RFID Plank (Canceled)

I am working on gathering the information I’ll need from a few industry contacts, but I have an increasing need for the ability to work with more complex rfid and nfc solutions.

I need to rework my codebase slightly, but I hope to get some documentation put together as I clean things up while i swait my new BPV6.

Next topic once ive wrapped up rfid/ nfc and possibly CAN bus will be android support. I’ll explain more on this later. It was briefly discussed in the chat previously, but there will be more I expand on regarding android support. I’m really hoping to get a friend involved so we can begin apk discussions and development, but I need to get him a Bus Pirate and/ or get the model in FLUX.ai. Preferably both, but we will see how it all plays out.

Happy reverse engineering! Keep up the amazing work! I am glad to see the community continue to grow! Shout out to everyone naking it happen! Thank you all!

2 Likes

May I recommend looking into the Proxmark 3 Easy? Typically ~$30 from China based sellers for the version with 512k (vs. 256k) flash and most come with NAND flash also.

Very mature code base, and active discord:

Discord indicates one reputable seller as Piswords:
https://www.aliexpress.us/item/2251832621827011.html?gatewayAdapt=4itemAdapt

FYI, I may have done some research in this field … as a hobby. :slight_smile:

3 Likes

Feel free to DM me with details of what you’re looking to do. If I have useful thoughts, I’m happy to share them; else I’ll happily introduce you on the Iceman discord. Let me know either way.

The Proxmark3 is truly the swiss army knife of RFID (aka Low Frequency; 125Hz/134Hz) and NFC (aka High Frequency; 13.56MHz) research. You can likely do what you need with the Proxmark3’s existing functionality, and if not, folks on Iceman’s discord can usually help.

NOTE: The Mifare DESFire cards are generally regarded as black-box … with little or zero public information available. Closest thing to a “Magic” card for DESFire is this one that only modifies a few values (UID, SAK, ATS, ATQA) … so they only “work” if the system is only checking these values.

2 Likes

I have legitimate cards that I need to be able to troubleshoot cards and interfaces, but need to start somewhere. Thanks fof the links!

@henrygab I have some things id like to run by you. Some of which is protected by IP. Would love to chat sometime.

My problem with buying from sellers in any local is… well time. Sometimes the shipping/ customs cost additional time, other times it’s the distributor themselves and their lack of customer service/ care, while generally the most cost in time is when i receive a product that is DOA (knockoff or otherwise).

Is what it comes down to is my inability to find the right seller across so many platforms these days. I don’t have vrry long personal list of vetted vendors/ suppliers. The few I do have on said list include both inside as well as outside of the U.S. I’ve been taken for a ride at my own expense too many times before. I now (begrudgingly) pay a premium for products, on my own accord.

Maybe Ian and a few of you can help me break the cycle. Or maybe I just have terrible luck (or judgment if I’m being unbiased).

Please do not share anything with me that is not public, as I will not sign any NDA or the like, and I don’t want to get others in trouble for sharing what they should not.

I understand. What locale are you in? What product(s) are you looking for?


If looking for a Proxmark3

If in the USA, I have purchased three (3x) PM3 Easy from Dangerous Things. This vendor is well-known in the RFID community, I have had very positive experience with them, and I have 2nd-order connections (my colleague knows the owners). Of course, you then pay $80 for each one (rather than ~$30 from Piswords). But, if you need fast shipping, customer support, etc., and the price isn’t a primary issue, I can recommend them.

If in Europe, the iceman discord can point you to the well-known distributor… and price is slightly higher due to VAT, IIIRC. I posted a link to Piswords, which is a reputable seller.

If you want the ultra-premium version of the Proxmark3, then there are only two official distributors for the PM3 RDV… but unless you are inserting a SAM and writing code to talk to the SAM yourself, there’s not much benefit.


BTW, in case you haven’t heard … backdoor for decades worth of Mifare Classic chips has recently been found and published. Not just FUDAN, but even old NXP and Infineon tags… It’s been an exciting few weeks in RFID land.

1 Like

I’m not looking to share anything that would require you to sign an nda. I understand I’m in an open source community and expect nothing less.

I’m in the midwest USA. Looking for the best equipment for my purposes in my price range. Definitely interested in the Proxmark 3. Thank you for the info and details!

And i did hear the classic had been compromised.

I am more intered in determining when its a hardware problem the narrow down troubleshooting focus more efficiently.

It sounds like you may be managing a PACS (physical access control systems). I am not an expert in PACS, and know next to nothing about Mifare Desfire, so I would recommend lurking on iceman’s discord server for a bit. They’re very open to helping folks learn about the various technologies.

Also, because it sounds like you may be using the PM3 for work / income related purposes, the higher cost of the RDV4 may be worth it simply for the increased quality control and “known quantity” of the parts used. The PM3 Easy are all clones, and have both known issues (e.g., wrong resistor makes LF/125KHz emulation fail to work on PM3 Easy), and supply-chain woes (e.g., different FPGA, often laser-etched off, that exhibits problems).

But, really, this should go onto the other server, as it’s strayed far from the BusPirate …

1 Like

I believe I’m close to a proof of concept for an RFID reader/ writter that work with BPV5R10. Mifare Classic/ Desfire EV1 support, as well as a few others initially. I will be out next week, so there is still time, but the efforts may be paying off.

1 Like

Desfire support has been put on hold. Once the basics are refined, I will work on integration. A few weeks and I should have additional details/ photos/ etc.