Summary

Tesla Model 3 Hack with my transponder Implant.

PREPARE THYSELF: THERE IS BLOOD IN THIS VIDEO

Level 0: Prerequisites

Tesla Model 3

Valvet Key

Level 1. Hardware - Transponder NFC/RFID Implant

Body Implant Location: Left Hand

X-Series transponder implant in bioglass encased device that I had injected through a hollow needle

xNT NFC was purchased from Dangerous Things

Price: $99 USD

Specs: xNT tag – 13.56MHz ISO14443A & NFC Type 2 NTAG216 chip

2x12mm cylindrical sterile biocompatible implant package
ISO14443A – compatible with all ISO14443A RFID systems
Fully NFC Type 2 compliant – compatible with all NFC devices

Level 2. Hardware - Tesla Model 3

2018 Tesla Model 3

Level 3. Tesla Model 3 Valet Key Data

I was able to read data on my Tesla Model 3 Valet Key

Tag Type: ISO 14443-4 NXP IBM JCOP

Technology: ISODep, NfcA

Serial Number: ***NOT Telling***

ATQA: 0x0048

SAK: 0x20

Global Platform Information:

Java Card version 2.2
Global Platform version 2.1.1
GP Secure Channel Protocol: 03 option 10
Max. length APDU data field: 255 bytes
Global Platform card manager FCI:0x6F108A000000151000000A5049F6501ff

Technologies supported

ISO/IEC 7816-4 compatible
ISO/IEC 14443-4 (Type A) compatible
ISO/IEC 14443-3 (Type A) compatible
ISO/IEC 14443-2 (Type A) compatible

Detailed Protocol Information

ID: 04:25:2E:6A:F5:51:80
ATQA: 0x4800
SAK: 0x20
ATS: 0x0578779102
Max. accepted frame size: 256 bytes (FSCI: 8)
Supported received rates: 106, 212, 424, 848kbit/s(DR: 1,2,4,8)

Additional valet keys are $5 + tax so around $8.50

**Amie’s rambling side notes: what I find interesting is that there is no external identifier on the back or front of the valet key cards. So if you were to park in valet with 50 other Tesla Model 3, how would tell be able to tell the difference in your key card and someone else’s. Similar to hotel room keys where they just match it to the hotel room.

I’ve ordered 2 more keys and I’m going to have a Tesla service technician come out and show me how he pairs the keys to my car.

Made appointment(Monday November 26th) with Tesla to have the service technician come to my house to connect a few valet cards to see the process. I know at the Tesla service center they take your car in the back and connect the valet keycards in the back shop area. My hopes are that they having the service come to my house that I will be able to see the process of connecting the valet key to the car.

Level 4. Tesla Open Source

Tesla Model 3 Open Source

Level 5. Tesla Valet Key

Level 6. Bug Crowd

I'm part of Telsa bug crowd bounty, and I've been looking through, to see what information I can get from the car, to see if writing data to my current rfid hand implant is a possibility.

While we use Bugcrowd as a platform for rewarding all issues, please report vehicle and product related issues directly to vulnerability@teslamotors.com, using our GPG key to encrypt reports containing sensitive information.

Targets

In scope

A hardware product that you own or are authorized to test against (Vehicle/PowerWall/etc.)
Hardware

*.tesla.com
Website

*.tesla.cn
Website

*.teslamotors.com
Website

*.tesla.services
Website

Any host verified to be owned by Tesla Motors Inc. (domains/IP space/etc.)
Website

Official Tesla Android apps...

Tesla Model 3 Bio Chip install
Amie DD • 08/10/2019 at 17:19 • 0 comments

Prepare thyself: There is blood in this video!
Tesla chip implant was a success!!
Amie DD • 08/02/2019 at 20:31 • 0 comments

I didn't even cry! My year long Tesla Model 3 bio implant hack project wouldn’t be possible without Amal at vivokey encasing my chip implant in biopolymer and Pineapple to install it safely. My cyber punk upgrades are complete!

This is Pineapple(that’s his name)! He is the one that installed my Tesla Model 3 implant! He was amazing, detailed, explained all the steps to me. His studio was clean and sanitized. I was so nervous leading up to this, and he made the process so amazing!! And we geeked out about 3DPrinting
Thanks to my video wizard Howard for helping capture this adventure!

Videos will be up next week!

Also I will be at DefCon next week, if you're around and want to chat about this adventure ping me on twitter! @amiedoubled

#amiedd #dc27 #teslahack
Execute Order #TeslaFlex
Amie DD • 01/06/2019 at 03:37 • 0 comments

Thanks to Amal at VivoKeymy Tesla Model 3 Valet chip is encased in biopolymer and ready to be implanted in my arm this month!!

#TeslaFlex
Valet Chip ready to be Encapsulated!!
Amie DD • 12/02/2018 at 18:09 • 0 comments

Thanks to Amal from VivoKey and Dangerous Things for helping make sure I get my chip encapsulate safely for my implant.

The size of the chip and antenna after it gets encapsulated will be about 40mm x 10mm. It will be encapsulated in a biopolymer.
Tesla Software v9 - Program your own valet cards
Amie DD • 12/02/2018 at 16:40 • 0 comments

My Model 3 just got the new software update v9(including an easter egg game: Atari)!

I noticed that the car said that I would now be able to program my own valet keycards myself. Which could be good news since I'm working on using the chip implant from the valet card.

Strange though, when I looked through Tesla's Software Version 9.0 on their webpage, there is no mention of this new feature. So I figured I would try it out and see if it actually worked.

My little brother wanted to help me out. My dad told him, "You can't get one." My brother's reply was, "A Tesla, or a chip implant?" hahahahaha
Meeting my Maker
Amie DD • 11/12/2018 at 19:47 • 0 comments

I had a Skype call with Amal from Dangerous Things and VivoKey. He was the one that made the implant I currently have (so that pretty much makes him my cyborg father right?)

Amal was the first person I've shared all my Tesla hack documentation with(which was a bit never racking). Thanks for the encouragement and advice, this is going to freaking work!! I'm so excited!!
Ripping apart the Valet Key
Amie DD • 11/12/2018 at 19:43 • 0 comments

You can tell by looking at the valet key where the chip is located. I put one my Model 3 valet card(that had already been synced with my car from the dealership), and dropped it in a glass container with acetone. It took about 1.5 hours to completely dissolve the plastic. I also dropped my phone in the acetone jar...damn it Hahahaha
Info from the Valet Key
Amie DD • 11/12/2018 at 03:26 • 0 comments

I was curious what information is public available just from scanning the Tesla valet key
The Java Card Open Platform is interesting, because it is a IBM smart card developed by a team and Germany and I've used the java card development kit for mobile development access control and some stuff with LEGO Dimensions.
Tesla Hack Diaries: Prequel
Amie DD • 11/12/2018 at 02:49 • 0 comments
Tesla Hack Diaries: Prequel

I've been working on my body implant Tesla hack for about 2 months, and I have had reservations about sharing my work, after discussing with a few friends and strangers about my project at #supercon last weekend I decided I would finally share my project progress. Thanks to Amal, Andy, Drew and Will for encouraging me that "all work sucks in the beginning" and I should just share my ramblings.

In-Game Hint about me since I'm new around here:

I'm that adult that still plays with LEGO, and I ramble a lot of Twitter.

I always take photos of my projects with LEGO(you know, for size reference: because I couldn't find a banana).
```
Here goes nothing...
```
-Rambling Unicorn