SUBE Transport System Security Analysis and Exploits - 5 Years Later

Explore a comprehensive security analysis conference talk examining the SUBE transport system vulnerabilities and their current exploitability using modern hacking devices like Proxmark3, Flipper Zero, and Chameleon Mini. Dive deep into the investigation of the Carga SUBE USB device, used for balance checking and credit charging, through detailed hardware analysis, traffic monitoring, and NFC operations. Learn about reverse engineering network traffic to launch attacks over undocumented hex traffic on uncommon ports. Discover techniques for extracting clear text balance from encrypted card data and witness live demonstrations of various attack approaches. Get access to the code and implementation details of an NFC MITM device designed to freeze card credit, complete with a live demonstration of the entire process.