Proxmark3 community
Research, development and trades concerning the powerful Proxmark3 device.
Remember; sharing is caring. Bring something back to the community.
"Learn the tools of the trade the hard way." +Fravia
You are not logged in.
Announcement
Time changes and with it the technology
Proxmark3 @ discord
Users of this forum, please be aware that information stored on this site is not private.
#1 2014-11-07 09:33:29
- kevinkm
- Contributor
- Registered: 2014-11-07
- Posts: 20
I appreciate if someone will tell me something about tag challenge.
1. If I have a acr122u and a mifare classic 1k/4k card with key, I will be able to work out tag challenge and the rest of the three.
2. If I have a PM3 and a mifare classic 1k/4k card with key, I will be able to work out tag challenge and the rest of the three.
3. I have to snoop in real time by PM3 for getting the tag challenge.
4. how? If you are will to simply tell.
Thank you sincerely. Iam really more confused after reading these threads in forum......widely divergent...
Offline
#2 2014-11-08 04:36:42
- edo0310
- Member
- Registered: 2014-11-08
- Posts: 4
Re: I appreciate if someone will tell me something about tag challenge.
I'm on the exact same situation, I've been stuck since months and haven't had time to figure this out, I have a PM3, an ARC122U, all the keys from the card (Mifare Classic 1K) and a trace with a full authentication and tag challenge.
Any help about this will really be appreciated.
Offline
#3 2014-11-08 09:21:52
- iceman
- Administrator
- Registered: 2013-04-25
- Posts: 9,507
- Website
Re: I appreciate if someone will tell me something about tag challenge.
If you ask a question, it might be easier for people to answer.
A vague "how?" is not very much to go for.
All questions regarding an acr122u, ask it in a device-relevant forum instead.
Your statment number 2, is yes. You will be able to work out the chanllenge and the rest of the three
Your statment number 3, is depends on your situation. Is the card, reader a later version which doesn't have the builtin flaws then your last resort is to snoop/sniff/sim
Your statment number 4, I have no idea what you are asking of
The pm3 wiki might not be so updated, but should give you enough information to clear your mind from some questions.
Offline
#4 2014-11-09 00:06:14
- edo0310
- Member
- Registered: 2014-11-08
- Posts: 4
Re: I appreciate if someone will tell me something about tag challenge.
If you ask a question, it might be easier for people to answer.
A vague "how?" is not very much to go for.
All questions regarding an acr122u, ask it in a device-relevant forum instead.
Your statment number 2, is yes. You will be able to work out the chanllenge and the rest of the three
Your statment number 3, is depends on your situation. Is the card, reader a later version which doesn't have the builtin flaws then your last resort is to snoop/sniff/sim
Your statment number 4, I have no idea what you are asking ofThe pm3 wiki might not be so updated, but should give you enough information to clear your mind from some questions.
OK, first thing, I'm not the OP, but I'm on exact same situation (I think), second, english is not my native language, so, apologies in advance if I made few (Or a lot of) mistakes.
Now, about my question, I've already recovered all the keys from my card, and I've also been able to snoof a complete authentication. Yes, the card it's flawed, it's vulnerable to all known attacks.
What I would like to know, is what would be the process, using the proxmark, to re-send the same commands I've already snoop from this card to another card, through a valid authentication.
Thank ! 
Offline
#5 2014-11-09 00:25:28
- iceman
- Administrator
- Registered: 2013-04-25
- Posts: 9,507
- Website
Re: I appreciate if someone will tell me something about tag challenge.
It depends what the system uses. If it only needs the UID? then you can simulate it via pm3,
or you can save the dumped data to a empty card and use the card.
look under the "hf mf" section and/or read the proxmark wiki.
Offline
#6 2014-11-11 06:28:52
- edo0310
- Member
- Registered: 2014-11-08
- Posts: 4
Re: I appreciate if someone will tell me something about tag challenge.
It depends what the system uses. If it only needs the UID? then you can simulate it via pm3,
or you can save the dumped data to a empty card and use the card.look under the "hf mf" section and/or read the proxmark wiki.
No, OK, let's see If I can explain this, what I want is to replay the snooped commands, to another card, and in the end have 2 functional and valid yet different cards.
It's explained on this paper on Chapter 6:
http://www.proxmark.org/files/Documents/13.56%20MHz%20-%20MIFARE%20Classic/Implementing_an_RFID_MIFARE_CLASSIC_Attack.pdf
My only problem it's that the code is for an older version of the proxmark client, and I would like some help to figure out how to implement it on the latest version.
Again, thanks
Offline
#7 2014-11-11 07:26:01
- iceman
- Administrator
- Registered: 2013-04-25
- Posts: 9,507
- Website
Re: I appreciate if someone will tell me something about tag challenge.
You want to clone a card. ok.
You have the keys. ok
You made a dump with the "hf mf dump" command?
Next step is "hf mf restore" to a new card. done.
Offline
#8 2014-11-18 08:42:59
- kevinkm
- Contributor
- Registered: 2014-11-07
- Posts: 20
Re: I appreciate if someone will tell me something about tag challenge.
Let answer by myslef.
1.N
2.N
3.P
4.got it.
Anyway, thanks iceman
Offline
#9 2015-02-09 09:57:06
- iceman
- Administrator
- Registered: 2013-04-25
- Posts: 9,507
- Website
Re: I appreciate if someone will tell me something about tag challenge.
@William888, I don't understand, if you have a new question about FILE_PATH_SIZE then please, make a new thread.
Offline