Proxmark3 developers community

Research, development and trades concerning the powerful Proxmark3 device.

Remember; sharing is caring. Bring something back to the community.


"Learn the tools of the trade the hard way." +Fravia

You are not logged in.

#1 2015-11-10 02:26:28

Exploitagency
Contributor
Registered: 2015-11-10
Posts: 24
Website

[RDV2] Pm3 rdv2 standalone mode

This link shows what a b c d represent and how to activate standalone mode for emulating hid tags on the pm3 dev v2 by elechouse
http://www.legacysecuritygroup.com/index.php/categories/9-rfid/7-proxmark-3-emulating-hid-tags-in-standalone-mode


Assorted Pre-compiled firmware collection with Easy Flasher tool: https://github.com/exploitagency/github-proxmark3-standalone-lf-emulator
Bitcoin: 1Fu1pd5BuzjmthMXBa6LzByfa7X2VFUyrw

Offline

#2 2015-11-10 02:28:21

Exploitagency
Contributor
Registered: 2015-11-10
Posts: 24
Website

Re: [RDV2] Pm3 rdv2 standalone mode

LED Comparison
PM3 RDV 2:    Regular PM3:    Function:
LED B    Green     Emulate
LED C    Red 1     Bank 1
LED A    Orange     Bank 2
LED D    Red 2     Read/Store


LED Combinations:
C and D record to bank 1
C and B emulating bank 1
A and D record to bank 2
A and B emulating bank 2

Instructions:
Long press button until
Several LED flash in sequence
LED C is now lit
Longpress button until LED D lights as well as C
Place card on antenna to be read
D goes off when card is read
Short press button
B and C is lit
Card is now being Emulated


Assorted Pre-compiled firmware collection with Easy Flasher tool: https://github.com/exploitagency/github-proxmark3-standalone-lf-emulator
Bitcoin: 1Fu1pd5BuzjmthMXBa6LzByfa7X2VFUyrw

Offline

#3 2016-06-24 19:56:42

muddy
Contributor
Registered: 2016-06-20
Posts: 8

Re: [RDV2] Pm3 rdv2 standalone mode

The video shows a default startup reading lf tags, today's units are being shipped that default to hf tags. They are shipping with 2.5.0 - so you won't get the exact same light sequence - there appears to be a bug -
Long press of the button sets off the flashing sequence.
It settles down with C and D lit (not just C and needing another button push to light D)
C and D indicate read mode for Bank 1 storage register.....
Place a card on the reader....
A, B and C are now lit. <-HERE IS THE BUG 
That is supposed be in emulation mode (B) - but can't be in Bank1 (C) and Bank2 (A) at the same time!

pressing the button again puts you in read mode for Bank2 as expected... A,D  after reading a card A, B for emulation of Bank2.
I emailed Elechouse - they simply asked if everything else seemed to be working, and to default to lf on startup they suggested I roll back to 2.0.0 if I want to match the video.

Offline

#4 2016-06-25 06:02:08

marshmellow
Moderator
From: US
Registered: 2013-06-10
Posts: 2,299

Re: [RDV2] Pm3 rdv2 standalone mode

it is not a bug.  as you said, the new firmware defaults to hf standalone mode.  if you want lf standalone find the switch and change it in the makefile, recompile and reflash.  details are on the forum. http://www.proxmark.org/forum/viewtopic … 032#p20032

Last edited by marshmellow (2016-06-25 06:07:49)

Offline

#5 2016-06-25 07:17:34

muddy
Contributor
Registered: 2016-06-20
Posts: 8

Re: [RDV2] Pm3 rdv2 standalone mode

Thanx, I will trick the line in armsrc makefile as you suggested -

- but I still don't understand the light sequence... after a read on Bank1 (CD) it shifts to ABC ...how can in it be in Bank1 (C) and Bank2 (A) at the same time as the lights indicate after a read,  it auto advances to sim mode and I would expect it to just show C and B - that is,  Bank1 - Simulation mode. The lights show ABC!

What am I missing? ExploitAgency's note shows only B and C - how come I am also getting A? Just curious - planning on porting it to a droid methinks - so it may end up moot.

Offline

#6 2016-06-25 19:40:48

marshmellow
Moderator
From: US
Registered: 2013-06-10
Posts: 2,299

Re: [RDV2] Pm3 rdv2 standalone mode

exploitagency was explaining the lf standalone mode, not the hf.  so if your device firmware is running the hf, you will have different lights...

Offline

#7 2016-09-20 17:14:33

Exploitagency
Contributor
Registered: 2015-11-10
Posts: 24
Website

Re: [RDV2] Pm3 rdv2 standalone mode

I decided to host the latest firmware but compiled with LF mode to make it easier for people
http://exploit.agency/sploit/proxmark3_with-LF_standalone
or
https://github.com/exploitagency/github-proxmark3-standalone-lf-emulator

I might do a HF demo eventually, but most stuff I see around here is the older HID cards

The LF firmware does HID emulation and cloning
And proxbrute does brute forcing

Last edited by Exploitagency (2016-09-22 17:06:14)


Assorted Pre-compiled firmware collection with Easy Flasher tool: https://github.com/exploitagency/github-proxmark3-standalone-lf-emulator
Bitcoin: 1Fu1pd5BuzjmthMXBa6LzByfa7X2VFUyrw

Offline

#8 2016-09-25 07:07:01

iceman
Administrator
Registered: 2013-04-25
Posts: 6,167
Website

Re: [RDV2] Pm3 rdv2 standalone mode

A very nice compilation of modded firmware for the different stand-alone modes.

Suggestion:
Matty has a standalone modd also. https://github.com/mattaereal/proxmark3

Feedback:
Is it possible that you either add the compiled client or make it even more clean that for every custom firmware, you need to run the compile client with it.  ie a fullimage from iceman fork will not work with the pm3 master proxmark client.

With your Kali compilations,  would you mind updating the github wiki and add a "kali" section under compilation for Linux?


If you feel the love,  https://www.patreon.com/iceman1001

modhex(hkhehghthbhudcfcdchkigiehgduiehg)

Offline

#9 2016-09-26 12:38:25

Exploitagency
Contributor
Registered: 2015-11-10
Posts: 24
Website

Re: [RDV2] Pm3 rdv2 standalone mode

I will work on it.  Thanks for linking matty's github.  I had a hard time finding it again for some reason last time I looked.  Going to shoot you an email as well.

I included just the client in yours only, but I will for all builds now.

Last edited by Exploitagency (2016-09-26 13:46:48)


Assorted Pre-compiled firmware collection with Easy Flasher tool: https://github.com/exploitagency/github-proxmark3-standalone-lf-emulator
Bitcoin: 1Fu1pd5BuzjmthMXBa6LzByfa7X2VFUyrw

Offline

#10 2016-09-26 13:47:29

iceman
Administrator
Registered: 2013-04-25
Posts: 6,167
Website

Re: [RDV2] Pm3 rdv2 standalone mode

Since you are in the mode of maintaining firmware,  consider making compiling all releases (tag) for Pm3 master.  This will make it easy to for ppl to test when a specific function worked or not. 

the main interersting PM3 repo's according to me.
PM3 Master https://github.com/Proxmark/proxmark3/releases
Marshmellow Fork Master https://github.com/marshmellow42/proxmark3
Iceman Fork Master https://github.com/iceman1001/proxmark3/releases


If you feel the love,  https://www.patreon.com/iceman1001

modhex(hkhehghthbhudcfcdchkigiehgduiehg)

Offline

#11 2016-09-26 15:37:00

Exploitagency
Contributor
Registered: 2015-11-10
Posts: 24
Website

Re: [RDV2] Pm3 rdv2 standalone mode

Going to eventually port easy flasher to a bash script to fit my Kali model...  I do a small project and it spirals into this.  Haha.

Will write wiki first though.

You were right keeping these up to date will be a chore.  Expect to have to do some compiling to stay current.


Assorted Pre-compiled firmware collection with Easy Flasher tool: https://github.com/exploitagency/github-proxmark3-standalone-lf-emulator
Bitcoin: 1Fu1pd5BuzjmthMXBa6LzByfa7X2VFUyrw

Offline

#12 2016-09-26 15:45:05

iceman
Administrator
Registered: 2013-04-25
Posts: 6,167
Website

Re: [RDV2] Pm3 rdv2 standalone mode

if you make a script that "git clone xxxx" ,  "make clean && make"  and tar ball it,  you should have a easier day then if you do it manually


If you feel the love,  https://www.patreon.com/iceman1001

modhex(hkhehghthbhudcfcdchkigiehgduiehg)

Offline

#13 2016-09-26 23:42:44

Exploitagency
Contributor
Registered: 2015-11-10
Posts: 24
Website

Re: [RDV2] Pm3 rdv2 standalone mode

Good idea.  I'll tackle the wiki first though.  And can't make any promises but I'm not done yet working on my repo yet.  I don't even always know what direction my projects are headed.  But we will see.


Assorted Pre-compiled firmware collection with Easy Flasher tool: https://github.com/exploitagency/github-proxmark3-standalone-lf-emulator
Bitcoin: 1Fu1pd5BuzjmthMXBa6LzByfa7X2VFUyrw

Offline

Board footer

Powered by FluxBB