-
-
Notifications
You must be signed in to change notification settings - Fork 969
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Rewrite of HF_MATTYRUN standalone mode #2377
base: master
Are you sure you want to change the base?
Rewrite of HF_MATTYRUN standalone mode #2377
Conversation
You are welcome to add an entry to the CHANGELOG.md as well |
Signed-off-by: Iceman <iceman@iuse.se>
nice rework! I only quickly gazzed over it and your idea of adding the whole mfc_default_keys file. It would be contradiction to what you want to archive. Too big dictionary file and the device will just hang trying all keys. At max, only use say 100 known keys. Then you are on the limit already for a decent speed. |
True, although using the whole mfc_default_keys file + a few extra keys took roughly 12-14 seconds per sector per key type if keys are not part of the keyset (about 7 minutes for a MF 1k card, about 17 minutes for a 4k card, if all sector keys are not found with the tested keyset). That's not nice given the limited user interface for explaining what's going on, but works sufficiently well if you have time to let the Proxmark sit unobserved on a card for a while. My intention of the rewrite was to mimic the behavior of the dictionary read mode of Flipper Zero (with the difference that the UI makes it more obvious why scanning takes so long). But it may indeed make sens to leave that choice to the user. I tried to double the amount of keys but probably ran out of memory (at least that's what I assume; in fact, bigbuf allocation worked and What do you consider a useful default keyset? |
Yeah, I would think between 100-160 is about upper limit. |
Hej!
This is a rewrite of the standalone mode hf_mattyrun. It enhances the mode by
Description
This standalone mode uses a predefined dictionary (originally taken from mfc_default_keys.dic) to authenticate to MIFARE Classic cards (cf.
hf mf chk
) and to dump the card into emulator memory (cf.hf mf ecfill
). Once a card has been dumped, the card is emulated (cf.hf mf sim
). Emulation will start even if only a partial dump could be retrieved from the card (e.g. due to missing keys).This standalone mode is specifically designed for devices without flash. However, users can pass data to/from the standalone mode through emulator memory (assuming continuous (battery) power supply):
hf mf eload -f dump_file
to load any existing card dump. All keys from the key slots in the sector trailers are added to the dictionary. Note that you can fill both keys in all sector trailers available for a 4K card to store your user dictionary. Sector and key type are ignored during chk; all user keys will be tested for all sectors and for both key types.hf mf eview
orhf mf esave [--mini|--1k|--2k|--4k] -f dump_file
).