Proxmark3 community

Research, development and trades concerning the powerful Proxmark3 device.

Remember; sharing is caring. Bring something back to the community.


"Learn the tools of the trade the hard way." +Fravia

You are not logged in.

Announcement

Time changes and with it the technology
Proxmark3 @ discord

Users of this forum, please be aware that information stored on this site is not private.

Pages: 1

#1 2015-07-23 21:00:30

Isolus
Member
Registered: 2015-06-09
Posts: 4

Parse LEGIC card contents

Hi,

I have some LEGIC cards used for building access control and try to understand the contents. This slides [1] mention csg files (Legic segment definition) which describe standardized types of usage (and they say building access control is a standardized type). But I can't find them anywhere. I think it would be nice to parse these standardized types in the legic decode function. Does someone know something about these segment definitions?

Regards


[1] https://srlabs.de/blog/wp-content/uploads/2010/07/100616.EUSecWest.LegicPrime.pdf

Offline

#2 2015-07-24 00:17:25

iceman
Administrator
Registered: 2013-04-25
Posts: 9,538
Website

Re: Parse LEGIC card contents

I never seen a legic card, so sorry I can't help you.  If you have some spare tags maybe?

Offline

#3 2015-07-24 13:56:50

Isolus
Member
Registered: 2015-06-09
Posts: 4

Re: Parse LEGIC card contents

Unfortunately, I don't have any spare tags.

Perhaps some other cards use the same internal structure, so here is all I know about the structure:
The tags have two segments. The first just contains the number of the card. The second is attached below. (I replaced some values. g1,g2,h1,h2,h3,h4,i1 are the same on all tags I know (for the same system). h5,h6,i1,i2,i3,i4,i5,i6,i7,i8,i9 are completely different for different users with the same access rights.)

WRC protected area:          
g1 g2 g2 g2 g2 g2 g2           
Remaining segment payload:          
ff 00 00 00 h1 h2 h3 h4 h5 h6 00 00 00 00 00 00 ff ff ff ff ff ff ff ff 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 i1 i2 i3 i4 i5 i6 i7 i8 i9

Offline

#4 2015-07-24 13:59:26

iceman
Administrator
Registered: 2013-04-25
Posts: 9,538
Website

Re: Parse LEGIC card contents

Have you tried the "hf legic" commands?

Offline

#5 2015-07-24 14:07:13

Isolus
Member
Registered: 2015-06-09
Posts: 4

Re: Parse LEGIC card contents

Yes, the segments are decoded with "hf legic decode". But it only shows the deobfuscated segments you see here. The application specific structure of these segements is not decoded/parsed albeit the linked document says it is standardized for this application type.

Offline

#6 2015-07-24 14:30:34

iceman
Administrator
Registered: 2013-04-25
Posts: 9,538
Website

Re: Parse LEGIC card contents

aha,  I never seen a legic output before. smile
It looks like it could do some re-make...

Offline

#7 2016-02-18 18:06:15

iceman
Administrator
Registered: 2013-04-25
Posts: 9,538
Website

Re: Parse LEGIC card contents

if you still are interested,  look into the http://www.proxmark.org/forum/viewforum.php?id=30 topic.

There has been some progress.

Offline

Pages: 1

Board footer

Powered by FluxBB