Slashdot Mirror

← Back to Stories (view on slashdot.org)

Unlocking The Power Of the Magstripe

Posted by timothy on from the slurp dept.

Acidus writes "While researching for an embedded systems project (a magstripe enabled Coke machine), I was shocked by the lack of magstripe information: Programs/code that would run on a modern OS were all but nonexistant, articles that were 6-10 years old, etc. Further research proved hard, because I had become google's authoritative source. So Stripe Snoop was born, and is now at 1.5 . Stripe Snoop is a suite of research tools that captures, modifies, validates, generates, analyzes, and shares magstripe data, with an ever-growing database of card formats. Decoding everything from driver's licenses to banking cards, its features can analyze non-standard cards, such as NYC's Metrocard."

5 of 224 comments (clear)

  1. How long before DMCA is used? by gilesjuk · · Score: 5, Insightful

    I can imagine some card company out there will try and put a stop to this, purely to save their own skins for putting out fairly weak systems.

    Could be a useful tool though, I'd love to save car parking charges (place where I park sometimes uses magnetic cards) :)

    1. Re:How long before DMCA is used? by Anonymous Coward · · Score: 3, Insightful

      "Could be a useful tool though, I'd love to save car parking charges (place where I park sometimes uses magnetic cards) :)"

      Smiley noted, but it's comments like this that make people think of "hackers" as criminals. Another example: P2P could be a useful tool though, I'd love to save the cost of a CD.

      RIAA and the MPAA may be a bunch of wankers, but let's not encourage them. Let the same logic apply to smart & mag card manufacturers.

    2. Re:How long before DMCA is used? by t_allardyce · · Score: 5, Insightful

      I think its happened before - people calling up their bank etc and saying "hey, your card is insecure it stores your pin in plaintext" and the bank says "you shouldnt have a card reader! what do you think you're doing"

      Its the standard bullshit you'll get from clueless people and experience says most cards in your wallet are probably badly designed, so yep, its probably not worth it to try and help these people by explaining whats wrong and what they can do because they are more likely to try and sue you.

      Bu I think technically you have a legal right to see whats on the strip - its your personal data and would fall under the data-protection act?

      --
      This comment does not represent the views or opinions of the user.
    3. Re:How long before DMCA is used? by Smidge204 · · Score: 4, Insightful

      The difference is, I'm not the one hacking the system. Therefore the person who has hacked the system should be a bit more responsible in putting out the information.

      In other words, not release it at all?

      Let's ban chemistry books, then, because the informatioon in there can be used to develop lethal toxins and explosives. Those publishers shold be a bit more responsible in putting out the information.

      Don't be an asshat. Information is information. He is not advokating it's use for illegal/immoral activities (quite the opposite, actually). If you choose to apply this knowledge to break the law, then you are responsible. Don't blame the publisher of the book if someone uses the information to build a bomb and don't blame the maintainer of the website if you use the information to commit fraud.
      =Smidge=

  2. Re:hotels by 4of12 · · Score: 4, Insightful

    PS, this hotel chain still relies on PC's running windows 95b for all the booking / reservation / billing stuff.

    An important and practical lesson that what is good enough to get the job done gets used and used and used. No matter that it smells bad to those of us on the bleeding edge of technology.

    --
    "Provided by the management for your protection."