Free rides! SUBE, REDBUS, SATBUS and others.
Mifare cards are well known technology, and they are wildly used for almost every public transport in Argentina.
This talk will provide an introduction of the technology behind the Mifare cards with their known vulnerabilities to make a deep analysis on how each transport system implements the balance in those cards, and how to exploit it.
You will learn how to crack cards, reverse engineer the data stored in the memory, develop a simple application to change data and reverse engineer a APK to gather useful information related to the balance on the plastics. I will show you real cases on argentina, targeting SUBE, REDBUS and SATSRC among others.
Back-End Developer @MercadoLibre. Ex Back-End Developer and Security champion @Mcafee. Security researcher.