Research, development and trades concerning the powerful Proxmark3 device.
Remember; sharing is caring. Bring something back to the community.
"Learn the tools of the trade the hard way." +Fravia
You are not logged in.
Time changes and with it the technology
Proxmark3 @ discord
Users of this forum, please be aware that information stored on this site is not private.
Pages: 1
Is there any way to either (a) change the serial number (Page 1 Block 1 and Block 2) or (b) force the chip to return something other than the serial number when that block is read?
It seems someone has accomplished this as all their chips respond with the same serial number. I read a note somewhere online that I now cannot find that the second (b) option may be possible with the ATA5577. Does anyone know?
Thanks.
Offline
I think I've narrowed down what I'm ultimately looking for.
Does anyone know how to lock with a password ONLY Page1 on an ATA5577? or make page 1 not readable? It appears configuring the password option in Block 0 forces the entire memory map (page0 and page1) to be password protected. But there must be a way to configure this based on some implementations I've seen where only portions of memory are protected.
Thoughts?
Last edited by marshmellow (2013-10-16 23:38:56)
Offline
Reading T5557 datasheet it seems not to be possible to make only one page password-protected: all or none.
You can do something with AOR (Answer On Request) bit [full datasheet page11]; in this modality (AOR bit set to 1) T5557 modulation starts only if a password is send after the wake-up process. You also have to set password bit to 1.
If you want to do such a thing (protect some specific data with a password) you should hide both block6 with data you want to be hidden and block7 with password (MAXBLK value below 6) so you make tag send only blocks from 1 to 5.
Offline
Pages: 1