mirror of
https://github.com/RfidResearchGroup/proxmark3.git
synced 2025-01-09 01:36:52 +08:00
text
This commit is contained in:
iceman1001
parent
9a0165f4ca
commit
f3bd1b3d74
1 changed files with 37 additions and 31 deletions
|
|
@ -191,9 +191,9 @@ Extract custom iCLASS key (loclass attack)
|
||||||
```
|
```
|
||||||
Options
|
Options
|
||||||
---
|
---
|
||||||
f <filename> : specify a filename to clone from
|
-f <filename> specify a filename to clone from
|
||||||
k <key> : Access Key as 16 hex symbols or 1 hex to select key from memory
|
-k <key> Access Key as 16 hex symbols or 1 hex to select key from memory
|
||||||
--elite : Elite computations applied to key
|
--elite Elite computations applied to key
|
||||||
|
|
||||||
pm3 --> hf iclass sim -t 2
|
pm3 --> hf iclass sim -t 2
|
||||||
pm3 --> hf iclass loclass -f iclass_mac_attack.bin
|
pm3 --> hf iclass loclass -f iclass_mac_attack.bin
|
||||||
|
|
@ -329,10 +329,10 @@ pm3 --> hf mfu info
|
||||||
|
|
||||||
Clone MIFARE Ultralight EV1 Sequence
|
Clone MIFARE Ultralight EV1 Sequence
|
||||||
```
|
```
|
||||||
pm3 --> hf mfu dump k FFFFFFFF
|
pm3 --> hf mfu dump -k FFFFFFFF
|
||||||
pm3 --> script run hf_mfu_dumptoemulator -i hf-mfu-XXXX-dump.bin -o hf-mfu-XXXX-dump.eml
|
pm3 --> script run hf_mfu_dumptoemulator -i hf-mfu-XXXX-dump.bin -o hf-mfu-XXXX-dump.eml
|
||||||
pm3 --> hf mfu eload u hf-mfu-XXXX-dump.eml
|
pm3 --> hf mfu eload -u -f hf-mfu-XXXX-dump.eml
|
||||||
pm3 --> hf mfu sim t 7 u hf-mfu-XXXX-dump.eml
|
pm3 --> hf mfu sim -t 7 -f hf-mfu-XXXX-dump.eml
|
||||||
```
|
```
|
||||||
|
|
||||||
Bruteforce MIFARE Classic card numbers from 11223344 to 11223346
|
Bruteforce MIFARE Classic card numbers from 11223344 to 11223346
|
||||||
|
|
@ -359,11 +359,11 @@ Options
|
||||||
---
|
---
|
||||||
-w <format> --oem <OEM> --fc <FC> --cn <CN> --issue <issuelevel>
|
-w <format> --oem <OEM> --fc <FC> --cn <CN> --issue <issuelevel>
|
||||||
|
|
||||||
-w : wiegand format to use
|
-w wiegand format to use
|
||||||
--oem : OEM number / site code
|
--oem OEM number / site code
|
||||||
--fc : facility code
|
--fc facility code
|
||||||
--cn : card number
|
--cn card number
|
||||||
--issue : issue level
|
--issue issue level
|
||||||
|
|
||||||
pm3 --> wiegand encode -w H10301 --oem 0 --fc 56 --cn 150
|
pm3 --> wiegand encode -w H10301 --oem 0 --fc 56 --cn 150
|
||||||
```
|
```
|
||||||
|
|
@ -372,8 +372,8 @@ Convert Site & Facility code from Wiegand raw hex to numbers
|
||||||
```
|
```
|
||||||
Options
|
Options
|
||||||
---
|
---
|
||||||
-p : ignore parity errors
|
-p ignore parity errors
|
||||||
--raw : raw hex to be decoded
|
--raw raw hex to be decoded
|
||||||
|
|
||||||
pm3 --> wiegand decode --raw 2006f623ae
|
pm3 --> wiegand decode --raw 2006f623ae
|
||||||
```
|
```
|
||||||
|
|
@ -408,15 +408,15 @@ Brute force HID reader
|
||||||
```
|
```
|
||||||
Options
|
Options
|
||||||
---
|
---
|
||||||
-v, --verbose : verbose logging, show all tries
|
-v, --verbose verbose logging, show all tries
|
||||||
-w, --wiegand format : see `wiegand list` for available formats
|
-w, --wiegand format see `wiegand list` for available formats
|
||||||
-f, --fn dec : facility code
|
-f, --fn dec facility code
|
||||||
-c, --cn dec : card number to start with
|
-c, --cn dec card number to start with
|
||||||
-i dec : issue level
|
-i dec issue level
|
||||||
-o, --oem dec : OEM code
|
-o, --oem dec OEM code
|
||||||
-d, --delay dec : delay betweens attempts in ms. Default 1000ms
|
-d, --delay dec delay betweens attempts in ms. Default 1000ms
|
||||||
--up : direction to increment card number. (default is both directions)
|
--up direction to increment card number. (default is both directions)
|
||||||
--down : direction to decrement card number. (default is both directions)
|
--down direction to decrement card number. (default is both directions)
|
||||||
|
|
||||||
pm3 --> lf hid brute -w H10301 -f 224
|
pm3 --> lf hid brute -w H10301 -f 224
|
||||||
pm3 --> lf hid brute -v -w H10301 -f 21 -c 200 -d 2000
|
pm3 --> lf hid brute -v -w H10301 -f 21 -c 200 -d 2000
|
||||||
|
|
@ -439,18 +439,24 @@ Simulate Indala card
|
||||||
```
|
```
|
||||||
Options
|
Options
|
||||||
---
|
---
|
||||||
<uid> : 64/224 UID
|
-r, --raw <hex> raw bytes
|
||||||
|
--heden <decimal> Cardnumber for Heden 2L format
|
||||||
|
|
||||||
pm3 --> lf indala sim a0000000c2c436c1
|
pm3 --> lf indala sim -r a0000000c2c436c1
|
||||||
```
|
```
|
||||||
|
|
||||||
Clone to T55x7 card
|
Clone to T55x7 card
|
||||||
```
|
```
|
||||||
Options
|
Options
|
||||||
---
|
---
|
||||||
<uid> : 64/224 UID
|
-r, --raw <hex> raw bytes
|
||||||
|
--heden <decimal> Cardnumber for Heden 2L format
|
||||||
|
--fc <decimal> Facility Code (26 bit H10301 format)
|
||||||
|
--cn <decimal> Cardnumber (26 bit H10301 format)
|
||||||
|
--q5 specify writing to Q5/T5555 tag
|
||||||
|
--em specify writing to EM4305/4469 tag
|
||||||
|
|
||||||
pm3 --> lf indala clone a0000000c2c436c1
|
pm3 --> lf indala clone -r a0000000c2c436c1
|
||||||
```
|
```
|
||||||
|
|
||||||
## Hitag
|
## Hitag
|
||||||
|
|
@ -628,11 +634,11 @@ Load default keys into flash memory (RDV4 only)
|
||||||
```
|
```
|
||||||
Options
|
Options
|
||||||
---
|
---
|
||||||
-o <offset> : offset in memory
|
-o <offset> offset in memory
|
||||||
-f <filename> : file name
|
-f <filename> file name
|
||||||
--mfc : upload 6 bytes keys (mifare key dictionary)
|
--mfc upload 6 bytes keys (mifare key dictionary)
|
||||||
--iclass : upload 8 bytes keys (iClass key dictionary)
|
--iclass upload 8 bytes keys (iClass key dictionary)
|
||||||
--t55xx : upload 4 bytes keys (pwd dictionary)
|
--t55xx upload 4 bytes keys (pwd dictionary)
|
||||||
|
|
||||||
pm3 --> mem load -f mfc_default_keys --mfc
|
pm3 --> mem load -f mfc_default_keys --mfc
|
||||||
pm3 --> mem load -f t55xx_default_pwds --t5xx
|
pm3 --> mem load -f t55xx_default_pwds --t5xx
|
||||||
|
|
|
||||||
Loading…
Reference in a new issue