Proxmark3 community

Research, development and trades concerning the powerful Proxmark3 device.

Remember; sharing is caring. Bring something back to the community.


"Learn the tools of the trade the hard way." +Fravia

You are not logged in.

Announcement

Time changes and with it the technology
Proxmark3 @ discord

Users of this forum, please be aware that information stored on this site is not private.

Pages: 1

#1 2014-01-25 22:49:19

yoava333
Member
Registered: 2014-01-25
Posts: 6

help identifying a tag

Hi all,
I just got my proxmark, and I'm having a hard time figuring what type of card I have.
I started off from the hw tune test

proxmark3> hw tune
#db# Measuring antenna characteristics, please wait... # without any tag, lf antenna connected                 
#db# Measuring complete, sending report back to host                 
          
# LF antenna:  9.94 V @   125.00 kHz          
# LF antenna: 17.19 V @   134.00 kHz          
# LF optimal: 21.21 V @   136.36 kHz          
# HF antenna:  0.06 V @    13.56 MHz          
# Your HF antenna is unusable.          
proxmark3> hw tune
#db# Measuring antenna characteristics, please wait...  # with the tag, lf antenna connected             
#db# Measuring complete, sending report back to host                 
          
# LF antenna:  6.18 V @   125.00 kHz          
# LF antenna:  6.98 V @   134.00 kHz          
# LF optimal: 11.01 V @   150.00 kHz          
# HF antenna:  0.00 V @    13.56 MHz          
# Your HF antenna is unusable.          
proxmark3> hw tune
#db# Measuring antenna characteristics, please wait...  # without any tag, hf antenna connected           
#db# Measuring complete, sending report back to host                 
          
# LF antenna:  0.13 V @   125.00 kHz          
# LF antenna:  0.00 V @   134.00 kHz          
# LF optimal:  0.00 V @ 12000.00 kHz          
# HF antenna: 11.47 V @    13.56 MHz          
# Your LF antenna is unusable.          
proxmark3> hw tune
#db# Measuring antenna characteristics, please wait...   # with a tag, hf antenna connected
#db# Measuring complete, sending report back to host                 
          
# LF antenna:  0.00 V @   125.00 kHz          
# LF antenna:  0.00 V @   134.00 kHz          
# LF optimal:  0.00 V @ 12000.00 kHz          
# HF antenna:  8.15 V @    13.56 MHz          
# Your LF antenna is unusable.

I think the result means that the tag is an lf tag.
so i tried to read the data

proxmark3> lf read
#db# buffer samples: ff ff ff ff ff ff ff fa ...                 

proxmark3> 
proxmark3> data samples 4000
Reading 4000 samples
          
Done!
          
proxmark3> data plot
proxmark3> 
proxmark3> 
proxmark3> data save test.txt
saved to 'test.txt'          
proxmark3>

data plot
test.txt - http://www.sendspace.com/file/ri1kr8

thanks in advance for any help

Offline

#2 2014-01-25 23:12:03

midnitesnake
Contributor
Registered: 2012-05-11
Posts: 151

Re: help identifying a tag

need more samples 8000? looks like EM4100?

Last edited by midnitesnake (2014-01-25 23:14:19)

Offline

#3 2014-01-25 23:22:12

asper
Contributor
Registered: 2008-08-24
Posts: 1,409

Re: help identifying a tag

Unfortunately your LF 125kHz antenna voltage is not so good.

Offline

#4 2014-01-25 23:25:59

yoava333
Member
Registered: 2014-01-25
Posts: 6

Re: help identifying a tag

proxmark3> lf read
#db# buffer samples: 7e 7e 7d 7d 7c 7c 7c 7b ...                 
proxmark3> 
proxmark3> 
proxmark3> 
proxmark3> data samples 16000
Reading 16000 samples
          
Done!
          
proxmark3> 
proxmark3> 
proxmark3> data plot
proxmark3> data save test2.txt
saved to 'test2.txt'          
proxmark3>

data samples 16000
test2.txt - http://www.sendspace.com/file/cwp05z

how can i test if this is em4x?

Offline

#5 2014-01-25 23:50:18

asper
Contributor
Registered: 2008-08-24
Posts: 1,409

Re: help identifying a tag

Try to read it with specific LF em41xx command.

Offline

#6 2014-01-26 08:42:22

yoava333
Member
Registered: 2014-01-25
Posts: 6

Re: help identifying a tag

The em410xread read command is failing ("Thought we had a valid tag but failed at word ...")
Do you have another idea for identifying this tag?
Regards

Offline

#7 2014-01-26 10:44:25

midnitesnake
Contributor
Registered: 2012-05-11
Posts: 151

Re: help identifying a tag

EM41x = 0x4b00800fe8

proof:

proxmark3> data load ../../Downloads/test2.txt 
loaded 16000 samples          
proxmark3> data plot
proxmark3> lf hid demod     
proxmark3> data mandemod
Warning: Manchester decode error for pulse width detection.          
(too many of those messages mean either the stream is not Manchester encoded, or clock is wrong)          
Unsynchronized, resync...          
(too many of those messages mean the stream is not Manchester encoded)          
Manchester decoded bitstream          
1 0 1 1 1 1 1 1 1 1 1 1 0 0 0 0          
1 0 0 0 1 0 0 1 1 1 0 0 0 0 1 1          
0 0 0 0 0 0 0 0 0 1 0 1 1 0 0 1          
0 0 0 1 1 1 1 1 1 1 1 1 1 0 1 1 
1 0 1 1 1 1 1 1 1 1 1 1 0 0 0 0          
1 0 0 0 1 0 0 1 1 1 0 0 0 0 1 1          
0 0 0 0 0 0 0 0 0 1 0 1 1 0 0 1          
0 0 0 1 1 1 1 1 1 1 1 1 1 0 1 1

and

proxmark3> data load ../../Downloads/test2.txt
loaded 16000 samples          
proxmark3> data askdemod 1
proxmark3> data mandemod
Warning: Manchester decode error for pulse width detection.          
(too many of those messages mean either the stream is not Manchester encoded, or clock is wrong)          
Manchester decoded bitstream          
0 0 0 1 0 0 0 0 0 0 0 0 0 0 1 1          
1 1 0 1 1 1 0 1 1 0 0 0 1 1 1 1          
0 0 1 1 1 1 1 1 1 1 1 0 1 0 0 1          
1 0 1 1 1 0 0 0 0 0 0 0 0 0 0 1          
0 0 0 1 0 0 0 0 0 0 0 0 0 0 1 1          
1 1 0 1 1 1 0 1 1 0 0 0 1 1 1 1          
0 0 1 1 1 1 1 1 1 1 1 0 1 0 0 1          
1 0 1 1 1 0 0 0 0 0 0 0 0 0 0 1          
0 0 0 1 0 0 0 0 0 0 0 0 0 0 1 1          
1 1 0 1 1 1 0 1 1 0 0 0 1 1 1 1          
0 0 1 1 1 1 1 1 1 1 1 0 1 0 0 1          
1 0 1 1 1 0 0 0 0 0 0 0 0 0 0 1          
0 0 0 1 0 0 0 0 0 0 0 0 0 0 1 1          
1 1 0 1 1 1 0 1 1 0 0 0 1 1 1 1          
0 0 1 1 1 1 1 1 1 1 1 0 1 0 0 1

Last edited by midnitesnake (2014-01-26 10:47:42)

Offline

#8 2014-01-26 15:11:12

yoava333
Member
Registered: 2014-01-25
Posts: 6

Re: help identifying a tag

midnitesnake, Thanks for the response.
I can see that there is a pattern that emerges and if I decode the bits I get it 0x1003dd8f3fe9b801 and not 0x0x4b00800fe8, what am I doing wrong?
Could you explain what is the meaning of the tests that you performed, and how did you determine that this interpretation is correct?
Regards
Yoav

Offline

#9 2014-01-26 15:28:20

app_o1
Contributor
Registered: 2013-06-22
Posts: 247

Re: help identifying a tag

yoava333 wrote:

midnitesnake, Thanks for the response.
I can see that there is a pattern that emerges and if I decode the bits I get it 0x1003dd8f3fe9b801 and not 0x0x4b00800fe8, what am I doing wrong?
Could you explain what is the meaning of the tests that you performed, and how did you determine that this interpretation is correct?
Regards
Yoav

He said "EM41x".
Have a look on Google...

Offline

#10 2014-01-26 21:17:49

midnitesnake
Contributor
Registered: 2012-05-11
Posts: 151

Re: help identifying a tag

put the pattern in http://andrewmohawk.com/EM41X/ - look at the green one! open the details section to understand the bit layout and parity checks, it should then all make sense.

Offline

#11 2014-01-26 21:50:17

asper
Contributor
Registered: 2008-08-24
Posts: 1,409

Re: help identifying a tag

midnitesnake wrote:

put the pattern in http://andrewmohawk.com/EM41X/ - look at the green one! open the details section to understand the bit layout and parity checks, it should then all make sense.

Hi midnitesnake, can you ask the author to add also these bit "scrambling" patterns to the above fantastic page ?

Offline

#12 2014-01-26 23:11:56

yoava333
Member
Registered: 2014-01-25
Posts: 6

Re: help identifying a tag

Thanks all, I've managed to read my card

Offline

Pages: 1

Board footer

Powered by FluxBB