Upload File

attack the key own the lock

51
Attack the Key Own the Lock by datagram & Schuyler Towne Defcon 18 (2010) Las Vegas, NV

Upload: duard

Post on 12-Jan-2016

30 views

Category:

Documents


1 download

Report

Tags:

DESCRIPTION

by datagram & Schuyler Towne Defcon 18 (2010)‏ Las Vegas, NV. Attack the Key Own the Lock. Schuyler TOOOL US NDE Magazine Wheel of Fortune. About Us. datagram. How Locks Work. How Locks Work. How Locks Work. How Locks Work. Key Control. Availability of blanks Distribution - PowerPoint PPT Presentation

TRANSCRIPT

Page 1: Attack the Key Own the Lock

Attack the KeyOwn the Lock

by datagram & Schuyler Towne

Defcon 18 (2010)Las Vegas, NV

Page 2: Attack the Key Own the Lock

About Us

datagram Schuyler TOOOL US NDE Magazine Wheel of Fortune

Page 3: Attack the Key Own the Lock

How Locks Work

Page 4: Attack the Key Own the Lock

How Locks Work

Page 5: Attack the Key Own the Lock

How Locks Work

Page 6: Attack the Key Own the Lock

How Locks Work

Page 7: Attack the Key Own the Lock

Key Control

Availability of blanks Distribution Duplication/simulation

Page 8: Attack the Key Own the Lock

Attacking the Key

Bitting depths/code Keyway Model of the lock

Additional security features

Page 9: Attack the Key Own the Lock

Physical Access to Keys

Holy Grail Duration = Attack Quality Wrist Impressioning

Page 10: Attack the Key Own the Lock

Copy Impressioning

Photo of those mold shits

Page 11: Attack the Key Own the Lock

Direct Measurement

Key gauges Micrometer, calipers, etc

photo of key getting measuredphoto of fancy measurement mafs?

Page 12: Attack the Key Own the Lock

Visual Access to Key

Sight reading Estimation Photography

Page 13: Attack the Key Own the Lock

Visual Access – UCSD

Page 14: Attack the Key Own the Lock

Visual Access - Diebold

Page 15: Attack the Key Own the Lock

Visual Access – NY MTA

Page 16: Attack the Key Own the Lock

Key Blanks

Impressioning Overlifting “Reflecting” keys Sectional keyways Rake keys Key bumping

Page 17: Attack the Key Own the Lock

Impressioning

Page 18: Attack the Key Own the Lock

Impressioning

Works Forever!

Page 19: Attack the Key Own the Lock

Overlifting

Page 20: Attack the Key Own the Lock

Overlifting

Page 21: Attack the Key Own the Lock

Reflecting Keys

Page 22: Attack the Key Own the Lock

Sectional Keyways

Page 23: Attack the Key Own the Lock

Sectional Keyways

Page 24: Attack the Key Own the Lock

Universal Handcuff Keys

Page 25: Attack the Key Own the Lock

Rake/Gypsy Keys

I'm betting this is the same as Gypsy keys? They basically cut keys like this:

And then use them to rake the lock open

Page 26: Attack the Key Own the Lock

Incorrect Key

Master key decoding Bumping Skeleton keys Sidebar attacks Passive component bypasses Decoding attacks

Page 27: Attack the Key Own the Lock

Master Key Systems

Page 28: Attack the Key Own the Lock

Master Key Systems

Page 29: Attack the Key Own the Lock

Master Key Systems

Page 30: Attack the Key Own the Lock

Master Key Systems

Page 31: Attack the Key Own the Lock

Master Key Systems

Page 32: Attack the Key Own the Lock

Key Bumping

Basic physics

Specialized key

Easy, effective

Vendor response

Page 33: Attack the Key Own the Lock

Pick Gun Mechanics

Page 34: Attack the Key Own the Lock

How Bumping Works

Page 35: Attack the Key Own the Lock

Creating Bump Keys

Any key that fits Cut “999” key (deepest pin depths)

Use key gauges

Cut with Hand file, dremel, key cutter

Page 36: Attack the Key Own the Lock

Bump Keys

Page 37: Attack the Key Own the Lock

Key Bumping

Page 38: Attack the Key Own the Lock

Key Bumping

Page 39: Attack the Key Own the Lock

100% Efficiency...?

Page 40: Attack the Key Own the Lock

Don't underestimate

attackers...

Page 41: Attack the Key Own the Lock

Bumping Hammers

Page 42: Attack the Key Own the Lock

Side Pins

Page 43: Attack the Key Own the Lock

Side Pins

Page 44: Attack the Key Own the Lock

Side Pins

Page 45: Attack the Key Own the Lock

Side Pins

Page 46: Attack the Key Own the Lock

Side Pins

Page 47: Attack the Key Own the Lock

Regional Sidebar Attacks

ASSA Twin Combi Schlage Primus Fichet 480 The list goes on...

Schlage is doing it wrong.

Page 48: Attack the Key Own the Lock

One Last Way Schlage Is Doing It Wrong: LFIC

BEST SFIC Small Format

Interchangable Core

Schlage LFIC 6.5 Control Key

Page 49: Attack the Key Own the Lock

Passive Components

Page 50: Attack the Key Own the Lock

Resources

openlocksport.com lockwiki.com lockpickingforensics.com ndemag.com

Page 51: Attack the Key Own the Lock

Meet us at Q&A!


LNCS 8042 - Fuming Acid and Cryptanalysis: Handy Tools for … · Keywords: Access control, electronic lock, reverse-engineering, real-world attack, hardware attack, cryptanalysis,

ATTACK, ATTACK, ATTACK

CODE LOCK, RFID LOCK - lista.com · 1 × Beep 3 × Beep. 11 PROGRAMMIERUNG RFID LOCK PROGRAMMATION RFID LOCK PROGRAMMAZIONE RFID LOCK PROGRAMACIÓN RFID LOCK PROGRAMMING RFID LOCK

Cardiology - westernbiomed.weebly.comwesternbiomed.weebly.com/uploads/1/5/4/7/15477822/section_11... · •Watch Your Own Heart Attack . Women's Heart Attacks Misunderstood | Video

Heart Attack and CAD - Houston MDs Handouts/Heart Attack...heart attack is well below 100 and probably less than 50 mg/dl. Oral medicines called Statins lock up the assembly line for

SBC BL4S200 · building their own wiring assemblies with the friction-lock connectors. • Connector Cable Assemblies (Part No.151-0153)—Two 2 × 5 friction-lock connectors (3 mm

Important Sportservice Information - Delaware North/media/target field/2… · Web viewYou must provide your own key lock and all belongings must be removed along with your lock at

Multiple M Sclerosis: How Immune Cells Attack · harmful viruses or bacteria, suddenly attack the body’s own tissue. Instead of coming to the rescue, they go into destruc- ... formed

Attack the Key, Own the Lock - DEF CON the Key Own the Lock by datagram & Schuyler Towne ... Pick Gun Mechanics. ... Lock Picking Keywords: Locks,

Model No. 643DWD Set-Your-Own Combation Lock …content.masterlock.com/masterlock/resources/...Title: Model No. 643DWD Set-Your-Own Combation Lock Instruction Sheet Author: The Master

Popular Protocol attack Smurf Attack Introduction: … Protocol attack!Smurf Attack!SYN attack!UDP Attack, ICMP Attack!CGI request attack!Authentication server attack!Attack using

Attack the (Own) Network so You'll Survive

55472045 How to Make Your Own Professional Lock Tools Eddie the Wire From HemiSync Vol 1

Enterprise CIODecisions - cdn.ttgtmedia.comcdn.ttgtmedia.com/.../EntCIO_Decisions_final_vol4.pdf · enterprise cio decisions • september ... to own or rent? lock in colocation prices

Popular Protocol attack Smurf Attack Introduction: …jeffay/courses/nidsS05/slides/5-Protocol-Attacks.pdf · Popular Protocol attack!Smurf Attack!SYN attack!UDP Attack, ... Features

Lock&lock Cataloge

HOW TO MAKE YOUR OWN PROFESSIONAL … To Make Your Own... · HOW TO MAKE YOUR OWN PROFESSIONAL LOCKTOOLS by eddie the wire Volume 1. 2 HOW TO MAKE YOUR OWN PROFESSIONAL LOCK TOOLS

Attack the Key, Own the Lock - defcon.org

Ambush-A Surprise attack. Archaeology-the study of people. Annex-To add a territory to one’s own territory

EMP LOCK CONTINUED Lock EMP LOCK CONTINUED Index 1 2 3 5 6 6 ... choosing to install the safe on your own ... (physical or to your property) that may occur* Tools Needed: • 1

superware lock & lock

Ignoring Your Own Policy Evidence: the Government’s Attack on the Primary Care System

Quick Guide: Simulating a DDoS Attack in Your Own Lab...actually functions in a real attack, what level of service you are able to provide while under attack, and how your people and

DECEPTIONGRID 7.0 DeceptionGrid - A powerful defense ... · specific motivations. • Build Your Own Trap (BYOT) - Gives users the ability to create their own unique attack surfaces

Vocabulary. VOCABULARY WORD MAP Definition / DenotationUse in a sentence of your own. An attack on the person____________________________ rather than

A Video-based Attack for Android Pattern Lock · This article presents a novel video-based side channel attack that can reconstruct Android locking patterns from video footage filmed

SECRETS OF LOCK PICKING Tools Lock - ZenK-Security OF LOCK... · As to getting lock picks for your own use, you cannot go down to your local hardware store and buy them. I could supply

Attack the Key Own the Lock

Customize Your Own Lockout Kit/Station - Master Lock...Custom Safety Kits & Stations Customize Your Own Lockout Kit/Station We understand that everyone has different needs when it

A Video-based Attack for Android Pattern Lock · Graphical-based passwords, like the Android pattern lock, are widely used as a protection mechanism to prevent sensitive information

BUILD YOUR OWN SOLUTION - Snap-on„¢ by Snap-on Tools Company is an innovative custom designed concept for your service ... professional work ... Every unit has it’s own lock

‘Evil Twin’ Wireless Access Point Attack · 2015-05-11 · ‘Evil Twin’ Wireless Access Point Attack 11 Configuring SSLStrip, enable the replacement favicon with a lock picture

How to Make Your Own Professional Lock Tools Eddie the Wire From HemiSync Vol 1

Unlock iCloud Lock, SIM Lock, Lock Screen, FRP Lock for Phone · Unlock iCloud Lock, SIM Lock, Lock Screen, FRP Lock for Phone

SERIES FINGERPRINT LOCK & DIGITAL LOCK 10 1 ONSL-FE menuöcnntav: 2 o»L-FE. mt LOCKING METHOD Biometric fingerprint lock up TO 10 BE REGISTERED Digitat tock OWN COOE OF t. 10 CAN