https://github.com/doegox/awesome-rfid-talks

https://github.com/doegox/awesome-rfid-talks

List: awesome-rfid-talks

Last synced: 3 months ago
JSON representation

• Host: GitHub
• URL: https://github.com/doegox/awesome-rfid-talks
• Owner: doegox
• Created: 2021-09-03T06:29:41.000Z (over 3 years ago)
• Default Branch: main
• Last Pushed: 2024-05-21T12:39:34.000Z (9 months ago)
• Last Synced: 2024-05-21T13:50:42.773Z (9 months ago)
• Size: 131 KB
• Stars: 118
• Watchers: 11
• Forks: 13
• Open Issues: 0
• Metadata Files:
  • Readme: README.md

Awesome Lists containing this project

README

        
# List of RFID/NFC Security & Privacy talks

[![Awesome](https://cdn.rawgit.com/sindresorhus/awesome/d7305f38d29fed78fa85652e3a63e154dd8e8829/media/badge.svg)](https://github.com/doegox/awesome-rfid-talks)

A curated list of awesome Security & Privacy talks

Shamelessly inspired by [PalSec's awesome-sec-talks](https://github.com/PaulSec/awesome-sec-talks)

## Maintainers

[doegox](https://twitter.com/doegox)  

[herrmann1001](https://twitter.com/herrmann1001)  

*RFID Hacking by Iceman* Discord members  

## 2005

* RECON 2005 - [Practical Attacks on a Prox Card - Jonathan Westhues](https://archive.org/details/recon-2005-proxcard)

## 2007

* LayerOne 2007 - [RFIDiots - Adam Laurie](https://www.youtube.com/watch?v=3vAvesYoHeo)

* DEF CON 15 - [Hacking your Access Control Reader - Zac Franken](https://www.youtube.com/watch?v=Bttr7fEfxiE)

## 2009

* DEF CON 17 - [RFID Mythbusting - Chris Paget](https://www.youtube.com/watch?v=SMm4g5yhDoY)

* 26C3 - [Legic Prime: Obscurity in Depth - Henryk Plötz/Karsten Nohl](https://fahrplan.events.ccc.de/congress/2009/Fahrplan/events/3709.en.html)

* HAR 2009 - [Breaking Hitag 2 - Henryk Plötz/Karsten Nohl](https://www.youtube.com/watch?v=qj8wp55AH0M)

## 2010

* DEF CON 18 - [Extreme-Range RFID Tracking - Chris Paget](https://www.youtube.com/watch?v=q9_8F_BKeto)

## 2012

* DEFCON 20 - [NFC Hacking: The Easy Way - Eddie Lee](https://www.youtube.com/watch?v=7ElZBI9PufY)

* DEFCON 20 - [Don't Stand So Close To Me: An Analysis of the NFC Attack Surface - Charlie Miller](https://www.youtube.com/watch?v=16FKOQ1gx68)

* HES 2012 - [Hacking the NFC credit cards for fun and debit - Renaud Lifchitz](https://www.youtube.com/watch?v=VWIzW0rRw_s)

## 2013

* DEF CON 21 - [RFID Hacking Live Free or RFID Hard - Francis Brown](https://www.youtube.com/watch?v=duzpEtkmAnI)

* BlackHat US 2013 - [RFID Hacking: Live Free or RFID Hard - Francis Brown](https://www.youtube.com/watch?v=LcY3VJqi0Xo)

## 2014

* OSHUG 31 - [RFIDler: A Software Defined RFID Reader/Writer/Emulator - Adam Laurie and Zac Franken](https://www.youtube.com/watch?v=dmvTKWOVrIo)

* Ekoparty 2014 - [Hacking RFID Billing Schemes For Fun and Free Rides - Márcio Almeida](https://www.youtube.com/watch?v=epSJvZLO16Q) 🇪🇸

* RSA 2014 - [Fun with Proxmark3 - Daniel Ayoub](https://www.youtube.com/watch?v=1Xz5HgOL_Gc)

## 2015

* DEF CON 23 - [How to Train Your RFID Hacking Tools - Craig Young](https://www.youtube.com/watch?v=kVMAgiJlQkI)

* DEF CON 23 - [RFIDiggity - Pentester Guide to Hacking HF/NFC and UHF RFID - Fran Brown & Shubham Shah](https://www.youtube.com/watch?v=7o38hyQWw6g)

* BlackHat US 2015 - [Crash & Pay: Owning and Cloning Payment Devices - Peter Fillmore](https://www.youtube.com/watch?v=SLGl9X9LBv4)

* BlackHat US 2015 - [Breaking Access Controls With BLEKey - Eric Evenchick & Mark Baseggio](https://www.youtube.com/watch?v=iH7VPUNz-dU)

* 32C3 - 2015 [Sicherheit von 125kHz Transpondern am Beispiel Hitag S - Ralf Spenneberg et al](https://www.youtube.com/watch?v=bl8iQHEHdFg)

## 2016

* DEF CON 24 - [Samsung Pay: Tokenized Numbers, Flaws and Issues - Salvador Mendoza](https://www.youtube.com/watch?v=BqjyewIEFSc)

## 2017

* DEF CON 25 - [Man in the NFC - Haoqi Shan, Jian Yuan](https://www.youtube.com/watch?v=pXmmNe5uo-4)

* DEF CON 25 - [Real time RFID Cloning in the Field - Dennis Maldonado](https://www.youtube.com/watch?v=kUduHIygbY8)

* 44CON - [Cracking HiTag2 Crypto - Kevin Sheldrake](https://www.youtube.com/watch?v=abx1hQDCKyg)

## 2018

* DEF CON 26 - [NFC Payments The Art of Relay & Replay - Salvador Mendoza](https://www.youtube.com/watch?v=MVU3gbPnk0g)

* HITBGSEC 2018 - [NFC Payments: The Art Of Relay And Replay Attacks - Salvador Mendoza](https://www.youtube.com/watch?v=e023wGfVaE0)

* TR18 - [NFC Payments: The Art Of Relay And Replay Attacks - Salvador Mendoza & Leigh-Anne Galloway](https://www.youtube.com/watch?v=mWPwuBsFNrc)

* BlackAlps 2018 - [Unlocking Secrets Of The Proxmark3 RDV4.0 - Christian Herrmann And Kevin Barker](https://www.youtube.com/watch?v=BBRE-bnNDKQ)

* LCA 2018 - [Tap On Reverse Engineering - Michael Farrell](https://www.youtube.com/watch?v=qVvNdfKRw7M)

* CONFidence 2018 - [A 2018 practical guide to hacking RFID/NFC - Sławomir Jasek](https://www.youtube.com/watch?v=7GFhgv5jfZk)

* HOPE 2018 - [Owning NFC Toys I Own: A Case Study - Vitorio Miliano](https://www.youtube.com/watch?v=0xawSK2dKqk)

* HOPE 2018 - [Breath of the RF Field: Hacking Amiibo with Software-Defined Radio - James Chambers](https://www.youtube.com/watch?v=-ZdkYLRydoI)

* INFILTRATE 2018 - [Ghost in the locks - Tomi Tuominen, Timo Hirvonen](https://vimeo.com/267613809)

* OzSecCon 2018 - [Project Walrus, an RFID and Contactless Card Cloning App - Daniel Underhay, Matthew Daley](https://www.youtube.com/watch?v=PKXlqKDk_BU)

* GPN18 CCC 2018 - [RFID/NFC-Grundlagen - A Pentesters Perspective - Gerhard Klostermeier](https://www.youtube.com/watch?v=06nal8BuB2w)

## 2019

* NULLCON Goa 2019 - [Unlocking secrets of the Proxmark3 RDV4.0 - Kevin Barker & Christian Herrmann](https://www.youtube.com/watch?v=1rTv8lyEtv8)

* DEF CON 27 - [Basics of Hacking Physical Access Control Systems - Babak Javadi](https://www.youtube.com/watch?v=LS5OQHUJaJE)

* DEF CON 27 - [WCTF DEFCON 27 Demo Iceman](https://www.youtube.com/watch?v=bMZY_R47phY)

* PTS2019 - [Unlocking secrets of the Proxmark3 RDV4 - Christian Herrmann](https://passthesalt.ubicast.tv/videos/unlocking-secrets-of-the-proxmark3-rdv4/)

* PTS2019 - [Reversing a Firmware uploader & others NFC stories - Aurélien Pocheville](https://passthesalt.ubicast.tv/videos/reversing-a-firmware-uploader-others-nfc-stories/)

* HITBCyberWeek - [Building A GEN2 UHF RFID Reader With SDR - Adam Laurie](https://www.youtube.com/watch?v=QKi1OH8Zstk)

* BSides Belfast 2019 - [New Attacks On The MIFARE DESFire EV1 Smartcard Used In Public Transportation - Rory Flynn](https://www.youtube.com/watch?v=ZSrOq40z1i8)

* Kawaiicon 2019 - [Access Control on Sesame Street - Gallagher/Cardax access control system research - Matthew Daley](https://www.youtube.com/watch?v=brhXqyidiKo)

* Ekoparty 2019 - [NFC analysis on transport systems in Argentina - Dan Borgogno](https://www.youtube.com/watch?v=XkKud0jAzCg) 🇪🇸

* Hacker Hotel 2019 - [Nfc hacking - Thomas Roos](https://www.youtube.com/watch?v=Yus4z4szkcQ)

* 36c3 - [Hacking an NFC toy with the ChameleonMini - Fptrs & Ceres-c](https://media.ccc.de/v/36c3-108-hacking-an-nfc-toy-with-the-chameleonmini)

## 2020

* DEF CON 28 - [Ghosting the PACS-man: New Tools and Techniques - Omikron and Iceman](https://www.youtube.com/watch?v=ghiHXK4GEzE)

* DEF CON 28 - [Beyond Root - Christopher Wade](https://www.youtube.com/watch?v=aLe-xW-Ws4c)

* PACSEC 2020 - [RFID Security Panel - Adam Laurie , Christian Herrmann, Babak Javadi, Samy Kamkar, Phillippe Teuwen, Chrissy Morgan](https://www.youtube.com/watch?v=uMCBsU6LPxk)

* EKO14 - [NFC Payments: The Art of Relay and Replay Attacks - Salvador Mendoza](https://www.youtube.com/watch?v=27TWFDWtV8E) 🇪🇸

* PTS2020 - [Pique curiosity, not diabetic fingers - Axelle Apvrille, Travis Goodspeed](https://passthesalt.ubicast.tv/videos/2020-pique-curiosity-not-diabetic-fingers/)

* WOOT'20 - [NFCGate: Opening the Door for NFC Security Research with a Smartphone-Based Toolkit - Klee, Roussos et al.](https://www.usenix.org/conference/woot20/presentation/klee)

* 37c3 - [Toniebox Reverse Engineering - g3gg0 et al](https://www.youtube.com/watch?v=DNufX-tss5M)

## 2021

* DEF CON 29 - [The PACS man Comes For Us All - Babak Javadi, Nick Draffen, Eric Bettse, Anze Jensterle](https://www.youtube.com/watch?v=NARJrwX_KFY)

* DEF CON 29 - [PINATA PIN Automatic Try Attack - Salvador Mendoza](https://www.youtube.com/watch?v=VOIvEqjJNOY) + [Live](https://www.youtube.com/watch?v=meRL_JXDQpk)

* SSTIC 2019 - [EEPROM: It Will All End in Tears — Christian Herrmann, Philippe Teuwen](https://static.sstic.org/videos2021/1080p/vostfr-eeprom_it_will_all_end_in_tears.mp4) 🇫🇷/🇬🇧

* DEF CON 29 - RF Village talk [How low can you Go Vechicle Low Frequency Signals With Portapak - Woody](https://www.youtube.com/watch?v=2eLQmk-r1XU)

* Hardwear.io - [EEPROM: It Will All End in Tears — Christian Herrmann, Philippe Teuwen](https://youtu.be/zZp5h0Tdkhk)

## 2022

* DEF CON 30 - RF Village talk [Pwning  RFID Physical Access 6FT and Beyond - Langston Clement & Daniel Goga](https://www.youtube.com/watch?v=J6vTovVogq4)

* DEF CON 30 - [Digital Skeleton Keys - Miana E Windall, Micsen](https://www.youtube.com/watch?v=G2EE_yA7OyI)

* DEF CON 30 - RF Village talk [Rip and tear - Iceman & Kevin Barker](https://www.youtube.com/watch?v=MKSXSKQHz6o)

## 2023

* HardwearIO - ["Un-fare Advantage” - Hacking The MBTA CharlieCard From 2008 To Present - Bobby Rauch](https://www.youtube.com/watch?v=me6FyrDRlD4)

* DEF CON 31 - [Infinite Money Glitch - Hacking Transit Cards - Bertocchi, Campbell, Gibson, Harris ](https://youtu.be/1JT_lTfK69Q?si=PQ6LuGoVwXDPVW0F)

* DEF CON 31 - [Unlocking Doors from Half a Continent Away - Trevor Stevado, Sam Haskins](https://youtu.be/rogtZjpyoVQ?si=OIvppFGb9-HGcnRw)

* DEF CON 31 - [Contactless Overflow Code Execution in Payment Terminals & ATMs - Josep Rodriguez](https://youtu.be/eV76vObO2IM?si=7AMxAxnW4NQuj8jP)

* DEF CON 31 - [Badge of Shame Breaking into Secure Facilities with OSDP - Dan Petro, David Vargas](https://youtu.be/zNpM_l5l0sE?si=n0gzfZPAQUC4IgT5)

* DEF CON 31 - War Stories [Designing RFID Implants Flipping the Bird Opens Doors - Miana Ella Windall](https://youtu.be/OyRxapMjLP0?si=jhMzZSN_gM2-SjC9)

* BRUCON 0X0F - [OSDP auditing for red teamers and facility managers - Knud Hojgaard](https://www.youtube.com/watch?v=uwKBKxdwJtc)

* SAINTCON - [RFID Hacking - Iceman](https://www.youtube.com/watch?v=FlAhh_aktWU)

* CHCON - [Honey the kids tried crypto - Thomas Hobson](https://www.youtube.com/watch?v=dCvwlMbKJLE)

* SEC-T - [How to Break into Organizations with Style - Julia Zdunczyk](https://www.youtube.com/watch?v=JW1ii01Rexk)

## 2024

* EMF2024 - [Relive: Digital Skeleton Keys - We’ve got a bone to pick with offline Access Control Systems - Miana E Windall](https://media.ccc.de/v/emf2024-80-digital-skeleton-keys-we-ve-got-a-bone-to-pick)

* SSTIC 2024 - [Tears for fears, breaking an RFID counter — Jean-Joseph Marty, Pierre Granier, Rémy Delion](https://static.sstic.org/videos2024/1080p/tears_for_fears_breaking_an_rfid_counter.mp4) 🇫🇷

* SSTIC 2024 - [Communications à grande distance avec un lecteur ISO 14443 — Pierre-Michel Ricordel, Yoan Burny ](https://static.sstic.org/videos2024/1080p/communications_a_grande_distance_avec_un_lecteur_iso_14443.mp4) 🇫🇷

* GPN18 CCC 2024 - [RFID Payment Systems - free drinks and all you can eat - Gerhard Klostermeier](https://media.ccc.de/v/gpn22-446-rfid-payment-systems-free-drinks-and-all-you-can-eat#t=0)

* _Nerding out with Viktor_ podcast - [RFID Hacking with Iceman: Exploring the Intricacies RFID Security — Christian Herrmann](https://vpetersson.com/podcast/S01E21.html)

* BSides RDU 2024 - [All About Implantable RFID: Is Cyborgification Right for YOU? - Deviant Ollam](https://www.youtube.com/watch?v=3EFKJ9KaWGY)

# Youtube Channels

* [Quentyn Taylor](https://www.youtube.com/@QuentynTaylor)

* [Iceman](https://www.youtube.com/@iceman1001)

* [Dangerous Things](https://www.youtube.com/@Dangerousthings)

* [DeviantOllam](https://www.youtube.com/@DeviantOllam)

* [TheNotSoCivilEngr](https://www.youtube.com/@amihirata) gone?

  * [MIFARE Classic Technical Video](https://www.youtube.com/watch?v=PzYS7aHWOuU) gone?

* [Penthertz](https://www.youtube.com/@Penthertz)

* [MTools Tec](https://www.youtube.com/@mtoolstec)

## Contributing

For any missing conference, create a pull request or an issue and we will add it here.