Proxmark3 community

Research, development and trades concerning the powerful Proxmark3 device.

Remember; sharing is caring. Bring something back to the community.


"Learn the tools of the trade the hard way." +Fravia

You are not logged in.

Announcement

Time changes and with it the technology
Proxmark3 @ discord

Users of this forum, please be aware that information stored on this site is not private.

#1 2018-02-21 02:11:12

dontlook
Contributor
Registered: 2017-01-28
Posts: 57

14a sniff workflow

I confirmed I can plug in my PM3,
run hf 14a sniff,
hold the hi freq antenna to the card and card reader,
run nfc-list so a transaction occurs
hit the button,
and back on my machine run hf 14a list.
Success full trace!

Ok so I can do that tethered.....
Back to my computer,
run hf 14a sniff
flip the Proxmark power switch to On
Remove USB cable from Proxmark
Hold Proxmark against the card and reader
run nfc-list so a transaction occurs
hit the button
plug the Proxmark back into the USB cable on my machine
and CLICK - that sound when the Proxmark resets.  I did check

I tried this a couple times with the same result.  Haven't tried different firmware yet. 

Is this a correct workflow?  After I hit the button can I turn off the Proxmark and have the trace persist?

Thanks in advance.

Offline

#2 2018-02-21 22:59:26

davmarie1
Contributor
Registered: 2018-02-19
Posts: 15

Re: 14a sniff workflow

I may be incorrect, but I am under the impression that when you turn off the PM3 it will loose its memory, you need to keep it powered up.

Offline

#3 2018-02-22 20:26:07

dontlook
Contributor
Registered: 2017-01-28
Posts: 57

Re: 14a sniff workflow

Yes, I gave it a try/asked because in a different thread there is a reference to the data being saved into some other memory.   

I'll ditch that from my workflow tests.

Offline

#4 2018-02-24 06:06:46

dontlook
Contributor
Registered: 2017-01-28
Posts: 57

Re: 14a sniff workflow

This doesn't seem like it was meant to work hmm  . 


Will investigate Android maybe?

Offline

#5 2018-02-24 14:02:26

marshmellow
Contributor
From: US
Registered: 2013-06-10
Posts: 2,302

Re: 14a sniff workflow

There is not a way to reconnect a pm3 with a computer and salvage the read memory at this time.  But there were a few ppl working on it on GitHub.

Offline

#6 2018-02-24 14:14:05

iceman
Administrator
Registered: 2013-04-25
Posts: 9,538
Website

Re: 14a sniff workflow

...there is a working PR for offical pm3 where you get it aswell since beginning of january.
...iceman fork has had that functionality for the better part of six months.

It is very doable.

Online

#7 2018-02-24 17:49:33

dontlook
Contributor
Registered: 2017-01-28
Posts: 57

Re: 14a sniff workflow

Thanks @marshmellow and @iceman .

I'm running the iceman fork as of a week or so ago. I recompiled last night to put the hf_young.c and -DWITH_HF_YOUNG .  The proxmark still resets, just not as quickly.  I don't think that should matter since I wasn't technically running in Standalone mode, but it is one of the variables.

I'll go read the PR to see what I can glean from that and the details in the iceman fork.

Offline

#8 2018-02-24 17:53:18

iceman
Administrator
Registered: 2013-04-25
Posts: 9,538
Website

Re: 14a sniff workflow

HF_YOUNG doesn't work?  start a issue on github,  and lets see what I can fix

Online

#9 2018-02-24 19:50:35

dontlook
Contributor
Registered: 2017-01-28
Posts: 57

Re: 14a sniff workflow

No,  I had not tested it recently.  Just did now and it works.

I previously had the lf_samyrun.c compiled in to the armsrc, but really I'm not running the device in a proper standalone mode when I am trying to run the sniff. 

I am trying to start it connected to the computer(but on battery), unplug the USB cable(it keeps power due to battery), then hold the proxmark against reader and card, then plug the device back in to run hf 14a list

I just keep finding more things to do with this smile

Offline

#10 2018-02-25 03:14:11

dontlook
Contributor
Registered: 2017-01-28
Posts: 57

Re: 14a sniff workflow

hf_colin kind of looks like it does that, will recompile and report back.

Offline

Board footer

Powered by FluxBB