and hoped it wasn’t using rolling codes.
As expected, the remote was on the 433Mhz channel and it is not a rolling code. This was verified by being able to repeatedly open the door with the same code replayed by the Flipper and still being able to use the remote.
The same simplicity was not possible for an apartment key I have. I could copy (part of) it but it’s actually a MIFARE DESFire NFC key. It has security which prevents it being copied easily; so with the failure came happiness insofar that nobody could easily copy my NFC key…!!
Another thing to read, a passport. It comes out mapping to an ISO standard but, since the options for the saved data is only to replay the UID, it seems the payload within the passport is “special”. It’s still worth potentially investing in a pouch to prevent anyone getting anything from that document…..
The Flipper can also clone hotel key cards – certainly the spare one I have found in a bag. Of course any good hotel should provision these to be valid for a given door during a given stay – but human nature would suggest that there are hotels that maybe do not do this as well as they perhaps should.
Other Functionality
I know a friend that will get on your nerves, get on your nerves…..
One of the built-in Apps in 3rd party firmware allows Bluetooth spamming.
As you can see from the screenshots, this will result in an annoyance for anyone within range. I tried this on myself….!
One thing I noticed was that my up-to-date iPhone had difficulties to connect to my car hands-free after being spammed. It needed rebooting….!
The Adventures with Flipper will continue; expect some reviews of the firmware, useful Apps and things to do with this device.