List of RFID/NFC Security & Privacy talks

A curated list of awesome Security & Privacy talks

Shamelessly inspired by PalSec's awesome-sec-talks

Maintainers

doegox
herrmann1001
RFID Hacking by Iceman Discord members

2005

• RECON 2005 - Practical Attacks on a Prox Card - Jonathan Westhues

2007

• LayerOne 2007 - RFIDiots - Adam Laurie
• DEF CON 15 - Hacking your Access Control Reader - Zac Franken

2009

• DEF CON 17 - RFID Mythbusting - Chris Paget
• 26C3 - Legic Prime: Obscurity in Depth - Henryk Plötz/Karsten Nohl

2010

• DEF CON 18 - Extreme-Range RFID Tracking - Chris Paget

2012

• DEFCON 20 - NFC Hacking: The Easy Way - Eddie Lee
• DEFCON 20 - Don't Stand So Close To Me: An Analysis of the NFC Attack Surface - Charlie Miller
• HES 2012 - Hacking the NFC credit cards for fun and debit - Renaud Lifchitz

2013

• DEF CON 21 - RFID Hacking Live Free or RFID Hard - Francis Brown
• BlackHat US 2013 - RFID Hacking: Live Free or RFID Hard - Francis Brown

2014

• OSHUG 31 - RFIDler: A Software Defined RFID Reader/Writer/Emulator - Adam Laurie and Zac Franken
• Ekoparty 2014 - Hacking RFID Billing Schemes For Fun and Free Rides - Márcio Almeida 🇪🇸
• RSA 2014 - Fun with Proxmark3 - Daniel Ayoub

2015

• DEF CON 23 - How to Train Your RFID Hacking Tools - Craig Young
• DEF CON 23 - RFIDiggity - Pentester Guide to Hacking HF/NFC and UHF RFID - Fran Brown & Shubham Shah
• BlackHat US 2015 - Crash & Pay: Owning and Cloning Payment Devices - Peter Fillmore
• BlackHat US 2015 - Breaking Access Controls With BLEKey - Eric Evenchick & Mark Baseggio

2016

• DEF CON 24 - Samsung Pay: Tokenized Numbers, Flaws and Issues - Salvador Mendoza

2017

• DEF CON 25 - Man in the NFC - Haoqi Shan, Jian Yuan
• DEF CON 25 - Real time RFID Cloning in the Field - Dennis Maldonado
• 44CON - Cracking HiTag2 Crypto - Kevin Sheldrake

2018

• DEF CON 26 - NFC Payments The Art of Relay & Replay - Salvador Mendoza
• HITBGSEC 2018 - NFC Payments: The Art Of Relay And Replay Attacks - Salvador Mendoza
• TR18 - NFC Payments: The Art Of Relay And Replay Attacks - Salvador Mendoza & Leigh-Anne Galloway
• BlackAlps 2018 - Unlocking Secrets Of The Proxmark3 RDV4.0 - Christian Herrmann And Kevin Barker
• LCA 2018 - Tap On Reverse Engineering - Michael Farrell
• CONFidence 2018 - A 2018 practical guide to hacking RFID/NFC - Sławomir Jasek
• HOPE 2018 - Owning NFC Toys I Own: A Case Study - Vitorio Miliano
• HOPE 2018 - Breath of the RF Field: Hacking Amiibo with Software-Defined Radio - James Chambers
• INFILTRATE 2018 - Ghost in the locks - Tomi Tuominen, Timo Hirvonen
• OzSecCon 2018 - Project Walrus, an RFID and Contactless Card Cloning App - Daniel Underhay, Matthew Daley
• GPN18 CCC 2018 - RFID/NFC-Grundlagen - A Pentesters Perspective - Gerhard Klostermeier

2019

• NULLCON Goa 2019 - Unlocking secrets of the Proxmark3 RDV4.0 - Kevin Barker & Christian Herrmann
• DEF CON 27 - Basics of Hacking Physical Access Control Systems - Babak Javadi
• DEF CON 27 - WCTF DEFCON 27 Demo Iceman
• PTS2019 - Unlocking secrets of the Proxmark3 RDV4 - Christian Herrmann
• PTS2019 - Reversing a Firmware uploader & others NFC stories - Aurélien Pocheville
• HITBCyberWeek - Building A GEN2 UHF RFID Reader With SDR - Adam Laurie
• BSides Belfast 2019 - New Attacks On The MIFARE DESFire EV1 Smartcard Used In Public Transportation - Rory Flynn
• Kawaiicon 2019 - Access Control on Sesame Street - Gallagher/Cardax access control system research - Matthew Daley
• Ekoparty 2019 - NFC analysis on transport systems in Argentina - Dan Borgogno 🇪🇸
• Hacker Hotel 2019 - Nfc hacking - Thomas Roos

2020

• DEF CON 28 - Ghosting the PACS-man: New Tools and Techniques - Omikron and Iceman
• DEF CON 28 - Beyond Root - Christopher Wade
• PACSEC 2020 - RFID Security Panel - Adam Laurie , Christian Herrmann, Babak Javadi, Samy Kamkar, Phillippe Teuwen, Chrissy Morgan
• EKO14 - NFC Payments: The Art of Relay and Replay Attacks - Salvador Mendoza 🇪🇸
• PTS2020 - Pique curiosity, not diabetic fingers - Axelle Apvrille, Travis Goodspeed
• WOOT'20 - NFCGate: Opening the Door for NFC Security Research with a Smartphone-Based Toolkit - Klee, Roussos et al.

2021

• DEF CON 29 - The PACS man Comes For Us All - Babak Javadi, Nick Draffen, Eric Bettse, Anze Jensterle
• DEF CON 29 - PINATA PIN Automatic Try Attack - Salvador Mendoza + Live
• SSTIC 2019 - EEPROM: It Will All End in Tears — Christian Herrmann, Philippe Teuwen 🇫🇷/🇬🇧
• DEF CON 29 - RF Village talk How low can you Go Vechicle Low Frequency Signals With Portapak - Woody
• Hardwear.io - EEPROM: It Will All End in Tears — Christian Herrmann, Philippe Teuwen

2022

• DEF CON 30 - RF Village talk Pwning  RFID Physical Access 6FT and Beyond - Langston Clement & Daniel Goga
• DEF CON 30 - Digital Skeleton Keys - Miana E Windall, Micsen
• DEF CON 30 - RF Village talk Rip and tear - Iceman & Kevin Barker

2023

• HardwearIO - "Un-fare Advantage” - Hacking The MBTA CharlieCard From 2008 To Present - Bobby Rauch
• DEF CON 31 - Infinite Money Glitch - Hacking Transit Cards - Bertocchi, Campbell, Gibson, Harris
• DEF CON 31 - Unlocking Doors from Half a Continent Away - Trevor Stevado, Sam Haskins
• DEF CON 31 - Contactless Overflow Code Execution in Payment Terminals & ATMs - Josep Rodriguez
• DEF CON 31 - Badge of Shame Breaking into Secure Facilities with OSDP - Dan Petro, David Vargas
• DEF CON 31 - War Stories Designing RFID Implants Flipping the Bird Opens Doors - Miana Ella Windall
• BRUCON 0X0F - OSDP auditing for red teamers and facility managers - Knud Hojgaard
• SAINTCON - RFID Hacking - Iceman

Youtube Channels

• Quentyn Taylor
• Iceman
• Dangerous Things
• DeviantOllam
• TheNotSoCivilEngr
• Penthertz
• MTools Tec

Contributing

For any missing conference, create a pull request or an issue and we will add it here.