dd6e7f945e
Merge pull request #3090 from joetomasone/doc/fm11rf08s-manual-recovery
...
doc: add FM11RF08S manual key recovery guide
2026-02-08 09:13:29 +01:00
27f75f9323
doc: add FM11RF08S manual key recovery guide
...
Step-by-step guide for recovering all sector keys from Fudan FM11RF08S
MIFARE Classic 1K cards when the automated fm11rf08s_recovery.py script
fails due to missing _pm3 SWIG bindings, hardcoded tool paths, or
backdoor auth errors.
Documents a manual pipeline using hf mf isen for nonce collection,
staticnested_1nt for offline candidate generation, and hf mf fchk for
brute force verification. Includes troubleshooting for known issues
(#2553 , #2565 , #2689 , #2766 , #2838 ) and timing expectations.
Tested on RDV4 with Iceman firmware v4.20728 on macOS (aarch64).
2026-02-07 16:29:27 -05:00
3264c80b7f
update docker opensuse
2026-02-07 01:58:06 +01:00
cd2c576be6
Fixes for Python 3.14
2026-02-07 01:24:21 +01:00
fdf3b2690a
Various fixes to content GCC 16...
2026-02-07 00:51:53 +01:00
d62e3cff15
Promote MFUL readblock bytelen
...
Resolves #3087
2026-02-07 00:51:18 +01:00
932b92d8f4
termux compilation fixes: waveshare, mfd_aes_brute and host target
2026-02-06 23:59:34 +01:00
f0dbcf7f77
Add target 'host' to Makefile
2026-02-06 23:29:22 +01:00
aeb28b36f2
cppcheck: fix warning on mixing boolean and bitwise operations
2026-02-06 22:19:28 +01:00
cb1f66f9f4
cppcheck: fix size of pointer <> size of data
2026-02-06 22:19:11 +01:00
45b6939dff
fix test script
2026-02-06 18:48:54 +01:00
9b4bb4de48
missing Dockerfile
2026-02-06 18:48:39 +01:00
b091bf6e8b
cppcheck: avoid undef macro warning
2026-02-06 16:24:29 +01:00
0cf56a5436
cppcheck: avoid undef behavior in variadic fct warning
2026-02-06 16:20:39 +01:00
8f44b07eb3
cppcheck: avoid out of bound warning
2026-02-06 16:17:02 +01:00
73df0e186b
cppcheck: fix null ptr dereference warning
2026-02-06 16:00:29 +01:00
26c8b502e2
cppcheck: fix null ptr dereference
2026-02-06 15:55:14 +01:00
3234c2ba47
cppcheck: fix redundant condition
2026-02-06 14:34:26 +01:00
27e469f5d7
cppcheck: fix unused init
2026-02-06 14:32:50 +01:00
28ebaf529f
shadowed var/fct
2026-02-06 14:28:58 +01:00
32adc77e74
prepare release: deprecate Ubuntu 24.10 and add Ubuntu 25.10
2026-02-06 14:00:30 +01:00
14c6099e7f
make miscchecks
2026-02-06 13:45:54 +01:00
c00e4801b7
make style
2026-02-06 13:43:41 +01:00
9648c078c1
Fix make style for cpp
2026-02-06 13:43:41 +01:00
1cf446fa7f
make commands
2026-02-06 13:07:16 +01:00
3b89453c8c
Merge pull request #3086 from suut/fix_lf_t55xx_wakeup_options_parsing
...
lf t55xx wakeup: fix parsing of -v / -p options
2026-02-05 13:53:00 +01:00
0dd140a99e
lf t55xx wakeup: fix parsing of -v / -p options
...
Signed-off-by: suut <suut@users.noreply.github.com >
2026-02-05 13:42:38 +01:00
0eefedee03
Merge pull request #3085 from q0jt/master
...
Ignore tools/mfulc_des_brute/mfulc_des_brute
2026-02-05 04:06:11 +01:00
fcb21985c8
Ignore tools/mfulc_des_brute/mfulc_des_brute
2026-02-05 05:24:51 +09:00
001a80df48
Merge pull request #3083 from RashitKhamidullin/fix/ntag424-sdm-offset-serialization
...
fix `hf ntag424 changefs` SDM offset serialization bug
2026-02-03 04:26:33 +01:00
3cc841bcf1
Merge pull request #3082 from xtruan/evolo_aid
...
Add Kaba evolo AIDs
2026-02-03 04:07:26 +01:00
129d9e9ef7
fix hf ntag424 changefs SDM offset serialization bug
...
The changefs command was using memcpy on a fixed struct layout to
serialize
SDM settings, which caused SDM offset fields to be written incorrectly.
The struct's sdm_data[8][3] array was copied contiguously, but the NTAG
424
DNA specification (AN12196) requires certain offset fields to be
conditionally
omitted based on the SDM configuration.
This resulted in:
- Plain mode: MAC offsets not written correctly
- PICC mode: MAC offsets not written correctly
- Both modes producing cmac=0000000000000000
The fix replaces the memcpy-based approach with dynamic payload building
that
conditionally includes only the required SDM offset fields in the
correct order:
- UIDOffset (only if UID option + plain mode sdmMetaRead=0xE)
- SDMReadCtrOffset (only if counter option + plain mode)
- PICCDataOffset (only if encrypted PICC mode sdmMetaRead<=0x04)
- SDMMACInputOffset (only if file read enabled)
- SDMEncOffset + SDMEncLength (only if encrypted file data enabled)
- SDMMACOffset (only if file read enabled)
- SDMReadCtrLimit (only if limit option set)
2026-02-02 22:47:23 +01:00
a23a54d9ad
fix: combine F52100 AIDs
2026-02-02 14:25:32 -07:00
05f867feec
fix: update changelog
2026-02-02 10:13:27 -07:00
f5dc455e29
feat: add evolo AIDs
2026-02-02 09:46:08 -07:00
04bbd03347
hf mfu sim -t 13/14: hide key bytes on read, and refresh on compat write
2026-01-29 18:53:12 +01:00
90ddb58073
hf mfu info: detect MIFARE Hospitality
2026-01-29 18:37:35 +01:00
dda3093e6e
Merge pull request #3080 from aaronjamt/patch-synth-iv-improv
...
[hf seos] Fix Synthesized IV validation
2026-01-24 08:32:44 +01:00
f399b8d3a6
[hf seos] Fix Synthesized IV validation
2026-01-23 14:15:21 -07:00
7522652ad2
mfulc_des_brute: fix for MacOSX brew compilation
2026-01-20 12:40:06 +01:00
fa1769b465
mfulc_des_brute: fix clang warning on unaligned uint64_t
2026-01-20 12:01:40 +01:00
557142316e
Add two new static keys to mfulc_default_keys.dic
...
Signed-off-by: Nathan N <noproto@users.noreply.github.com >
2026-01-20 11:10:52 +01:00
4d998e645d
fix dict
2026-01-20 00:55:10 +01:00
a26892a891
Add hf mfu cchk/aeschk and options to hf mf cauth/aesauth
2026-01-19 21:47:49 +01:00
6942c41155
hf mfu info: add ULC fingerprinting
2026-01-19 21:47:49 +01:00
ab3a94c779
mfulc_des_brute & mfulc_counterfeit_recovery.py: integrate FJ8010
2026-01-19 21:47:49 +01:00
faca1550b8
hf mfu sim: add support to inject card replies
2026-01-19 21:47:49 +01:00
40727695d5
hw dicts
2026-01-19 21:47:49 +01:00
b64924cbbd
Add mfulaes_mask_recovery script
2026-01-19 21:47:49 +01:00
79b99450db
Add ntag22x_suncmac_recovery script
2026-01-19 21:47:49 +01:00
Iceman