Research, development and trades concerning the powerful Proxmark3 device.
Remember; sharing is caring. Bring something back to the community.
"Learn the tools of the trade the hard way." +Fravia
You are not logged in.
Time changes and with it the technology
Proxmark3 @ discord
Users of this forum, please be aware that information stored on this site is not private.
Pages: 1
I have never succeeded to snoop communication in both ISO14443A or B. Can you let me know with with version of svn, it should work to test it?
Hereafter are some details of my problems.
My proxmark is running:
#db# Prox/RFID mark3 RFID instrument
#db# bootrom: svn 839 2013-12-04 10:41:00
#db# os: svn 839-unclean 2013-12-15 10:48:04
#db# FPGA image built on 2013/11/19 at 18:17:10
uC: AT91SAM7S256 Rev B
Embedded Processor: ARM7TDMI
Nonvolatile Program Memory Size: 256K bytes
Second Nonvolatile Program Memory Size: None
Internal SRAM Size: 64K bytes
Architecture Identifier: AT91SAM7Sxx Series
Nonvolatile Program Memory Type: Embedded Flash MemoryFor instance when I have tried to snoop between a Mifare 1k card and an Omnikey 5321...
proxmark3> hf 14a snoop... and I have immediately received the following answer!
#db# COMMAND FINISHED
#db# maxDataLen=21, Uart.state=0, Uart.byteCnt=0
#db# Uart.byteCntMax=20, traceLen=cb0, Uart.output[0]=000000ff
proxmark3> hf 14a list
recorded activity:
ETU :rssi: who bytes
---------+----+----+-----------When I have tried to snoop communication between a Moneo/student card (ISO14443B) and an Omnikey 5321...
proxmark3> hf 14b snoop...I have received this (AFAIK there is a problem -- see "blew circular buffer")
#db# Snooping buffers initialized:
#db# Trace: 4096 bytes
#db# Reader -> tag: 2048 bytes
#db# tag -> Reader: 2048 bytes
#db# DMA: 1024 bytes
#db# blew circular buffer! behindBy=0x3ff
#db# Snoop statistics:
#db# Max behind by: 1023
#db# Uart State: 0
#db# Uart ByteCnt: 0
#db# Uart ByteCntMax: 100
#db# Trace length: 35
proxmark3> hf 14b list
recorded activity:
time :rssi: who bytes
---------+----+----+-----------
+ 0: 175: TAG 50 c8 0a 48 c9 00 00 00 00 77 81 71 cb 90
+ 2214: 156: TAG 01 f1 e1
+1144109026: : 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 **FAIL CRC**
+ 0: : 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 **FAIL CRC**
+ 0: : 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 **FAIL CRC**
+ 0: : 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 **FAIL CRC**
+ 0: : 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 **FAIL CRC**
+ 0: : 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 **FAIL CRC**
+ 0: : 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 **FAIL CRC**
+ 0: : 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 **FAIL CRC**
+ 0: : 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 **FAIL CRC**
+ 0: : 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 **FAIL CRC**
+ 0: : 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 **FAIL CRC** Thanks for your help
Offline
Snooping in 14443A works with revision r832.
However in 14443B, no success (even there is a better behaviour). I can press the button to stop recording
And unfortunately, my main interest is for 14443B!
proxmark3> hw version
#db# Prox/RFID mark3 RFID instrument
#db# bootrom: svn 839 2013-12-04 10:41:00
#db# os: svn 838-unclean 2013-12-15 16:48:17
#db# FPGA image built on 2012/ 1/ 6 at 15:27:56
uC: AT91SAM7S256 Rev B
Embedded Processor: ARM7TDMI
Nonvolatile Program Memory Size: 256K bytes
Second Nonvolatile Program Memory Size: None
Internal SRAM Size: 64K bytes
Architecture Identifier: AT91SAM7Sxx Series
Nonvolatile Program Memory Type: Embedded Flash Memory ISO14443A is OK now.
proxmark3> hf 14a snoop
#db# COMMAND FINISHED
#db# maxDataLen=1a, Uart.state=0, Uart.byteCnt=1
#db# Uart.byteCntMax=20, traceLen=bbb, Uart.output[0]=00000052
proxmark3> hf 14a list
recorded activity:
ETU :rssi: who bytes
---------+----+----+-----------
+ 0: : 26
+ 66: 0: TAG 04 00
+ 5056: : 93 20
+ 66: 0: TAG 84 7b 24 42 99
+ 7236: : 93 70 84 7b 24 42 99 4d f8
+ 66: 0: TAG 08 b6 dd
+ 2752: : e0 81 b8 62
+ 66: 0: TAG 04
+ 5064: : 50 00 57 cd
etc.ISO14443B
I can only record the card UID and not commands from reader and responses from card. However they communicate since I can see data at PC/SC level.
proxmark3> hf 14b snoop
#db# Snooping buffers initialized:
#db# Trace: 4096 bytes
#db# Reader -> tag: 2048 bytes
#db# tag -> Reader: 2048 bytes
#db# DMA: 1024 bytes
#db# cancelled
#db# Snoop statistics:
#db# Max behind by: 188
#db# Uart State: 0
#db# Uart ByteCnt: 0
#db# Uart ByteCntMax: 100
#db# Trace length: 35
proxmark3> hf 14b list
recorded activity:
time :rssi: who bytes
---------+----+----+-----------
+ 0: 120: TAG 50 c8 0a 48 c9 00 00 00 00 77 81 71 cb 90
+ 2236: 126: TAG 01 f1 e1
+1144560276: : 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 **FAIL CRC**
+ 0: : 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 **FAIL CRC**
+ 0: : 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 **FAIL CRC**
+ 0: : 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 **FAIL CRC**
+ 0: : 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 **FAIL CRC**
+ 0: : 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 **FAIL CRC**
+ 0: : 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 **FAIL CRC**
+ 0: : 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 **FAIL CRC**
+ 0: : 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 **FAIL CRC**
+ 0: : 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 **FAIL CRC**
+ 0: : 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 44 **FAIL CRC** Offline
Just in case it could be a compiler problem. Here are my tools:
arm-none-eabi-gcc (devkitARM release 41) 4.7.1
gcc (Ubuntu/Linaro 4.8.1-10ubuntu9) 4.8.1
g++ (Ubuntu/Linaro 4.8.1-10ubuntu9) 4.8.1Indeed I have seen : https://code.google.com/p/proxmark3/issues/detail?id=27 and http://www.proxmark.org/forum/viewtopic.php?id=1728
But switching from -Os to -O2 is not working for me.
Offline
Pages: 1