1. Flipper Add‐On: MagSpoof
MagSpoof Flipper Add-On
This Add-On gives the Flipper the functionality of the famous MagSpoof. We use the same components and improvements from our MagSpoof versions, now adapted to the Flipper.
Flipper MagSpoof is a device that can spoof/emulate any magnetic stripe. It can work “wirelessly”, even on standard magstripe readers, by generating a strong electromagnetic field that emulates a traditional magnetic stripe card.
Warning
Disclaimer
MagSpoof is a wireless penetration testing tool intended solely for use in authorized security audits, where such usage is permitted by applicable laws and regulations. Before utilizing this tool, it is crucial to ensure compliance with all relevant legal requirements and obtain appropriate permissions from the relevant authorities.
| Board | |||
|---|---|---|---|
| Name | Flipper Add-On: MagSpoof | ||
| Pins | |||
| Flipper GPIOs | |||
| Connectivity | |||
| MagSpoof | TC4424 Microchip | ||
| Power | |||
| Coil Voltage | 3.3V-5V (Depending on the switch position) | ||
| Output Current | 3A (High Peak) | ||
| CAD Files |
The TC4424 chip receives the pulses generated by the Flipper and amplifies the signal before sending it to the coil, generating a strong magnetic field. These oscillations of the magnetic field simulate the card's magnetic stripe, mimicking the swiping of a card through a reader.
You can find the datasheet here: TC4424.
The Flipper Add-On: MagSpoof has an input voltage selector, where you can choose between 5V and 3.3V. When the flipper is connected via USB cable has a 5V output. Meanwhile, the flipper is not connected via USB cable it provides a 3.3V output.
Important
If you are using your Flipper without USB power you must set your switch to 3.3V, otherwise shift the switch to 5V.
Powering by USB you can connect an external power supply allows have a greater wireless range with your Add-On MagSpoof.
- Store all of your credit cards and mag stripes in one device (Flipper's storage).
- Works on traditional mag stripe readers wirelessly (no NFC/RFID required).
- Can disable Chip-and-PIN (code not included).
- Supports all three magnetic stripe tracks, and even supports Track 1+2 simultaneously.
- Simulates the swiping of a magnetic stripe card, either in one direction or in the opposite direction.
- MagSpoof can be used as a traditional credit card and simply store all of your credit cards (and with modification, can technically disable chip requirements) in various impressive and exciting form factors, or can be used for security research in any area that would traditionally require a mag stripe, such as readers for credit cards, drivers licenses, hotel room keys, automated parking lot tickets, etc.
Note
It is not necessary to slide the coil of your board through a reader since the signal is sent byte by byte in a specific order or reversely to emulate the swipe of a magnetic stripe card.
Magnetic Stripes Cards (magstripes Cards) work peculiarly, as their name indicates, they work with small magnetic stripes. The information in these magnetic stripes is divided into tracks, which vary according to the card and bank.
Magnetic stripe financial cards can have up to three tracks, however, credit cards only have two tracks (Tracks 1 and 2). To identify them, it is important to know that Track 2 stores less information (in bits) than Track 1.
The small magnetic stripes that contain the card information are similar to the ones below shown.
To read the bits correctly, the card should be rotated 180 degrees (looking at it upside down) and the least significant bit is read first, ignoring all leading 0s up to the first 1.
Track 2 is 5 bits per character, the least significant bit first, and the 5th bit is an odd parity bit. By taking each 5 bits and reading the first 4 bits, it is possible to extract the credit card number (and other data, such as expiration date, discretionary data, CVV/CVC/CSC/CID/CAV depending on card type).
Making a comparison with the numbers on the front of the card, they are the same as those shown in the picture above.
Important
MagSpoof is a flipper app that is not included in the official flipper firmware. To use the Flipper Add-On MagSpoof Unleashed Firmware must be installed. If you do not have it yet, please follow the First Steps With Electronic Cats Flipper Add-Ons.
Note
The following steps are performed with a magstripe reader. The card reader is not included with the purchase of the MagSpoof.
Note
Is recommended to set the keyboard language/layout to English, to obtain the chain of characters with the proper format.
- Connect the card reader with a USB cable to the computer.
- Open a notepad/plain text application on your computer.
- Swipe your card through the card reader, so the magstripe will be read. A character chain will appear on the Notepad/plain text software. The characters correspond to the data read from tracks 1 and 2 on the card's magstripe. Keep an eye on them, you will need them in the following steps.
Quotation marks should be omitted, they only announce a character chain in the code. The chain begins with %B, just like in the MagSpoof example. Then we have alphanumeric and some special characters; the characters read before the semicolon indicates Track 1.
Track 2 is conformed with the rest of the characters obtained, starting from the semicolon to the question mark.
Once you have your card information you already have the necessary information to use MagSpof. Now it's time to set up your Flipper.
Download the TestMagstripe.mag file from Templates of Cards and substitute the read tracks.
Replace the data in the template with the ones read in step 1.
You can find the instructions to find the app in the Finding the Apps sections.
- Emulate (WIP), to emulate the card,
- Delete to delete the file of your card,
- About to see the information on your file.
Since our objective is to emulate our card, then we will directly select the Emulate(WIP) option.
In the "Config" menu you can modify how the card will be emulated. MagSpoof Add-On uses GPIO, so set GPIO in TX via.
It can also modify the information that will be emulated. The most common is to emulate track 1 and track 2 of your card.
It can also change the emulation speed or time. It is not recommended to set high or low values or the emulation will be performed incorrectly.
Go back and press send.
And in this way you will already be emulating your card.
Thank you for reading our Wiki!
- How do Magnetic Stripes work?
- MagSpoof Flipper Add-On
- Understanding MagSpoof Flipper Add-On
- First steps with the Flipper Add-On MagSpoof
- Example
- Marauder - Marauder Spoof's technologies
- Flipper Add‐On: Marauder
- Flipper Add‐On: Marauder Spoof
- Understanding Flipper Add-On: Marauder and Flipper Add-On: Marauder Spoof
- First steps with Marauder
- Examples
- How does Flipper Add-On SubGHz' technologies work?
- Flipper Add‐On: SubGHz
- Understanding Flipper Add‐On: SubGHz
- First steps with Flipper Add‐On: SubGHz
- What is RS485?
- What is the Modbus Protocol & How Does It Work?
- Requirements
- Menus description
- How to build a packet manually and send it
- How does Flipper CAN Bus work?
- Flipper Add‐On: CAN Bus
- Understanding Flipper Add‐On: CAN Bus
- First steps with Flipper Add‐On: CAN Bus