Charlie Cards Does anybody know how to hack a Charlie Card for the MBTA. Ive tried searching around with no luck. I ran it through a MSR (magnetic strip reader) at work, and no data was extracted.
Any help is appreciated!
enigma-- 07-19-2008
another boston guy?
funny, I was just thinking of how to do this yesterday myself. IMO you would probably have better luck hacking the RFID ones. I'll grab a pic of mine to show you which ones they are (mine is a student one though, don't know what you have)
My general idea would be to get an rfid reader/writer (~$100 off of mouser the DLP-RFID1) read the card when empty and then again when it ahs money on it. compare the two, and then go from there. You could probaly get by by having enough fares on it (say... 4) keeping the hex on your PC and just upload to the card whenever you want. I can't afford the reader/writer myself, but would be glad to assist you if you want. I can also get you a student card at my school and mail you one so that we have the same card.
Damn straight I want to hack em!
I have a charlie card, but a ticket would probably be easier, right? The ticket has the magnetic Strip and the charlie card has the rfid?
Im gonna go get a charlie ticket some time, and see if That will work. Ill use the MSR at my work.
enigma-- 07-23-2008
Damn straight I want to hack em!
I have a charlie card, but a ticket would probably be easier, right? The ticket has the magnetic Strip and the charlie card has the rfid?
Im gonna go get a charlie ticket some time, and see if That will work. Ill use the MSR at my work.
yeah. Also, if it isnt too much, try to get two of them (one with money, one w/o) so that we can see where they change the variable or whatnot.
edit: you ran the RFID one through a magnetic card reader??? :lol:
shutout5591- 07-25-2008
yea, lol, rfid != ms, i thought it was an internal ms, for whats it worth :(
i forgot to get a charlie ticket. Crap. Ill see if my local stop on teh commuter rail might have em, for whats it worth.
texaspyro- 07-26-2008
My general idea would be to get an rfid reader/writer (~$100 off of mouser the DLP-RFID1) read the card when empty and then again when it ahs money on it. compare the two, and then go from there.
There is no way that just cloning a card will work. Besides the wazoo encryption keeping things comfy for Big Bro, this sort of system has things like "playback" protection, rolling codes, central data base keeping track of cards, values, you, what you last ate, who you last saw, what you last thought, the angle of your dangle, etc.
Try and replay/fake a card these days and red flashy lights go off down in Central Services and you get your birthday taken away...
Amyn- 07-26-2008
Jeez guys, we don't want to be doing anything illegal! :wink:
enigma-- 07-26-2008
My general idea would be to get an rfid reader/writer (~$100 off of mouser the DLP-RFID1) read the card when empty and then again when it ahs money on it. compare the two, and then go from there.
There is no way that just cloning a card will work. Besides the wazoo encryption keeping things comfy for Big Bro, this sort of system has things like "playback" protection, rolling codes, central data base keeping track of cards, values, you, what you last ate, who you last saw, what you last thought, the angle of your dangle, etc.
Try and replay/fake a card these days and red flashy lights go off down in Central Services and you get your birthday taken away...
true... but on the same card I think it would not cause any problems as they broadcast the same ID. RFID cards broadcast a unique ID, so you can not clone to a different card, but to the same card, you are not breaking encryption or using a different broadcast.
CameraUser- 07-28-2008
Heh, we're still using magnetic stripe cards here in the SF Bay Area.
ry.david- 07-30-2008
My general idea would be to get an rfid reader/writer (~$100 off of mouser the DLP-RFID1) read the card when empty and then again when it ahs money on it. compare the two, and then go from there.
There is no way that just cloning a card will work. Besides the wazoo encryption keeping things comfy for Big Bro, this sort of system has things like "playback" protection, rolling codes, central data base keeping track of cards, values, you, what you last ate, who you last saw, what you last thought, the angle of your dangle, etc.
Try and replay/fake a card these days and red flashy lights go off down in Central Services and you get your birthday taken away...
true... but on the same card I think it would not cause any problems as they broadcast the same ID. RFID cards broadcast a unique ID, so you can not clone to a different card, but to the same card, you are not breaking encryption or using a different broadcast.
I am with texaspyro here, I would be suprised if the cards just didn't have a unique ID, and then all of the transactions be recorded on a database. Especially with being a city thing, they most likely have the free, err taxpayer, money to put together the infrastructure for that.
enigma-- 07-30-2008
I tend to agree with you there, but there is always the hopes that they cut corners trying to pad the corporate fat-cats' pockets.
