Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Can not decypt my card #25

Open
minhtoantm opened this issue Nov 6, 2024 · 1 comment
Open

Can not decypt my card #25

minhtoantm opened this issue Nov 6, 2024 · 1 comment

Comments

@minhtoantm
Copy link

Hi.
I installed mfoc-hardnested and mfoc in my macbook and start decypt my card but failed.
My device: PN532

`mfoc-hardnested -k ffffffffffff -O mycard.mfd
The custom key 0xffffffffffff has been added to the default keys
ATS len = -20
Found Mifare Classic 1k tag
ISO/IEC 14443A (106 kbps) target:
ATQA (SENS_RES): 00 04

  • UID size: single
  • bit frame anticollision supported
    UID (NFCID1): f7 00 da b1
    SAK (SEL_RES): 08
  • Not compliant with ISO/IEC 14443-4
  • Not compliant with ISO/IEC 18092

Fingerprinting based on MIFARE type Identification Procedure:

  • MIFARE Classic 1K
  • MIFARE Plus (4 Byte UID or 4 Byte RID) 2K, Security level 1
  • SmartMX with MIFARE 1K emulation
    Other possible matches based on ATQA & SAK values:

Try to authenticate to all sectors with default keys...
Symbols: '.' no key found, '/' A key found, '' B key found, 'x' both keys found
[Key: ffffffffffff] -> [x.xxxxxxxxxxxxxx]
[Key: ffffffffffff] -> [x.xxxxxxxxxxxxxx]
[Key: a0a1a2a3a4a5] -> [x.xxxxxxxxxxxxxx]
[Key: d3f7d3f7d3f7] -> [x.xxxxxxxxxxxxxx]
[Key: 000000000000] -> [x.xxxxxxxxxxxxxx]
[Key: b0b1b2b3b4b5] -> [x.xxxxxxxxxxxxxx]
[Key: 4d3a99c351dd] -> [x.xxxxxxxxxxxxxx]
[Key: 1a982c7e459a] -> [x.xxxxxxxxxxxxxx]
[Key: aabbccddeeff] -> [x.xxxxxxxxxxxxxx]
[Key: 714c5c886e97] -> [x.xxxxxxxxxxxxxx]
[Key: 587ee5f9350f] -> [x.xxxxxxxxxxxxxx]
[Key: a0478cc39091] -> [x.xxxxxxxxxxxxxx]
[Key: 533cb6c723f6] -> [x.xxxxxxxxxxxxxx]
[Key: 8fd0a4f256e9] -> [x.xxxxxxxxxxxxxx]

Sector 00 - Found Key A: ffffffffffff Found Key B: ffffffffffff
Sector 01 - Unknown Key A Unknown Key B
Sector 02 - Found Key A: ffffffffffff Found Key B: ffffffffffff
Sector 03 - Found Key A: ffffffffffff Found Key B: ffffffffffff
Sector 04 - Found Key A: ffffffffffff Found Key B: ffffffffffff
Sector 05 - Found Key A: ffffffffffff Found Key B: ffffffffffff
Sector 06 - Found Key A: ffffffffffff Found Key B: ffffffffffff
Sector 07 - Found Key A: ffffffffffff Found Key B: ffffffffffff
Sector 08 - Found Key A: ffffffffffff Found Key B: ffffffffffff
Sector 09 - Found Key A: ffffffffffff Found Key B: ffffffffffff
Sector 10 - Found Key A: ffffffffffff Found Key B: ffffffffffff
Sector 11 - Found Key A: ffffffffffff Found Key B: ffffffffffff
Sector 12 - Found Key A: ffffffffffff Found Key B: ffffffffffff
Sector 13 - Found Key A: ffffffffffff Found Key B: ffffffffffff
Sector 14 - Found Key A: ffffffffffff Found Key B: ffffffffffff
Sector 15 - Found Key A: ffffffffffff Found Key B: ffffffffffff

Using sector 15 as an exploit sector
Sector: 1, type A, probe 0, distance 65439 .....
Sector: 1, type A, probe 1, distance 65439 .....
Sector: 1, type A, probe 2, distance 65439 .....
Sector: 1, type A, probe 3, distance 65439 .....
Sector: 1, type A, probe 4, distance 65439 .....
Sector: 1, type A, probe 5, distance 65439 .....
Sector: 1, type A, probe 6, distance 65439 .....
Sector: 1, type A, probe 7, distance 65439 .....
Sector: 1, type A, probe 8, distance 65439 .....
Sector: 1, type A, probe 9, distance 65439 .....
Sector: 1, type A, probe 10, distance 65439 .....
Sector: 1, type A, probe 11, distance 65439 .....
Sector: 1, type A, probe 12, distance 65439 .....`
@b4j0n1tz
Copy link

Same happens to me:

sudo ./mfoc -k ffffffffffff -O vending.dump
The custom key 0xffffffffffff has been added to the default keys
Found Mifare Classic 1k tag
ISO/IEC 14443A (106 kbps) target:
ATQA (SENS_RES): 00 04

  • UID size: single
  • bit frame anticollision supported
    UID (NFCID1): 87 76 73 7a
    SAK (SEL_RES): 08
  • Not compliant with ISO/IEC 14443-4
  • Not compliant with ISO/IEC 18092

Fingerprinting based on MIFARE type Identification Procedure:

  • MIFARE Classic 1K
  • MIFARE Plus (4 Byte UID or 4 Byte RID) 2K, Security level 1
  • SmartMX with MIFARE 1K emulation
    Other possible matches based on ATQA & SAK values:

Try to authenticate to all sectors with default keys...
Symbols: '.' no key found, '/' A key found, '' B key found, 'x' both keys found
[Key: ffffffffffff] -> [......xxxxxxxxxx]
[Key: ffffffffffff] -> [......xxxxxxxxxx]
[Key: a0a1a2a3a4a5] -> [//////xxxxxxxxxx]
[Key: d3f7d3f7d3f7] -> [//////xxxxxxxxxx]
[Key: 000000000000] -> [//////xxxxxxxxxx]
[Key: b0b1b2b3b4b5] -> [x/////xxxxxxxxxx]
[Key: 4d3a99c351dd] -> [x/////xxxxxxxxxx]
[Key: 1a982c7e459a] -> [x/////xxxxxxxxxx]
[Key: aabbccddeeff] -> [x/////xxxxxxxxxx]
[Key: 714c5c886e97] -> [x/////xxxxxxxxxx]
[Key: 587ee5f9350f] -> [x/////xxxxxxxxxx]
[Key: a0478cc39091] -> [x/////xxxxxxxxxx]
[Key: 533cb6c723f6] -> [x/////xxxxxxxxxx]
[Key: 8fd0a4f256e9] -> [x/////xxxxxxxxxx]

Sector 00 - Found Key A: a0a1a2a3a4a5 Found Key B: b0b1b2b3b4b5
Sector 01 - Found Key A: a0a1a2a3a4a5 Unknown Key B
Sector 02 - Found Key A: a0a1a2a3a4a5 Unknown Key B
Sector 03 - Found Key A: a0a1a2a3a4a5 Unknown Key B
Sector 04 - Found Key A: a0a1a2a3a4a5 Unknown Key B
Sector 05 - Found Key A: a0a1a2a3a4a5 Unknown Key B
Sector 06 - Found Key A: ffffffffffff Found Key B: ffffffffffff
Sector 07 - Found Key A: ffffffffffff Found Key B: ffffffffffff
Sector 08 - Found Key A: ffffffffffff Found Key B: ffffffffffff
Sector 09 - Found Key A: ffffffffffff Found Key B: ffffffffffff
Sector 10 - Found Key A: ffffffffffff Found Key B: ffffffffffff
Sector 11 - Found Key A: ffffffffffff Found Key B: ffffffffffff
Sector 12 - Found Key A: ffffffffffff Found Key B: ffffffffffff
Sector 13 - Found Key A: ffffffffffff Found Key B: ffffffffffff
Sector 14 - Found Key A: ffffffffffff Found Key B: ffffffffffff
Sector 15 - Found Key A: ffffffffffff Found Key B: ffffffffffff

Using sector 00 as an exploit sector
Sector: 1, type B, probe 0, distance 65439 .....
Sector: 1, type B, probe 1, distance 65439 .....
Sector: 1, type B, probe 2, distance 65439 .....
Sector: 1, type B, probe 3, distance 65439 .....
Sector: 1, type B, probe 4, distance 65439 .....
Sector: 1, type B, probe 5, distance 65439 .....
Sector: 1, type B, probe 6, distance 65439 .....
Sector: 1, type B, probe 7, distance 65439 .....
Sector: 1, type B, probe 8, distance 65439 .....
Sector: 1, type B, probe 9, distance 65439 .....
Sector: 1, type B, probe 10, distance 65439 .....
Sector: 1, type B, probe 11, distance 65439 .....
Sector: 1, type B, probe 12, distance 65439 .....
Sector: 1, type B, probe 13, distance 65439 .....
Sector: 1, type B, probe 14, distance 65439 .....
Sector: 1, type B, probe 15, distance 65439 .....
Sector: 1, type B, probe 16, distance 65439 .....

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@minhtoantm @b4j0n1tz