Specter Turns Your Flipper Zero Into a Pocket Skimmer Detector

In Cybersecurity News - Original News Source is cybersecuritynews.com by Blog Writer

Spread the love

A new Flipper Zero app called Specter aims to turn the handheld device into a passive counter-surveillance tool for finding active 13.56 MHz NFC readers, including potentially suspicious readers hidden near payment terminals, access-control panels, desks, or other equipment.

Unlike NFC tools designed to read or emulate cards, Specter is built to listen. The application does not transmit a carrier, query nearby devices, decode card traffic, or collect data from readers. Instead, it alerts users when it detects the radio-frequency field emitted by a powered NFC reader.

NFC readers continually emit a 13.56 MHz field while waiting for a contactless card, key fob, phone, transit pass, or badge to enter range. Specter uses that behavior as a detection signal.

Specter With Flipper Zero

Flipper Zero already includes an ST25R3916 NFC chip and a 13.56 MHz high-frequency antenna, hardware normally used for reading, saving, and emulating compatible NFC cards. The ST25R3916 family also includes an external-field detector designed to identify the presence of an external RF field.

Specter reportedly places this hardware into a detect-only state, repeatedly sampling whether a field is present. It then converts those samples into a live FIELD % reading, giving the user a warmer-or-colder indication rather than an exact signal-strength or distance measurement.

The app’s main Sweep screen uses an analog-inspired EMF gauge, live waveform, peak-hold marker, and a red “hot zone” to visualize nearby NFC activity. As the detected field becomes more consistent or stronger, the meter needle rises and the proximity status changes from FAINT to NEAR, CLOSE, or STRONG.

When Specter locks onto an active reader, it can display an alarm-style border and activate optional feedback through clicks, vibration, and the Flipper’s LED. The click rate increases as the user approaches the field source, allowing a physical surface to be swept without constantly watching the display.

That could make the utility useful for authorized inspections of point-of-sale environments, office hardware, access-control installations, parcels, or personal belongings.

A security team could first test the app against a known legitimate contactless terminal or door reader, then compare unexpected detections elsewhere.

Specter detects the presence of an active HF NFC carrier; it does not identify the reader, determine whether it is malicious, capture transactions, or reveal what data the reader is processing. A positive result should therefore be treated as an investigation lead, not proof of skimming.

The tool is limited to the 13.56 MHz NFC band. It cannot detect older 125 kHz low-frequency systems, such as many HID Prox or EM4100 deployments, because the detection method relies on the Flipper’s HF NFC hardware.

Flipper Zero’s documentation distinguishes its 13.56 MHz NFC antenna from the nearby 125 kHz low-frequency antenna.

Detection also depends on the reader being powered and actively polling. A shielded, dormant, intermittent, or trigger-based device may not produce a detectable field, so a clean sweep does not guarantee that an area is free of tampering.

Specter is distributed as a single .fap application, with a prebuilt release intended for installation through qFlipper under SD Card/apps/NFC/. Users can alternatively compile it with ufbt.

For defensive use, launch Specter, open Sweep, hold the Flipper flat against the target area, and move slowly while watching the meter or listening for the accelerating clicks.

The project’s listen-only design makes it suited to authorized assessments, but users should still comply with local law and obtain permission before examining equipment they do not own.

 Strengthen Your SOC by Accelerating Threat Detection & Rapid Investigations. -> Integrate ANY.RUN With Your SOC Now.