github/RRG-Proxmark3
1
0
Fork 0
mirror of https://github.com/RfidResearchGroup/proxmark3.git synced 2025-08-21 05:43:48 -07:00
Code Issues Projects Releases Packages Wiki Activity Actions 4

Merge pull request #2706 from csBlueChip/rf08s_full_v1-4

Browse source 
Revise "full" recovery script
This commit is contained in:
Iceman 2025-01-05 20:38:11 +01:00 committed by GitHub
commit aa84e5ca8f
No known key found for this signature in database
GPG key ID: B5690EEEBB952194
1 changed files with 13 additions and 5 deletions
Download patch file Download diff file Expand all files Collapse all files

18
client/pyscripts/fm11rf08_full.py → client/pyscripts/fm11rf08s_full.py
View file

@ -14,7 +14,7 @@ import json
from fm11rf08s_recovery import recovery from fm11rf08s_recovery import recovery
author = "@csBlueChip" author = "@csBlueChip"
script_ver = "1.2.0" script_ver = "1.4.0"
# Copyright @csBlueChip # Copyright @csBlueChip
@ -33,7 +33,7 @@ script_ver = "1.2.0"
# ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ # ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
# The original version of this script can be found at: # The original version of this script can be found at:
# https://github.com/csBlueChip/Proxmark_Stuff/tree/main/MiFare_Docs/Fudan_RF08(S)/PM3_Script # https://github.com/csBlueChip/Proxmark_Stuff/tree/main/MiFare_Docs/Fudan_RF08S/PM3_Script
# The original version is released with an MIT Licence. # The original version is released with an MIT Licence.
# Or please reach out to me [BlueChip] personally for alternative licenses. # Or please reach out to me [BlueChip] personally for alternative licenses.
@ -117,7 +117,7 @@ globals:
args = parseCli() args = parseCli()
# No logfile name yet # No logfile name yet
lprint("Fudan FM11RF08[S] full card recovery") lprint("Fudan FM11RF08S full card recovery")
lprint("\nDump folder... " + color(f"{dpath}", fg="yellow")) lprint("\nDump folder... " + color(f"{dpath}", fg="yellow"))
# FIXME: script is announced as for RF08 and for RF08S but it comprises RF32N key # FIXME: script is announced as for RF08 and for RF08S but it comprises RF32N key
@ -204,7 +204,7 @@ def checkVer():
def parseCli(): def parseCli():
"""Parse the CLi arguments""" """Parse the CLi arguments"""
parser = argparse.ArgumentParser(description='Full recovery of Fudan FM11RF08* cards.') parser = argparse.ArgumentParser(description='Full recovery of Fudan FM11RF08S cards.')
parser.add_argument('-n', '--nokeys', action='store_true', help='extract data even if keys are missing') parser.add_argument('-n', '--nokeys', action='store_true', help='extract data even if keys are missing')
parser.add_argument('-r', '--recover', action='store_true', help='run key recovery script if required') parser.add_argument('-r', '--recover', action='store_true', help='run key recovery script if required')
@ -268,7 +268,7 @@ def getUIDfromBlock0(blk0):
def decodeBlock0(blk0): def decodeBlock0(blk0):
"""Extract data from block 0""" """Extract data from block 0"""
lprint() lprint()
lprint(" UID BCC ++----- RF08 ID -----++") lprint(" UID BCC ++---- RF08* ID -----++")
lprint(" ! ! SAK !! !!") lprint(" ! ! SAK !! !!")
lprint(" ! ! ! ATQA !! Fudan Sig !!") lprint(" ! ! ! ATQA !! Fudan Sig !!")
lprint(" !---------. !. !. !---. VV .---------------. VV") lprint(" !---------. !. !. !---. VV .---------------. VV")
@ -294,10 +294,13 @@ def decodeBlock0(blk0):
hash = blk0[27:44] # Fudan hash "99 AA BB CC DD EE" hash = blk0[27:44] # Fudan hash "99 AA BB CC DD EE"
is08S = False
type = f"[{fida:02X}:{fidb:02X}]" # type/name type = f"[{fida:02X}:{fidb:02X}]" # type/name
if fidb == 0x90: if fidb == 0x90:
if fida == 0x01 or fida == 0x03 or fida == 0x04: if fida == 0x01 or fida == 0x03 or fida == 0x04:
type += " - Fudan FM11RF08S" type += " - Fudan FM11RF08S"
is08S = True
elif fidb == 0x1D: elif fidb == 0x1D:
if fida == 0x01 or fida == 0x02 or fida == 0x03: if fida == 0x01 or fida == 0x02 or fida == 0x03:
@ -336,6 +339,11 @@ def decodeBlock0(blk0):
lprint(f" Fudan ID : {type}") # show type lprint(f" Fudan ID : {type}") # show type
lprint(f" Fudan Sig: {hash}") # show ?Partial HMAC? lprint(f" Fudan Sig: {hash}") # show ?Partial HMAC?
if not is08S:
lprint("\n This script is only for the RF08S cards")
lprint(" Other cards can be cracked with `hf mf autopwn`")
sys.exit(13)
def fudanValidate(blk0, live=False): def fudanValidate(blk0, live=False):
"""Fudan validation""" """Fudan validation"""