mirror of
https://github.com/RfidResearchGroup/proxmark3.git
synced 2025-08-19 21:03:48 -07:00
lf_t55xx_fix.lua
v1.0.1 Signed-off-by: Jarek Barwinski <116510448+jareckib@users.noreply.github.com>
This commit is contained in:
Jarek Barwinski
GitHub
parent
9e84d9a2f9
commit
b3a2e81a06
1 changed files with 141 additions and 0 deletions
141
client/luascripts/lf_t55xx_fix.lua
Normal file
141
client/luascripts/lf_t55xx_fix.lua
Normal file
|
|
@ -0,0 +1,141 @@
|
||||||
|
local getopt = require('getopt')
|
||||||
|
local utils = require('utils')
|
||||||
|
local ac = require('ansicolors')
|
||||||
|
local os = require('os')
|
||||||
|
local dash = string.rep('--', 32)
|
||||||
|
local dir = os.getenv('HOME') .. '/.proxmark3/logs/'
|
||||||
|
local logfile = (io.popen('dir /a-d /o-d /tw /b/s "' .. dir .. '" 2>nul:'):read("*a"):match("%C+"))
|
||||||
|
local pm3 = require('pm3')
|
||||||
|
p = pm3.pm3()
|
||||||
|
local command = core.console
|
||||||
|
command('clear')
|
||||||
|
|
||||||
|
author = ' Author: jareckib - 15.02.2025'
|
||||||
|
version = ' version v1.01'
|
||||||
|
desc = [[
|
||||||
|
This simple script first checks if a password has been set for the T5577.
|
||||||
|
It uses the dictionary t55xx_default_pwds.dic for this purpose. If a password
|
||||||
|
is found, it uses the wipe command to erase the T5577. Then the reanimation
|
||||||
|
procedure is applied. If the password is not found or doesn't exist the script
|
||||||
|
only performs the reanimation procedure. The script revives 99% of blocked tags.
|
||||||
|
]]
|
||||||
|
usage = [[
|
||||||
|
script run lf_t55xx_fix
|
||||||
|
]]
|
||||||
|
arguments = [[
|
||||||
|
script run lf_t55xx_fix -h : this help
|
||||||
|
]]
|
||||||
|
|
||||||
|
local function help()
|
||||||
|
print()
|
||||||
|
print(author)
|
||||||
|
print(version)
|
||||||
|
print(desc)
|
||||||
|
print(ac.cyan..' Usage'..ac.reset)
|
||||||
|
print(usage)
|
||||||
|
print(ac.cyan..' Arguments'..ac.reset)
|
||||||
|
print(arguments)
|
||||||
|
end
|
||||||
|
|
||||||
|
local function read_log_file(logfile)
|
||||||
|
local file = io.open(logfile, "r")
|
||||||
|
if not file then
|
||||||
|
return nil
|
||||||
|
end
|
||||||
|
local content = file:read("*all")
|
||||||
|
file:close()
|
||||||
|
return content
|
||||||
|
end
|
||||||
|
|
||||||
|
local function sleep(n)
|
||||||
|
os.execute("sleep " ..tonumber(n))
|
||||||
|
end
|
||||||
|
|
||||||
|
function wait(msec)
|
||||||
|
local t = os.clock()
|
||||||
|
repeat
|
||||||
|
until os.clock() > t + msec * 1e-3
|
||||||
|
end
|
||||||
|
|
||||||
|
local function timer(n)
|
||||||
|
while n > 0 do
|
||||||
|
io.write("::::: "..ac.yellow.. tonumber(n) ..ac.yellow.." sec "..ac.reset..":::::\r")
|
||||||
|
sleep(1)
|
||||||
|
io.flush()
|
||||||
|
n = n-1
|
||||||
|
end
|
||||||
|
end
|
||||||
|
|
||||||
|
local function extract_password(log_content)
|
||||||
|
for line in log_content:gmatch("[^\r\n]+") do
|
||||||
|
local password = line:match('%[%+%] found valid password: %[ (%x%x%x%x%x%x%x%x) %]')
|
||||||
|
if password then
|
||||||
|
return password
|
||||||
|
end
|
||||||
|
end
|
||||||
|
return nil
|
||||||
|
end
|
||||||
|
|
||||||
|
local function reset_log_file()
|
||||||
|
local file = io.open(logfile, "w+")
|
||||||
|
file:write("")
|
||||||
|
file:close()
|
||||||
|
end
|
||||||
|
|
||||||
|
local function reanimate_t5577(password)
|
||||||
|
if password then
|
||||||
|
p:console('lf t55 wipe -p ' .. password)
|
||||||
|
print("T5577 wiped using a password: " ..ac.green.. password ..ac.reset)
|
||||||
|
else
|
||||||
|
print(ac.yellow.."No valid password found, proceeding with reanimation."..ac.reset)
|
||||||
|
end
|
||||||
|
|
||||||
|
p:console('lf t55 write -b 0 -d 000880E8 -p 00000000')
|
||||||
|
p:console('lf t55 write -b 0 -d 000880E0 --pg1 --r0 -t -p 00000000')
|
||||||
|
p:console('lf t55 write -b 0 -d 000880E0 --pg1 --r1 -t -p 00000000')
|
||||||
|
p:console('lf t55 write -b 0 -d 000880E0 --pg1 --r2 -t -p 00000000')
|
||||||
|
p:console('lf t55 write -b 0 -d 000880E0 --pg1 --r3 -t -p 00000000')
|
||||||
|
p:console('lf t55 write -b 0 -d 000880E0 --r0 -p 00000000')
|
||||||
|
p:console('lf t55 write -b 0 -d 000880E0 --r1 -p 00000000')
|
||||||
|
p:console('lf t55 write -b 0 -d 000880E0 --r2 -p 00000000')
|
||||||
|
p:console('lf t55 write -b 0 -d 000880E0 --r3 -p 00000000')
|
||||||
|
p:console('lf t55 write -b 0 -d 000880E0 --pg1 --r0 -p 00000000')
|
||||||
|
p:console('lf t55 write -b 0 -d 000880E0 --pg1 --r1 -p 00000000')
|
||||||
|
p:console('lf t55 write -b 0 -d 000880E0 --pg1 --r2 -p 00000000')
|
||||||
|
p:console('lf t55 write -b 0 -d 000880E0 --pg1 --r3 -p 00000000')
|
||||||
|
reset_log_file()
|
||||||
|
end
|
||||||
|
|
||||||
|
local function main(args)
|
||||||
|
for o, a in getopt.getopt(args, 'h') do
|
||||||
|
if o == 'h' then return help() end
|
||||||
|
end
|
||||||
|
p:console('clear')
|
||||||
|
print(' I am initiating the repair process for '..ac.cyan..'T5577'..ac.reset)
|
||||||
|
print(dash)
|
||||||
|
print("::: "..ac.cyan.."Hold on, I'm searching for a password in the dictionary"..ac.reset.." :::")
|
||||||
|
print(dash)
|
||||||
|
p:console('lf t55 chk')
|
||||||
|
timer(5)
|
||||||
|
local log_content = read_log_file(logfile)
|
||||||
|
local password = log_content and extract_password(log_content) or nil
|
||||||
|
reanimate_t5577(password)
|
||||||
|
p:console('lf t55 detect')
|
||||||
|
timer(5)
|
||||||
|
local success = false
|
||||||
|
for line in p.grabbed_output:gmatch("[^\r\n]+") do
|
||||||
|
if line:find("000880E0") then
|
||||||
|
success = true
|
||||||
|
break
|
||||||
|
end
|
||||||
|
end
|
||||||
|
|
||||||
|
if success then
|
||||||
|
print('Recovery of '..ac.cyan..'T5577'..ac.reset..' was successful !!!')
|
||||||
|
else
|
||||||
|
print('Recovery of '..ac.cyan..'T5577'..ac.reset..' was unsuccessful !!!')
|
||||||
|
end
|
||||||
|
print(dash)
|
||||||
|
end
|
||||||
|
|
||||||
|
main(args)
|
||||||
Loading…
Add table
Add a link
Reference in a new issue