2 years ago
393.9K ๐Ÿ‘€

Copying Keys from Photos, Molds & More

#Deviant Ollam #Wild West Hackin' Fest #Information Security #Security #People & Blogs
From Wild West Hackin' Fest 2018 in Deadwood, SD..
Presenter: Deviant Ollam
Most folk are aware that it's not a good idea to hand a stranger your keys... some very security-conscious folk are even wary of letting potential attackers SEE your keys. The risks of casting, molding, teleduplication, and quick decoding are real and such caution is merited. However, how many of you have ever actually /performed/ an attack like this yourself? Have you ever witnessed it live and in person?
Follow Wild West Hackin' Fest on Twitter here: https://twitter.com/wwhackinfest
Website & Info: https://www.wildwesthackinfest.com/
While paying the bills as a security auditor and penetration testing consultant with The CORE Group, Deviant Ollam is also a member of the Board of Directors of the US division of TOOOL, The Open Organisation Of Lockpickers. His books Practical Lock Picking and Keys to the Kingdom are among Syngress Publishing's best-selling pen testing titles. In addition to being a lockpicker, Deviant is also a GSA certified safe and vault technician and inspector. At multiple annual security conferences Deviant runs the Lockpick Village workshop area, and he has conducted physical security training sessions for Black Hat, DeepSec, ToorCon, HackCon, ShakaCon, HackInTheBox, ekoparty, AusCERT, GovCERT, CONFidence, the FBI, the NSA, DARPA, the National Defense University, the United States Naval Academy at Annapolis, and the United States Military Academy at West Point.

#Physical Penetration Test #Red Team #decoding keys #Physical Pentesting

Wild West Hackin' Fest photo 1 Copying Keys from Photos, Molds... Wild West Hackin' Fest photo 2 Copying Keys from Photos, Molds... Wild West Hackin' Fest photo 3 Copying Keys from Photos, Molds... Wild West Hackin' Fest photo 4 Copying Keys from Photos, Molds...

My first experience watching someone decode a key by sight was when I locked my keys in my pickup truck about 20 years ago. The locksmith showed up, looked inside the truck, saw my keys on the seat. I heard him mumble off the numbers for the cuts and then he cut the key with a Pak-A-Punch and opened my door. I didn't mind paying him $75 for 5 mins of his time and a spare key because this guy obviously knew his trade.

by Ed Wamser 1 year ago

With the keyless entry on my car, my keychain never leaves my pocket. Never thought of that as a security feature.

by LazerLord10 1 year ago

That charity plug though. Instant respect.

by Cell Vendetta 2 years ago

his definition of a terrible photo is very different from mine XD

by Martin Verrisin 1 year ago

I used to be a courier in downtown Chicago many years ago. My first day there, they took my picture, and printed it on a laminate, with a dozen local courier companies logos on the front and back, with my name under it, and an entirely useless ID number, which I was told "is just there to fill the slot we dont use ID numbers". My photo was literally me, in a beanie, with my hood up, wearing my leather jacket, as this was mid winter when I started, so all winter, as I made deliveries, my photo looked like I had just taken it prior to walking into the building-still wearing the same outfit.
I preface this, because not a single person asked me that entire winter "how long have you been working for X company?" when they looked at it. They would just write down my name, usually at the security desk, or let me write it down, and where I was going for delivery. I was then allowed access to their maintenance elevators, as couriers do not use the public ones. I could get to any floor I wanted to in any building I was in, just from walking in with an envelope and a name. The ONLY time I ever had a security guard call up to confirm delivery, was at a condo high rise in the super fancy part of Chicago up north on the lake. Rich condos and apartments always called up, lower end ones never did. Corporate buildings also never called up, nor did the security at city hall, or the Thompson Center, a giant hub of municipal and other offices.
Most downtown buildings get hundreds of deliveries a day, and its so easy to blend in with them. I remember making deliveries to the same building my favorite radio station was in, and just going down to that floor and watching through the window while they were on air, until I had another call.
Its been 10 or so years, but I still have that ID. Im almost positive it would still work too.

by DannyWarlegs 1 year ago

You gotta admit: master locks don't get much safer if they don't have the keycodes on 'em. any lockpickinglawyer fan will know: these things are mainly decorations.

by Nepheos 1 year ago

โ€œat the lockpicking gunfightโ€ goddamit this sounds like my kind of event

by Eli Watson 2 years ago

Why are there so many cons on not aware of? I'm so out of the loop. Time to binge Wild West Hackin fest talks after work; thanks for bringing it to my attention Deviant/event runners

by CGoody 564 2 years ago

I had a locksmith rekey my entire house for added security from my ex. After seeing this video, I'm gonna go file off the numbers off my keys.

by Wolverina92 1 year ago

Goat was just hitting his reflection. Note the sunshine

by Eric Jones 1 year ago

when he asked which key was likely the house key I guessed the quickset not even because it was with the car keys, but because it is the only quickset I saw in the picture and that is pretty much THE house key

by Kalli Katzke 2 years ago

Nice to see him use some new material in his talks, cool stuff, thanks for the talk & upload

by suicidal.banana 2 years ago

LockPickingLawyer meanwhile: Key? What for? I don't play the piano, thank you!?

by Mikosch2 1 year ago

- I'm pretty sure the AirBnB owner saw the numbers on the key, didn't realise their value and used the nr. as a identifier for the key as (s)he knows which key fits that lock. Probably owns multiple properties and/or has multiple similar keys

by ThatCoder 1 year ago

i've always liked Deviant, but including the Trevor Project on his list of charities just hit home. He really is a stand-up guy, at least in what we can see.

by Lucas C 1 year ago

I fully intend to watch maybe a minute of these videos? Even with my crappy attention-span, I watch the whole damn thing. I find this stuff fascinating.

by Alexander Ryan-Jones 1 year ago

Great to see an all new and fresh Deviant talk. Thanks for that!

by TheCloudhopper 2 years ago

What's the twitter handle for the guy mentioned that retweets people showing their IDs? Trying to find a specific user named "S.O.B." on twitter is no easy task.

by Anders Haglund 2 years ago

Mp3 Download

Next videos


Load More Similar Videos