Entering like James Bond! Hacking dormakaba Exos 9300 Access Management Systems. ๐ช๐๐๐จ๐ปโ๐ป๐
Security researchers Werner Schober and Clemens Stockenreitner explain how to open physical doors to offices and closed facilities not with lockpicks, tools, or force, but by exploiting the dormakaba exos 9300 physical access control system.
The authors found, tested, and weaponized 20+ vulnerabilities in hardware and software, and now they explain how the research was done, what the focus was, and some technical details of the vulnerabilities they found.
The Access Manager 9200-K5 web server was based on a nearly 20-year-old hobby/demo project for Windows CE devices, reportedly with only three GitHub stars. Nice finding! :)
Quite impressive research work and a very interesting presentation. Enjoy, and in case you have this equipment, check the table at the end of the blog post. You may need to show it to your CISO ;)
More details:
Hands-Free Lockpicking: Opening Doors Like In The Movies
Presentation [Youtube]: https://lnkd.in/dSrWucrr
Publication [Blog]: https://sec-consult.com/blog/detail/hands-free-lockpicking-critical-vulnerabilities-in-dormakabas-physical-access-control-system/


