By: Rebecah Miller

Check out the Flipper Zero. The perfect holiday gift! This small, portable device is sure to warm the heart of any hacker, security enthusiast, pentester, or red teamer on your list! This open-source tool has a large community following, with new uses being discovered every day. The Flipper Zero community offers tutorials, tips, and new applications for enthusiasts of any skill level. There is also an app store that is available on Android or Apple App Stores that can extend the capabilities of the Flipper Zero by installing apps developed by community members.

What can it do?

It has a built-in infrared transceiver which allows you to programmatically turn off any IR based device. Watch out if you are in the middle of a good Netflix binge, the flipper can easily turn your TV off from across the room! As infrared is often used for hardware control, a pentester would be enamored by the remote-control functionality while exploring IoT security!

The Flipper Zero features a sub-gigahertz wireless antenna that enables you to capture and transmit wireless signals for controlling various devices and access control systems. These systems include garage door openers, retractable bollards, and even remote keyless entry systems. This means it can record the signal from your car key fob- if you lock your keys in the car, you can skip pop a lock and let Flipper Zero save the day. From a Red Team perspective, it would allow for easier access on physical tests!

Badge cloning is a breeze with the Flipper Zero! It can read, store, emulate RFID access cards. Whether you lose your hotel room key on vacation or need to clone a badge for a physical pentest, Flipper Zero has you covered. And if you’re interested in cybersecurity, the Flipper Zero is an incredible educational tool for learning different attack techniques and understanding how security vulnerabilities can be exploited.

Know an ethical hacker?

This tool can be utilized to identify vulnerabilities in systems and applications for security improvements (with owner permission, of course). Researchers can use this device to conduct security research, identify weaknesses, and develop countermeasures for improved security.

Performing a wireless pentest?

The Flipper Zero has modifiable firmware for added functionality. It has expandable GPIO connectors to add daughter boards, which can add such capabilities as WiFi and Bluetooth. This is invaluable to the pentest community.

Have a social engineer on your list?

The Flipper Zero can emulate a badUSB device, which means it looks like a keyboard when you plug in, but can be used to open backdoors, initiate reverse shells, or anything else achievable with physical access.

Need a 2FA device?

Flipper Zero can do that, too! Retailing at $169, the Flipper Zero comes in classic orange or old school transparent. Weighing in at a mere 3.6 ounces, it is only 1.5 x 3.9 inches in size, which makes it easily pocketable. I will note, it does require a micro-SD card for storage.

For more info, please visit flipperzero.one

*Always follow the boundaries of applicable laws and regulations. Unauthorized penetration testing or hacking attempts can lead to legal consequences. Always ensure you have the proper permissions and are following ethical guidelines when using devices such as Flipper Zero.*