字幕列表 影片播放 列印英文字幕 This is the lock picking lawyer, and today we're going to discuss one of the most devastating attacks out there for stand alone access control systems. I'm demonstrating this using a thing brand fingerprint door lock. But this works on the majority of these standalone systems. Now, what do I mean by stand alone? That means the unit on the outside of the door will collect the credential, verify it, then signal the lock to open its that last step in the process that we're going to exploit. Now I've shown how this can be done by disassembling the reader in videos 10 40 10 45. I'll link those videos below, but that can be slow. And there might be a tamper detection system in your way. I'm going to show you a much faster method. What you need to understand is that almost all of these systems contain an electrical component called a relay. That relay controls the flow of power to the lock. We look at this keypad, we can see the relay is this orange box really is nothing but a small electro magnetically controlled switch. And it's actuated when a small internal electro magnet is powered up, so if that relate can be thrown with an internal magnet, it can also be thrown with a sufficiently powerful external magnet. So let's try that right now. Currently locked. I'm going to take this magnet. Place it right on the side and it's unlocked. Locked, unlock, locked, unlocked folks. This is a shockingly common vulnerability on the stand alone systems, and it's just one more reason why they need to be avoided. In any case, that's all I have for you today. If you do have any questions or comments about this, please put them below. If you like this video and would like to see more like it, please subscribe. And, as always, have a nice day. Thank you.