diff --git a/doc/hid_downgrade.md b/doc/hid_downgrade.md index 2a48643c5..28f30a8e9 100644 --- a/doc/hid_downgrade.md +++ b/doc/hid_downgrade.md @@ -186,10 +186,10 @@ drop iclass-flipper.picopass file here and simulate on Flipper 2. Plug in Omnikey reader 3. Start Omnikey workbench 4. Switch reader mode to CCID mode -5. Go to card diagnostic tab and place card on reader -6. Copy the raw PACS binary -7. Launch PM3 client, place iCLASS/Picopass card on HF antenna, and use following command to write your credential - `hf iclass encode --bin --ki 0` +5. Go to reader upload tab +6. Use the "load file" function and load the `encoder.cfg` [config file](https://github.com/kitsunehunter/proxmark3/blob/master/traces/iclass/encoder.cfg) +7. Launch PM3 client, place iCLASS/Picopass card on HF antenna and read your original card on the Omnikey reader +8. Press enter ## Using Flipper Zero with NARD ^[Top](#top) @@ -234,14 +234,14 @@ IT IS ABSOLUTELY NECESSARY THAT THE READER AND ESPKEY SHARE THE SAME GROUND EVEN 3. Connect to the wifi network the ESPKEY and navigate to `192.168.1.1` for the interface 4. Scan your credential on the reader 5. Open `log.txt` and copy the binary string WITHOUT the preamble -6. Use the above instructions and encode the binary wiegand data to a iCLASS card using PM3 - +6. Use `hf iclass encode --bin --ki 0` to encode the PACS payload to a iCLASS legacy card # Write ProxII credential to a T5577 ^[Top](#top) OBS! Downgrading to a T5577 will only work if reader has low frequency (125 kHz) / Prox II enabled. +A good indicator to look out for is the "multiCLASS" sticker on the reader. ## Using Proxmark3 ^[Top](#top) diff --git a/traces/iclass/encoder.cfg b/traces/iclass/encoder.cfg new file mode 100644 index 000000000..e65a44a1f Binary files /dev/null and b/traces/iclass/encoder.cfg differ