iceman1001
bf32dd923f
ADD: @marshmello42 's fixes for low frequency demodulation lengths greater the 512bits.
2015-12-09 14:58:16 +01:00
iceman1001
0a886a1d1b
ADD: a TEA crypto algorithm implemention.
2015-12-09 14:57:16 +01:00
iceman1001
f74d0b89a2
added some keys
2015-12-05 22:18:42 +01:00
iceman1001
5247c0c193
ADD: hooked up the new pwdgen functions inside the "hf mfu info", to be tested if the authlimit is not set.
2015-12-02 23:06:03 +01:00
iceman1001
9984b1735a
CHG: updated helptext for lf t55xx bruteforce
...
ADD: a ROL function in util.c
ADD: two pwdgen functions in cmdhfmfu.c, call them with a 7byte UID and get a 4byte number back. Will see if it can be connected with the "hf mfu info" command, make data extraction easier later on.
ADD: added some more easy pwd in the dictionary file default_pwd.dic
2015-12-02 22:46:11 +01:00
iceman1001
8ce3e4b4e9
add: missing two hard_nested files..
2015-12-02 16:48:25 +01:00
iceman1001
d08faa4e02
ADD: Added the possibility to exit the bruteforce mode (either rangesearch or file) with the keyboard.
...
FIX: if not found, the range search printed wrong number.
2015-12-01 22:47:03 +01:00
iceman1001
3f26796673
FIX: the lfsampling.c for t55xx had a tendecy to enter a neverending loop. Moved exit branch into the while statement, which seems to solve it.
...
FIX: Strange int -> uint8_t casting behavior (0x05 gets the 25bit set and becomes 0x10005 instead) in fskdemod, removed int and sscanf.
2015-12-01 22:38:37 +01:00
iceman1001
fff6d2a3ba
FIX: added a break if the device starts acting strange when aquirering data from tag.
2015-12-01 20:44:12 +01:00
iceman1001
060fdaf998
FIXES: the custom keys testloop now increases the read pwd :)
2015-12-01 16:44:53 +01:00
iceman1001
21865cda09
ADD: added the possibility to load a default pwd file to be used with the "lf t55xx bruteforce" command.
...
new option:
lf t55xx brutefore i default_pwd.dic - will load default pwds from file and test against tag.
2015-12-01 13:07:01 +01:00
iceman1001
1063a0a872
textual fix.
2015-11-27 17:00:48 +01:00
iceman1001
91079e36b5
FIX: the t55xx bruteforce method got some fixes, in commandname, uint32_t instead of int, and output texts.
2015-11-27 16:59:35 +01:00
iceman1001
c188b1b9b2
ADD: @go_tus simple bruteforce for t55xx, refactored a bit.
...
ADD: @pwpiwi 's implementation of Hardnested
2015-11-27 16:24:00 +01:00
iceman1001
1a570b0a6a
CHG: Missing some headers
...
FIX: some message/warning in pm3_binlib.c @gm4tr1x
2015-11-23 10:49:16 +01:00
iceman1001
e9a92fe237
FIX: the read counter in "hf 14a sim" (for ntag/ev) should work better now. Instead of always returning zero, it increases aswell.
...
--Started to add the TI demod into the 'LF SEARCH"
2015-11-22 21:48:15 +01:00
iceman1001
5636ee8ce6
ADD: 'hf mfu info' now prints following settings:
...
NFC_COUNTER_EN - If set, every read,fast_read increases a counter.
NFC_COUNTER_PROT_PWD - If set, reading nfc_counter needs a successfull pwd authentication before
These new settings is only valid for NTAG213/215/216,
2015-11-22 18:13:26 +01:00
iceman1001
a126332a7b
ADD: @marshmellow's fixes to awid, viking and T55x7
...
ADD: 'lf t55xx detect' now can be called with a password.
ADD: trying to add the read counter and increase counter commands for ntag sim.
2015-11-22 17:33:41 +01:00
iceman1001
52f2df615b
ADD: lf indalademod output, The binary string is now printed with linebreaks every 16bits
...
ADD: lf awid code is modified, some minor changes in outputs
ADD: lf t55xx write now prints the password on the same row, looks better when using the new "lf t55xx wipe" command.
ADD: the ioprox T55X7_IOPROX_CONFIG_BLOCK block.
2015-11-21 18:48:58 +01:00
iceman1001
6426f6ba86
@marshmellows last LF changes.
...
- wipe a t55x7 tag
- stable demods
-
2015-11-20 16:56:43 +01:00
iceman1001
57c7b44be5
FIX: some fixes to indalademod and viking from @marshmellow42
2015-11-10 18:56:43 +01:00
iceman1001
0956e0dba5
FIX: an error that I introduced to the csetblock command with wrong length of crc calcs.
...
CHG: variable name in csetblock change. just trying to be consistant.
ADD: code clean up in hf 14a, added some help text methods.
2015-11-10 11:45:45 +01:00
iceman1001
70459879e9
added @marshmellows new viking demod.
...
adjusted it to fit with the clone/demod that is under "lf viking" commands.
did some code clean up, 3spaces into tab.
2015-11-10 11:42:59 +01:00
iceman1001
4db2af08cd
fix: forgot to remove this when merging piwi's fixes.
2015-11-09 22:06:48 +01:00
iceman1001
edaf10af99
CHG: minor code clean up, removed commented old code.
...
ADD: usb_poll_validate_length to some deviceside loops.
ADD: @marshmellow42 's fixes to LF
2015-11-09 21:51:34 +01:00
iceman1001
bca7107931
ADD: @marshmellow fix for em41x clock.
...
CHG: swap the int to a uint8_t to skip a compiler error
2015-11-09 21:49:02 +01:00
iceman1001
7c5f2ced5b
ADD: @piwi's fixes to "hf snoop" where it empties the bigbuffer before snooping.
2015-11-09 21:48:09 +01:00
iceman1001
91d62a18fb
ADD: @piwi's changes to .gitignore.
2015-11-09 21:47:26 +01:00
iceman1001
cc3c0a5148
ADD: @piwi's fixes to .history
2015-11-09 21:46:57 +01:00
iceman1001
c2731f37be
CHG: a major remake of the "hf mf c*" commands. Ie chinese magic tags. Tried to make them consistent in parameter calls and simplified. And fixed the annoying gen1 tags that answers with a ACK/NACK on HALT commands..
2015-11-09 21:46:15 +01:00
iceman1001
bb9796ba26
ADD: @bm2gii some kind of andriod fix for the lua.
2015-11-02 20:47:15 +01:00
iceman1001
94422fa23f
ADD: @marshmellow42 's fixex and resetread t55x7
2015-11-02 20:46:17 +01:00
iceman1001
f5d2e7f7df
CHG: @ematrix / @piwi fixes for 'hf snoop'
2015-11-02 11:41:25 +01:00
iceman1001
acd7ccdbc9
CHG: some magic generation1 tags is not following protocol and answers to the "halt" command. This gives an error and makes the users think something went wrong. This also affected the magic identification in "Hf 14a reader" command, where it in those moments stated "NO" even if the tag is indeed a generation1.
2015-11-01 22:16:16 +01:00
iceman1001
afa86e5c03
ADD: help text for 'hf snoop' / 'hf search' / 'hf list'
...
CHG: minor code changes.
CHG: makefile , moved hi_sniffer.v from LF into HF row. @piwi suggestion for PR https://github.com/Proxmark/proxmark3/pull/141
2015-11-01 19:49:08 +01:00
iceman1001
eb4222d773
CHG: the updated fpga image for the "hf snoop"
2015-10-30 09:10:09 +01:00
iceman1001
857bc2ff6a
CHG: some desfire changes from @bforbort fork. *untested*
2015-10-30 09:09:35 +01:00
iceman1001
84f9cf0626
ADD: a minor xor script
2015-10-30 09:07:04 +01:00
iceman1001
f218d50efb
ADD: @gm4tr1x found some new known mifare keys.
2015-10-30 09:05:22 +01:00
iceman1001
1d0ccbe04b
ADD: added the "hf snoop" patch original from @Enio, rearranged by @Etmatrix.
...
ADD: added the "t55x7" refactoring by @marshmellow42
2015-10-27 21:47:21 +01:00
iceman1001
1c8fbeb93e
ADD: 'LF T55X7 WAKEUP' command. For tags with AOR bit set, send this command with password to wake tag up and be able to do a "LF SEARCH" etc on it.
...
CHG: Minor code changes on T55X7 code. Default password is back to 'FF FF FF FF',
REM: removed @marshmellow42 's wakeup option in "lf t55x7 read",
--- BASICALLY:
if a T55X7 tag has following bits set:
AOR - send wakeup command with pwd, to enable LF interacting with it.
PWD - send read/write/trace/info command with pwd. No need to send wakeup.
2015-10-21 09:12:33 +02:00
iceman1001
f82894ba69
CHG: move some methods, its easier to read now. Cosmetic change.
2015-10-21 09:07:36 +02:00
iceman1001
2efd639484
CHG: some cleanup of pcf7931.c
2015-10-20 19:02:03 +02:00
iceman1001
9276e859a6
ADD: @marshmellows42 's fixes for "lf cmdread" and CHANGELOG.md
...
ADD: Added the "lf t55x7 wakeup" command. It will send a pwd, and leave the antenna on.
Process like:
1. lf t55x7 wakeup p 11223344
2. lf search
---
It is still not finished, will work together with the "lf t55x7 commands" in next step when I figure out the process from the datasheets.
2015-10-20 19:00:02 +02:00
iceman1001
b87f99f4bb
ADD: some more keys found on a pastebin
2015-10-19 22:41:53 +02:00
iceman1001
a826cb0df1
FIX: tnp3sim, now can insert keys if the dumpfile is blank. Like the ,,,lander dumps...
2015-10-19 22:39:08 +02:00
iceman1001
f14c9bf915
FIX: "abort trap 6" error when runing the tnp3sim.lua script was because the CMD_MIFARE_EML_MEMSET needs to sent the bytewitdh now with recent changes in code to deal with different sizes in emulatormemory. the third argument should be 16 instead of 0.
2015-10-17 14:35:04 +02:00
iceman1001
d8a3b6c117
FIX: @tony pointed out that there was a method name lost... its been reinstated :)
2015-10-17 14:16:42 +02:00
iceman1001
a739812e89
FIX: thanks @tony, for pointing out a "end" statement inside tnp3sim.lua
...
ADD: @marshmello42 fixs for t55x7
2015-10-16 23:16:46 +02:00
iceman1001
2f5436ff0d
test
2015-10-15 19:30:11 +02:00