Proxmark3 community

Research, development and trades concerning the powerful Proxmark3 device.

Remember; sharing is caring. Bring something back to the community.


"Learn the tools of the trade the hard way." +Fravia

You are not logged in.

Announcement

Time changes and with it the technology
Proxmark3 @ discord

Users of this forum, please be aware that information stored on this site is not private.

Pages: 1

#1 2020-10-06 06:08:08

Charlie
Contributor
Registered: 2017-01-27
Posts: 129

(SOLVED) Incorrect HID Prox FC and Card Display

I've noticed that my proxmark has started to return incorrect FC and Card # when the card is in C15001 - HID KeyScan 36-bit format. When I reverse the raw hex into wiegand format it returns the correct FC and Card values.

I know in the past when this has happened it has been from not matching the firmware to client but i've re compiled and updated multiple times to make sure that it's the same.

Anyone else having the same issue?



[usb] pm3 --> hw ver

 [ Proxmark3 RFID instrument ]

 [ CLIENT ]
  client: RRG/Iceman/master/release (git)
  compiled with MinGW-w64 10.2.0 OS:Windows (64b) ARCH:x86_64

[ PROXMARK3 ]

 [ ARM ]
  bootrom: RRG/Iceman/master/release (git)
       os: RRG/Iceman/master/release (git)
  compiled with GCC 9.3.1 20200408 (release)

 [ FPGA ]
  LF image built for 2s30vq100 on 2020-07-08 at 23: 8: 7
  HF image built for 2s30vq100 on 2020-07-08 at 23: 8:19
  HF FeliCa image built for 2s30vq100 on 2020-07-08 at 23: 8:30

 [ Hardware ]
  --= uC: AT91SAM7S512 Rev B
  --= Embedded Processor: ARM7TDMI
  --= Nonvolatile Program Memory Size: 512K bytes, Used: 259616 bytes (50%) Free: 264672 bytes (50%)
  --= Second Nonvolatile Program Memory Size: None
  --= Internal SRAM Size: 64K bytes
  --= Architecture Identifier: AT91SAM7Sxx Series
  --= Nonvolatile Program Memory Type: Embedded Flash Memory

LF Search (incorrect FC and Card#)

[usb] pm3 --> lf sea u

[=] NOTE: some demods output possible binary
[=] if it finds something that looks like a tag
[=] False Positives ARE possible
[=]
[=] Checking for known tags...
[=]
[+] HID Prox - 3800ca6072 (19470) - len: 36 bit - OEM: 001 FC: 25 Card: 19470

[+] Valid HID Prox ID found!

Couldn't identify a chipset

Correct FC and Card

[usb] pm3 --> wie de 3800ca6072
[+] [C15001] - HID KeyScan 36-bit;  FC: 101  CN: 12345  OEM: 0    parity: valid
[usb] pm3 -->

Last edited by Charlie (2020-10-17 06:42:58)

Offline

#2 2020-10-06 09:22:41

iceman
Administrator
Registered: 2013-04-25
Posts: 9,537
Website

Re: (SOLVED) Incorrect HID Prox FC and Card Display

Nice,  if you pull latest / compile / flash,  and try again,  it should be fixed

Offline

#3 2020-10-07 06:08:13

Charlie
Contributor
Registered: 2017-01-27
Posts: 129

Re: (SOLVED) Incorrect HID Prox FC and Card Display

Bam!

Back to working correctly!

Offline

#4 2020-10-08 00:25:11

Charlie
Contributor
Registered: 2017-01-27
Posts: 129

Re: (SOLVED) Incorrect HID Prox FC and Card Display

Actually, i notice now when running Lf Search  it doesn't give the raw hex wiegand data. Is it just me that is running into this?

[usb] pm3 --> hw v

 [ Proxmark3 RFID instrument ]

 [ CLIENT ]
  client: RRG/Iceman/master/v4.9237-1587-g5305c33e 2020-10-06 21:23:17
  compiled with MinGW-w64 10.2.0 OS:Windows (64b) ARCH:x86_64

 [ PROXMARK3 ]
  firmware.........................PM3OTHER

 [ ARM ]
  bootrom: RRG/Iceman/master/v4.9237-1587-g5305c33e 2020-10-06 21:24:18
       os: RRG/Iceman/master/v4.9237-1587-g5305c33e 2020-10-06 21:24:40
  compiled with GCC 9.3.1 20200408 (release)

 [ FPGA ]
  LF image built for 2s30vq100 on 2020-07-08 at 23: 8: 7
  HF image built for 2s30vq100 on 2020-07-08 at 23: 8:19
  HF FeliCa image built for 2s30vq100 on 2020-07-08 at 23: 8:30

 [ Hardware ]
  --= uC: AT91SAM7S512 Rev B
  --= Embedded Processor: ARM7TDMI
  --= Nonvolatile Program Memory Size: 512K bytes, Used: 260536 bytes (50%) Free: 263752 bytes (50%)
  --= Second Nonvolatile Program Memory Size: None
  --= Internal SRAM Size: 64K bytes
  --= Architecture Identifier: AT91SAM7Sxx Series
  --= Nonvolatile Program Memory Type: Embedded Flash Memory

LF Search

[usb] pm3 --> lf sea u

[=] NOTE: some demods output possible binary
[=] if it finds something that looks like a tag
[=] False Positives ARE possible
[=]
[=] Checking for known tags...
[=]
[+] [H10301] - HID H10301 26-bit;  FC: 21  CN: 2038    parity: valid

[+] Valid HID Prox ID found!

[!] (em4x50) timeout while waiting for reply.
Couldn't identify a chipset

Last edited by Charlie (2020-10-08 00:38:27)

Offline

#5 2020-10-08 08:10:08

iceman
Administrator
Registered: 2013-04-25
Posts: 9,537
Website

Re: (SOLVED) Incorrect HID Prox FC and Card Display

hm...
lf hid clone should have the oem, fc, cn, format options

Offline

#6 2020-10-08 18:29:04

Charlie
Contributor
Registered: 2017-01-27
Posts: 129

Re: (SOLVED) Incorrect HID Prox FC and Card Display

Correct, I can still clone by using the raw format. When I run a search it no longer displays the raw hex data on a HID format card.

I have to take the FC, Card number and format and encode it

Clone

[usb] pm3 --> lf hid cl 3800ca6072
[=] Preparing to clone HID tag with ID: 3800ca6072
[+] Done

LF Search (missing raw hex data)

[usb] pm3 --> lf sea u

[=] NOTE: some demods output possible binary
[=] if it finds something that looks like a tag
[=] False Positives ARE possible
[=]
[=] Checking for known tags...
[=]
[+] [C15001] - HID KeyScan 36-bit;  FC: 101  CN: 12345  OEM: 0    parity: valid

[+] Valid HID Prox ID found!

Couldn't identify a chipset
[usb] pm3 -->

Encode (finding raw data from LF Search FC and Card#)

[usb] pm3 --> wiegand encode -w C15001 --fc 101 --cn 12345
[+] Encoded wiegand: 3800CA6072

PREVIOUS VERSION DISPLAY OF LF SEARCH - with raw data

LF Search (incorrect FC and Card#)

[usb] pm3 --> lf sea u

[=] NOTE: some demods output possible binary
[=] if it finds something that looks like a tag
[=] False Positives ARE possible
[=]
[=] Checking for known tags...
[=]
[+] HID Prox - 3800ca6072 (19470) - len: 36 bit - OEM: 001 FC: 25 Card: 19470

[+] Valid HID Prox ID found!

Couldn't identify a chipset

Last edited by Charlie (2020-10-08 18:32:36)

Offline

#7 2020-10-08 19:33:59

iceman
Administrator
Registered: 2013-04-25
Posts: 9,537
Website

Re: (SOLVED) Incorrect HID Prox FC and Card Display

Try pulling latest and you will find you got the option back.

Offline

#8 2020-10-12 07:33:24

Charlie
Contributor
Registered: 2017-01-27
Posts: 129

Re: (SOLVED) Incorrect HID Prox FC and Card Display

I think i must be doing something wrong still... When I run a search I still dont get the raw hex data displayed


[usb] pm3 --> hw v

 [ Proxmark3 RFID instrument ]

 [ CLIENT ]
  client: RRG/Iceman/master/v4.9237-1690-gdcc33d59 2020-10-11 23:23:23
  compiled with MinGW-w64 10.2.0 OS:Windows (64b) ARCH:x86_64

 [ PROXMARK3 ]
  firmware.........................PM3OTHER

 [ ARM ]
  bootrom: RRG/Iceman/master/v4.9237-1690-gdcc33d59 2020-10-11 23:24:55
       os: RRG/Iceman/master/v4.9237-1690-gdcc33d59 2020-10-11 23:25:23
  compiled with GCC 8.4.0

 [ FPGA ]
  LF image built for 2s30vq100 on 2020-07-08 at 23: 8: 7
  HF image built for 2s30vq100 on 2020-07-08 at 23: 8:19
  HF FeliCa image built for 2s30vq100 on 2020-07-08 at 23: 8:30

 [ Hardware ]
  --= uC: AT91SAM7S512 Rev B
  --= Embedded Processor: ARM7TDMI
  --= Nonvolatile Program Memory Size: 512K bytes, Used: 260520 bytes (50%) Free: 263768 bytes (50%)
  --= Second Nonvolatile Program Memory Size: None
  --= Internal SRAM Size: 64K bytes
  --= Architecture Identifier: AT91SAM7Sxx Series
  --= Nonvolatile Program Memory Type: Embedded Flash Memory


[usb] pm3 -->

     

    
pm3 --> lf sea u

[=] NOTE: some demods output possible binary
[=] if it finds something that looks like a tag
[=] False Positives ARE possible
[=]
[=] Checking for known tags...
[=]
[+] [H10301] - HID H10301 26-bit;  FC: 211  CN:4538    parity: valid

[+] Valid HID Prox ID found!

Couldn't identify a chipset

 

Running LF Search use to display that the raw data was 2005A62375 for that card

Offline

#9 2020-10-12 07:47:46

iceman
Administrator
Registered: 2013-04-25
Posts: 9,537
Website

Re: (SOLVED) Incorrect HID Prox FC and Card Display

The raw isn't printed any longer since its not going to be used.   
The option to use raw for clone and sim , I re-introduced.

Offline

#10 2020-10-12 21:07:44

Charlie
Contributor
Registered: 2017-01-27
Posts: 129

Re: (SOLVED) Incorrect HID Prox FC and Card Display

So this is the new procedure of copying a card? Is it possible to have the Raw Data displayed again when doing a LF Search on a card?

Step 1

LF Search

lf sea 

[=] NOTE: some demods output possible binary
[=] if it finds something that looks like a tag
[=] False Positives ARE possible
[=]
[=] Checking for known tags...
[=]
[+] [H10301] - HID H10301 26-bit;  FC: 101  CN: 1337    parity: valid

[+] Valid HID Prox ID found!

Step 2

Clone Using FC and CN

[usb] pm3 --> lf hid cl -w H10301 --fc 101 --cn 1337
[=] Preparing to clone HID tag
[+] [H10301] - HID H10301 26-bit;  FC: 101  CN: 1337    parity: valid
[+] Done

but if you have the raw data then you can use it

lf hid cl -r 2004CA0A73
[=] Preparing to clone HID tag using raw 2004CA0A73
[+] Done
[usb] pm3 --> lf sea u

[=] NOTE: some demods output possible binary
[=] if it finds something that looks like a tag
[=] False Positives ARE possible
[=]
[=] Checking for known tags...
[=]
[+] [H10301] - HID H10301 26-bit;  FC: 101  CN: 1337    parity: valid

[+] Valid HID Prox ID found!

[+] Chipset detection: T55xx

Offline

#11 2020-10-12 21:14:38

iceman
Administrator
Registered: 2013-04-25
Posts: 9,537
Website

Re: (SOLVED) Incorrect HID Prox FC and Card Display

if you want raw,  you should look into the  "wiegand encode"   command instead.

Offline

#12 2020-10-17 06:42:03

Charlie
Contributor
Registered: 2017-01-27
Posts: 129

Re: (SOLVED) Incorrect HID Prox FC and Card Display

ok thank you

Offline

Pages: 1

Board footer

Powered by FluxBB