|
Amount 000000000000 Amount Other 000000000000 Country Code 0000 TVR 0000000000 Currency Code 0000 Transaction Date 000000 Transaction Type 00 Unpredict Number 00000000 AIP 0000 ATC 0000 IAD 06010A03A00000 RC 00 MDKAC ____ ____ ____ ____ ____ ____ ____ ____ ARQC ARPC |
Quote:
|
can anyone shear x2 software? |
Quote:
|
Quote:
|
With OSMOCOM SIM TRACE you can intercept APDU data between POS and card during transaction to get all what you need. If data are SDA is mean that is static so dont change, a lot of card are SDA But think a second if a DDA card is used in SDA terminal only what happened???? DDA work as SDA because of pos reader........ Why it cannot work from a track 2 from magnetic track? because 3 numbers change between EMV and magnetic track.... peace |
Quote:
|
very simple bro and you gonna see is logic take a pos terminal in a dda know country = making most card dda mean having dda pos & ATM put your shimmer inside or your malware take a dda card and a sda card ok (electron are sda for sure) next we make a transaction of 1 dollar with 1 card and same with the other card we repeat it 2 time so what we see = 1 card data change and 1 card data dont change i mean data use for transaction like arqc, etc so you see after third transaction that the sda card dont change data because is static so we talk of a pos in a dda country but if we take the same 2 cards and do it in a pos SDA, the 2 card become static...because of the reader so we understand that with a shimmer in a big store or atm we can process a lot of card and see it fast, now one method to know it in advance would be to first found all bin by bank of electron card...... other thing to take in case is that you need to have the last 20 transactions in your dump emv other thing emv and magnetic track have 3 different number first you have to read a transaction apdu to understand what happened i put here a pdf very instructing about how to take the problem, you have to use sim card technologie and to change mean config the band rate. https://courses.cs.ut.ee/MTAT.07.022...report-f14.pdf read good that pdf and you gonna learn a lot depend on card you use and country you use is making changing rules, but is not 100 solution other thing to take care of is that you have the offline transaction https://txgate.io/images/smilies/smile.gif https://txgate.io/images/smilies/smile.gif https://txgate.io/images/smilies/smile.gif things are more possible offline, but amount are restricted by bank and stores, etc http://www.h-online.com/security/new...s-1209382.html sorry to look like mixed, maybe is make confuse but read the pdf first and you would see after you make first read during transaction, we can continu peace |
Quote:
But do u code any software for it ? |
thats why i say to first read data during a transaction so you would start to see what's happened and what data going on after we can talk to do this you not need to program nothing is all about config already existing tools open source, nothing else just reading the pdf = just reading it give you answer of it https://courses.cs.ut.ee/MTAT.07.022...report-f14.pdf "To achieve this a standard ID card reader was modified by adding a smart card contact interface which could be connected to the wires included in the Simtrace package (Figure 2). After Simtrace was customized and the software which sends captured data to the computer was installed and configured, the sniffing of real world transaction could begin." "he transaction analyzed in this report was captured using a terminal from a friendly merchant in Tartu and using a Visa Electron debit card issued by SEB Estonia. The amount of transaction was 0.99 EUR. The transaction was performed in September, 2014. The full output (all requests and responses) with annotation can be found from the appendix. The final setup for the capture can be seen in Figure 3. During the transaction, the computer connected to the Simtrace board produced a stream of APDU requests and responses" |
| All times are GMT. The time now is 03:26 PM. |
Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2025, vBulletin Solutions, Inc.