dandri/proxmark3
1
0
Fork 0
mirror of https://github.com/RfidResearchGroup/proxmark3.git synced 2026-03-30 19:05:47 +00:00
Code Issues Packages Projects Releases Wiki Activity
21,206 Commits 3 Branches 19 Tags
fded3e9cefb1dfd7d6c2433dff76ae536c53cbdb
Commit Graph

888 Commits

Author SHA1 Message Date
Iceman
a54e88ee94 Merge pull request #3111 from Antiklesys/master 
Added --credit option for hf iclass legrec
 2026-03-06 08:56:21 +01:00
kormax
10a3fa7e6d Add request specification version to 'hf felica info' 2026-03-05 20:30:30 +02:00
kormax
ec25ea77a4 Extract more information with 'hf felica info' 2026-03-05 17:11:30 +02:00
Antiklesys
0d2741d757 Unused variables code cleanup 
Code cleanup of unused payload variables for iclass legrec
 2026-03-05 21:38:16 +08:00
Antiklesys
5041fbffa7 Added --creidit option for hf iclass legrec 
Added --creidit option for hf iclass legrec
 2026-03-05 19:32:52 +08:00
kormax
2e4290c5fe Refactor helpers for 'hf felica' commands; add retries 2026-03-04 18:50:21 +02:00
Philippe Teuwen
e2b11e937f 2026-03-02 12:50:34 +01:00
Philippe Teuwen
b8a5e7b656 hf mf cauth/aesauth/cchk/aeschk: make fast READ0 optional 2026-02-24 16:46:00 +01:00
Philippe Teuwen
118652bd90 CMD_HF_DECAY: factor with structs, remove cast align warning 2026-02-21 23:54:51 +01:00
Philippe Teuwen
b62658f5ac make style 2026-02-21 12:43:25 +01:00
michael
3eb594ce29 Cleaned up verbiage in user feedback 2026-02-18 20:44:08 -08:00
michael
fe878be492 Added a new command (hw decay [which monitors the decay rate of the hf antenna cap]) and updated hw tune to detect booster boards and if the pm3 easy is on a metal surface 2026-02-18 15:51:08 -08:00
kormax
c6675018b3 felica: use NG frames for commands 2026-02-15 19:04:22 +02:00
Philippe Teuwen
d6f74b342e Make sure RAMFUNC is not inlined, else it won't be in RAM.
Some checks failed
Ubuntu Build and Test / ubuntu-make (push) Successful in 5m35s
Ubuntu Build and Test / ubuntu-make-btaddon (push) Successful in 5m11s
Ubuntu Build and Test / ubuntu-cmake (push) Failing after 4m33s
Windows Build and Test / proxspace (push) Has been cancelled
Windows Build and Test / wsl (push) Has been cancelled
MacOS Build and Test / macos-make (push) Has been cancelled
MacOS Build and Test / macos-make-btaddon (push) Has been cancelled
MacOS Build and Test / macos-cmake (push) Has been cancelled
CodeQL / Analyze (python) (push) Failing after 2m7s
CodeQL / Analyze (cpp) (push) Failing after 9m27s
Some static RAMFUNC got inlined which means they weren't relocated in RAM.
By forcing noinline on RAMFUNC, the following functions move to RAM:

F .data 00000034 optimizedSniff
F .data 00000148 skipSniff
F .data 000002c8 ManchesterDecoding_Thinfilm

But ManchesterDecoding_Thinfilm worked fine without being in RAM,
so we remove its RAMFUNC attribute and it works as previously,
and avoid eating some RAM bytes.

In summary, impacted command is only:

hf sniff
 2026-02-11 14:19:05 +01:00
Philippe Teuwen
9f70011fee hf mfu setkey: supports ulc/ulaes auth and ulaes schann 2026-02-09 01:08:23 +01:00
Aaron Tulino
d62e3cff15 Promote MFUL readblock bytelen 
Resolves #3087
 2026-02-07 00:51:18 +01:00
Philippe Teuwen
c00e4801b7 make style 2026-02-06 13:43:41 +01:00
Philippe Teuwen
a26892a891 Add hf mfu cchk/aeschk and options to hf mf cauth/aesauth 2026-01-19 21:47:49 +01:00
Aaron Tulino (Aaronjamt)
c0e82539f2 [hf seos] Simulate support 2025-12-21 04:26:44 -07:00
Aaron Tulino (Aaronjamt)
2197d9fc9f Fix ROTR conflict 2025-12-21 03:49:45 -07:00
kormax
34f18a0002 Add polling loop annotation support for iso14443b 2025-12-19 09:29:31 +02:00
kormax
53ee5d68e8 Improve output format of hf felica rdbl; fix wrong response struct format 2025-11-29 18:26:03 +02:00
iceman1001
a0efcb2686 fix data crypt - output error. We have 8 bytes. 2025-10-17 08:53:54 +02:00
Philippe Teuwen
f0d8690e73 hf 14a raw -s: add --wait for delay between select and command 2025-10-09 22:43:39 +02:00
Philippe Teuwen
11fe8f783a Add --skip to hw tearoff, to cope with more complex commands. Example provided for hf mfu wrbl 2025-10-09 22:26:52 +02:00
Philippe Teuwen
4aac77aaa2 support for Ultralight AES auth in hf mfu info/rdbl/wrbl/dump/ndefread/wipe/setkey 2025-10-04 02:00:23 +02:00
iceman1001
b097e10aa3 this commit refactors the signature checks. First we introduce a common pm3 generic private / public key pair in order to allow for users to self sign their own modded device. The verification checks now looks at both hard coded public keys. If a vendor wants to add their own public key thus allowing for a simple way for us to identify their devices they can now do so. The downside is that the firmware mismatch detection becomes a bit dodgy. mem info; mem info -v; mem info -s -p <filename.pem>; mem info -s -p <filename.pem> -w contains the changes. OBS! when -w be careful to not overwrite your genuine RDV4 signature. As always, with great power comes great responsibility 2025-09-25 19:44:36 +02:00
Oleg Moiseenko
944a80d217 make style 2025-09-21 16:41:30 +03:00
iceman1001
c3e29789a9 added a --override MAD crc check parameter to NDEF read commands 2025-08-29 13:55:00 +02:00
q0jt
5a627381af hf felica: add FeliCa Lite-S authentication 2025-07-31 07:44:13 +09:00
zinongli
83c54bb174 initial working for single node 2025-07-25 23:47:00 -04:00
Philippe Teuwen
48724e44b4 hf mf sim: add --allowover option, needed for RF08S originality check 2025-07-25 20:54:18 +02:00
iceman1001
a3c2d2b815 style 2025-07-08 21:15:09 +02:00
iceman1001
16cbb4a446 style 2025-06-30 14:28:24 +02:00
iceman1001
5de4dd68e5 text 2025-06-22 20:34:54 +02:00
iceman1001
65607fc727 added Ultralight-C simulation. hf mfu sim -t 13. Use eload first. Also added support to upload UL-C dictionaries and UL-AES to spiffs memory. A lot of textual reworked across client. Unifiy texts and a bit more color ;) 2025-06-19 17:26:20 +02:00
Henry Gabryjelski
69a2cc1ff0 em4x70 --par deprecation: Step 4: remove client references to client->arm field that used to store this 2025-06-09 14:03:05 -07:00
Henry Gabryjelski
31b1117a51 em4x70 --par deprecation: Step 2: arm-side always uses false 2025-06-09 12:58:50 -07:00
Antiklesys
80e1c7f0d4 Implemented hf iclass sim -t 7 
Implemented an iclass sim function that prevents simulated card responses after updating block 3.
Block 3 gets updated with the XOR key as if it was in personalization mode.
 2025-06-07 23:12:21 +08:00
Antiklesys
5558db3019 Update iclass_cmd.h 
Signed-off-by: Antiklesys <syselkitna@gmail.com>
 2025-06-07 02:24:45 +08:00
Antiklesys
94794f7519 Implemented a hf iclass sim variation 
hf iclass sim -t 3 variation that glitches specific block responses during read/write operations based on the value of the last byte of block 31.
 2025-06-07 02:15:01 +08:00
Antiklesys
e68be39a41 Updated hf iclass legrec to be able to use shorter delays 
Added an option for hf iclass legrec to further increase speeds by using a shorter delay of 1500 vs the default of 3390.
This seems to be stable on new silicon especially now that we're keeping the field always on.
It may be more risky for the --fast operation.
 2025-06-06 16:06:53 +08:00
Antiklesys
083a9ce945 Updated hf iclass legrec with a fast option and improved AA2 selection 
1- Added a --fast option for hf iclass legrec that further increases the speed from 4.6 key updates/second to 7.4 key updates/second. This is achieved by skipping some safety checks and is a very fast but more risky operation.
2- Automated AA2 block selection based on the values in the config block
3- Other minor code cleanups
 2025-06-05 20:44:58 +08:00
iceman1001
804acfbefa the device side of iclass tear off is implemented. The base was done by @antiklesys. This version differs by the concept of trying to stabilize weak bits by performing a write operation in conjuction with the detected tear. Its untested but I can replicate most of the tears we performed client side. You will need to call the proxmark3 client with -f , ./pm3 -f to force flush out text which is needed for the inplace printing. I thought this was done automatically but it wasnt. hf iclass tear --arm + all the normal params to run on device side 2025-05-30 01:37:13 +02:00
Jakub Kramarz
9744f8afbb Add option to override default USART baud rate in platform settings 2025-05-09 15:53:30 +02:00
iceman1001
cb4a0e2333 rename struct to follow code style 2025-04-30 13:27:41 +02:00
kormax
3550f11726 Remove mag argument from commands; Add support for magsafe polling via 14a config 2025-04-20 17:55:55 +03:00
kormax
56336d9d82 Add support for polling loop annotations 2025-04-09 12:31:21 +03:00
douniwan5788
5122039547 Refactor hitag config_page_t for better memory alignment 2025-03-22 20:54:13 +08:00
iceman1001
87c2e82e2f style 2025-03-19 12:53:24 +01:00