6af1a8e432
updated help text for `lf realy
2026-04-11 09:04:55 +07:00
489940cf76
helptexts
2026-04-02 19:43:24 +07:00
6542a35585
update helptexts
2026-03-20 09:45:15 +07:00
52676ebbd4
style: whitespace fixes
2026-03-11 22:41:21 +01:00
286df8f4eb
feat(14b): add interactive hf 14b tearoff command
...
Add an interactive command for performing tear-off attacks on ST25TB/SRx
monotonic counter blocks. This exploits EEPROM tearing to increment
counters that normally can only be decremented, based on the
near-field-chaos project by SecLabz.
The command sweeps tear-off timing from --start downward in --adj
microsecond steps, automatically consolidates partial writes, verifies
stability across multiple reads, and reports progress in real-time with
color-coded output.
Performance optimizations:
- One-time full iso14443b_setup() at start; subsequent field cycles use
lightweight tearoff_field_on()/tearoff_field_off() that skip FPGA
bitstream reload and buffer reallocation
- Periodic CMD_WTX keepalives to prevent USB timeouts during long attacks
- Calls FpgaResetBitstream() on exit to ensure clean FPGA state
Usage: hf 14b tearoff -b <block> -d <target> [--start <us>] [--adj <us>]
2026-03-11 21:43:37 +01:00
b62658f5ac
make style
2026-02-21 12:43:25 +01:00
1cf446fa7f
make commands
2026-02-06 13:07:16 +01:00
a26892a891
Add hf mfu cchk/aeschk and options to hf mf cauth/aesauth
2026-01-19 21:47:49 +01:00
e0fd7414c2
Update docs
2025-12-21 20:55:26 -07:00
1cfeb79003
automated from make style
2025-11-17 01:27:32 -08:00
b380132cbb
Replaced hf mf bambukeys with hf mf keygen with multiple KDFs support, use table for key output
...
Added Snapmaker U1 filament RFID KDF in `hf mf keygen`
2025-11-10 20:58:49 +03:00
ed516550ca
added "data qrcode" command to generate QR codes from inside the PM3 client
2025-11-10 16:20:00 +01:00
737a6dc3d7
Fix help description for lf indala brute
2025-11-07 21:02:14 +01:00
4aac77aaa2
support for Ultralight AES auth in hf mfu info/rdbl/wrbl/dump/ndefread/wipe/setkey
2025-10-04 02:00:23 +02:00
d6aeda7075
style
2025-08-29 14:01:34 +02:00
e578d75e66
style
2025-08-20 10:55:49 +02:00
8ab2f2b5a0
style
2025-08-12 19:06:38 +02:00
a0df90af18
style
2025-08-04 19:53:08 +02:00
ee2f5595ee
added a lf t55xx view command to view t55xx dump files
2025-07-28 15:46:09 +02:00
ed84b1fcf4
style
2025-07-13 15:55:44 +02:00
c7cf62fcf1
Added support for sending and receiving MQTT messages. It enables end user to quickly upload or share JSON files between them. Given the nature of MQTT, I also worked with @KevTheHermit who has proxdump.com site, where you can upload pm3 dump files and browse. He added support for MQTT uploads, so the process to share a file and it gets also uploaded to proxdump.com is very smooth. Feel free to improve this functionality with TLS etc. For now it looks quite promising.
2025-07-08 21:15:09 +02:00
1fa5e28a38
unify text and hints for static enc nonces a bit more
2025-06-08 21:46:31 +02:00
53e1e32409
text
2025-06-06 19:00:34 +02:00
c312bae516
Add "hf mf bambukeys" command to generate Bambu Lab keys
2025-05-25 00:18:25 +10:00
d4bc190dd4
renamed the hf iclass trdbl -> hf iclass tear
2025-05-23 17:29:28 +02:00
84b565bec4
style
2025-05-19 22:31:41 +02:00
87c2e82e2f
style
2025-03-19 12:53:24 +01:00
c657ddf135
Add hf mfu aesauth
2025-03-19 09:36:15 +01:00
2137284a93
style\n Some improvements to trace list -t seos annotations.
2025-03-12 16:41:06 +01:00
cef07dedf6
code style, code clean up of redundant functions, comments, its many minor fixes across the platform. Sorry for not making 20 commits
2025-02-21 15:38:33 +01:00
1040fa8a86
style
2025-01-14 18:18:07 +01:00
2585a77403
fixed buffer overflow and swapped parameter to "suffix" since its not a output file name
2025-01-05 13:12:34 +01:00
86dc2e427c
added to command files
2024-12-28 00:20:36 +03:00
a13b1db49f
make style
2024-12-09 15:16:46 +01:00
3a3ea75d12
style
2024-11-15 14:28:14 +01:00
ef0cf93a5d
fix typos and regenerate command list
2024-11-02 23:34:38 +10:00
8293b81217
style
2024-10-12 13:56:17 +02:00
71c86f4b21
style
2024-09-30 10:36:29 +02:00
32058894ea
style
2024-09-15 13:16:35 +02:00
db1b28f327
rename hts read/write commands to rdbl/wrbl to match rest of the client. added a lf hitag hts reader comamnd, modified the lf search to identify hitag2/s/82xx in the chipset detection
2024-09-14 21:00:42 +02:00
7f40ad7f9d
style
2024-08-29 12:29:23 +02:00
5de4f6ae3c
fix hitag help typos
2024-08-08 14:11:37 +02:00
ee8b9ca74b
make style
2024-08-03 21:21:11 +02:00
4de7b7d6b9
style
2024-07-21 16:19:21 +02:00
369db7c9d7
style
2024-05-27 20:29:02 +02:00
42f0699c78
style
2024-05-14 10:04:28 +02:00
3f6ea0f0fc
style
2024-04-22 16:35:22 +02:00
4e540053e9
style
2024-04-07 11:38:51 +02:00
94c3bdd91c
style
2024-03-14 11:26:06 +01:00
cc2bae2f4d
lf em 4x70 writekey --> lf em 4x70 setkey
2024-03-13 09:38:35 -07:00
iceman1001