Christian Zietz
dbfd8b7a6d
Make detection threshold for ISO14443A configurable
...
This adds a new command "hw sethfthresh" to configure the thresholds
used inside the FPGA while demodulating ISO14443A. The thresholds
need to be increased on particularly noisy hardware, such as certain
Chinese PM3 Easy clones.
2024-02-02 20:51:05 +01:00
iceman1001
303c6b6067
style
2024-01-26 12:45:23 +01:00
nvx
e22776a7e0
style
2024-01-26 20:20:25 +10:00
nvx
49f7ae57dc
Changed hf mf gdmcfg/gdmsetcfg commands to support Gen1a and GDM Alt magic wakeups
...
This was implemented with a new pair of RPCs CMD_HF_MIFARE_READBL_EX and CMD_HF_MIFARE_WRITEBL_EX
these RPCs support all combinations of read/write commands, wakeup, and auth options so
in time can replace the other MFC read/write commands too reduce armsrc code size
and complexity.
Also added config parsing for the gdm cfg block when reading with hf mf gdmcfg and
explicitly with hf mf gdmparsecfg.
2024-01-26 20:09:08 +10:00
iceman1001
ba578ee139
hf 15 sim, reverse uid and a shorter read from emul to get uid if none is user given
2024-01-25 00:34:05 +01:00
Martijn Plak
1d14bc38c5
Rename CMD_READ_MEM_DOWNLOAD flag.
...
It got included in pm3_cmd.lua but shouldn't be because it's not a command.
Also, the bitshift in the value upsets some versions of lua.
2024-01-24 16:36:52 +01:00
Martijn Plak
e35385fde1
Adding processor flash memory reading, viewing and writing to file.
...
Works when the device is running either osimage or bootloader.
- New memory reading command in osimage and bootloader.
- Extended 'hw readmem' command with length parameter, file writing and hex viewer.
- Introduced '--dumpmem' option to proxmark3 executable to support dumping from bootloader.
Simple interactive examples:
hw readmem -f flashdump
hw readmem -l 1024
CLI example:
./pm3 --dumpmem flashdump.bin
Reading from arbitrary memory ranges can be unlocked using the 'raw' option.
2024-01-22 16:40:05 +01:00
iceman1001
82aa6ac08c
gave 14b commands some serious love and overhaul. package handling for APDU and different selects is improved. return codes now consequent
2024-01-08 21:17:42 +01:00
wh201906
ecec001fdd
Put uart_bind() into uart_common.c
2023-12-26 17:56:14 +08:00
merlokk
91892bc1bf
add static encrypted nonce detection
2023-12-11 21:24:26 +02:00
wh201906
bb529a9077
Fix corrupted data caused by CMD_WTX
...
No need to wait for 2.5s (1s + FPGA_LOAD_WAIT_TIME) if the real-time
sampling stops.
Make sure the LF bitstream is loaded before real-time sampling so the
response of CMD_WTX won't appear.
2023-12-02 17:04:03 +08:00
iceman1001
a913b2c662
style
2023-12-01 10:59:18 +01:00
wh201906
9e8b1ceda7
Reduce duplicate payload structure for lf read/sniff
2023-11-14 01:05:27 +08:00
wh201906
de7b6f35bc
Clean up the code for timeout
...
Rename UART_TCP_CLIENT_RX_TIMEOUT_MS to UART_NET_CLIENT_RX_TIMEOUT_MS
Add UART_UDP_LOCAL_CLIENT_RX_TIMEOUT_MS for shorter timeout
Check if the target address is local in uart_open()
2023-10-25 23:45:23 +08:00
iceman1001
0442e04e05
text
2023-10-15 13:19:33 +02:00
iceman1001
fc6feea0d4
experimental UDP support. Doesnt quite work yet
2023-10-14 20:30:13 +02:00
iceman1001
4f96d3eb46
style
2023-10-03 17:10:39 +02:00
iceman1001
bb5d61dca7
added some helper functions
2023-10-01 13:05:08 +02:00
iceman1001
b6e1344e1c
added a custom timeout parameter to the smart raw command
2023-09-16 18:38:53 +02:00
nvx
186308cb4a
Add hf iclass creditepurse
command to allow crediting the epurse debit value.
2023-09-10 23:00:23 +10:00
iceman1001
fc3a518f28
There is a race condition when we go from iclass commands to mf command. Especially noticable when eload large files where we used to spam the device with usb packages.\ntry iclass eload, then mf eload, and you see the client hang. With this change we trigger a preload of the fpga image before we start uploading to the device. Current places I could trigger this bug was in eload and gsave. With this patch only the first call takes some time if fpga image must be loaded. The following goes fast.\n\n if you find that the client hangs when going between, this could be the root cause.
2023-07-26 23:47:55 +02:00
Philippe Teuwen
216ad5740b
fix lf hitag eload
segmentation fault
2023-07-20 21:12:26 +02:00
iceman1001
ed0d18f05d
QL88 tag identification. Thanks to AnnPlusPluss and Atlab for finding the key
2023-06-28 13:27:50 +02:00
iceman1001
71ddee1386
added "hf mf gdmsetcfg" to write GDM configuration
2023-03-26 16:50:59 +02:00
iceman1001
97e16ba764
renamed gdm getblk to config since that is what it does
2023-03-26 03:41:12 +02:00
iceman1001
07f6162780
added support for the magic card called GDM.
2023-03-21 19:49:52 +01:00
Iceman
5a4338941d
Merge branch 'master' into master
...
Signed-off-by: Iceman <iceman@iuse.se>
2023-01-30 20:18:19 +01:00
Iceman
da8adace6b
Merge pull request #1885 from Alejandro12120/pm3generic-flash
...
Add a proper way to check if a FW is RDV4
2023-01-29 04:29:03 +01:00
Matthew Jackson
60f49175e8
change constant value so it follows others
2023-01-28 13:46:11 -06:00
Matthew Jackson
126beb976c
fix tabs
2023-01-28 13:37:25 -06:00
Matthew Jackson
9041627ae5
Add hf 15
sub-commands for EAS, AFI, privacy mode, and passwords on SLIX tags
2023-01-28 13:37:20 -06:00
Adrian Teuscher
71389e0b17
Add function to brute force partial key
2023-01-27 19:37:40 +01:00
Alejandro
474aaed4b7
Added a proper way to check if it is rdv4 fw
2023-01-24 23:01:28 +01:00
iceman1001
6c163fa262
added a check for static encrypted nonces when collecting encrypted nonces for hardnested to run. Will abort the collection if detected.
2022-11-15 07:07:26 +01:00
DidierA
876abf2818
Add hf mf gload, ggetblk, gsetblk
2022-11-05 19:40:38 +01:00
iceman1001
ba225905d3
changed "mf eload" / "iclass eload" to be able to transfer a file from SPIFFS to EMULATOR memory. Original idea from @natesales
2022-10-26 06:57:21 +02:00
iceman1001
5b90ea8117
skeleton code found at https://github.com/ZRD-Saar/proxmark3
2022-10-25 07:56:57 +02:00
Markus Walter
d79bd5b6b8
Switch hf 15 sim
to use image in emulator memory.
2022-09-01 18:53:31 +02:00
Markus Walter
03fa757395
Implement hf 15 eload
command to move image dump to emulator.
2022-09-01 18:52:57 +02:00
Markus Walter
eef1ce9c33
Enhance simulation of ISO15693 devices.
...
This adds the following things:
- support for reading multiple blocks,
- configurable block size,
- ability to provide a memory image.
2022-08-31 12:25:22 +02:00
merlokk
1e91895b90
simulate sketch
2022-07-02 22:45:32 +03:00
merlokk
541c060a5d
hf read adc low level command
2022-06-25 00:36:42 +03:00
iceman1001
c5d12bba0f
adapt hw dbg
to query device before setting log level
2022-06-06 18:21:28 +02:00
mwalker33
f5170f1d18
Mifare Classic Value operations
...
Added increment value, decrement value via the supplied commands and set value via the normal write command. Also added "get" to read a value block and decode/display.
2022-06-05 16:58:53 +10:00
Philippe Teuwen
4d264fa63c
Preparing EM4100 clone to EM4305
2022-04-29 16:44:38 +02:00
iceman1001
638e892088
added device side option to disable EAS/AFI password. Sets to all ZEROS
2022-02-18 18:23:53 +01:00
Philippe Teuwen
cbb976e320
No error code on regular exit
2022-01-16 19:57:12 +01:00
Philippe Teuwen
30aa7aa7d1
Adapting license headers, WIP
2022-01-08 00:40:52 +01:00
iceman1001
0a4c9f83ac
fixes to hf iclass configcard mem setup, textual output, MIX->NG convertion
2022-01-03 22:08:55 +01:00
iceman1001
9c2b5118df
hf mf gview now support user supplied password
2021-12-31 09:24:10 +01:00