]> git.zerfleddert.de Git - proxmark3-svn/blob - client/cmdlfhid.c
e580a10db5f44ebc68c8adc2b7e1356b3c87111a
[proxmark3-svn] / client / cmdlfhid.c
1 //-----------------------------------------------------------------------------
2 // Copyright (C) 2010 iZsh <izsh at fail0verflow.com>
3 //
4 // This code is licensed to you under the terms of the GNU GPL, version 2 or,
5 // at your option, any later version. See the LICENSE.txt file for the text of
6 // the license.
7 //-----------------------------------------------------------------------------
8 // Low frequency HID commands (known)
9 //-----------------------------------------------------------------------------
10
11 #include <stdio.h>
12 #include <string.h>
13 #include "cmdlfhid.h"
14 #include "proxmark3.h"
15 #include "ui.h"
16 #include "graph.h"
17 #include "cmdparser.h"
18 #include "cmddata.h" //for g_debugMode, demodbuff cmds
19 #include "lfdemod.h" // for HIDdemodFSK
20
21 static int CmdHelp(const char *Cmd);
22
23 //by marshmellow (based on existing demod + holiman's refactor)
24 //HID Prox demod - FSK RF/50 with preamble of 00011101 (then manchester encoded)
25 //print full HID Prox ID and some bit format details if found
26 int CmdFSKdemodHID(const char *Cmd)
27 {
28 //raw fsk demod no manchester decoding no start bit finding just get binary from wave
29 uint32_t hi2=0, hi=0, lo=0;
30
31 uint8_t BitStream[MAX_GRAPH_TRACE_LEN]={0};
32 size_t BitLen = getFromGraphBuf(BitStream);
33 if (BitLen==0) return 0;
34 //get binary from fsk wave
35 int idx = HIDdemodFSK(BitStream,&BitLen,&hi2,&hi,&lo);
36 if (idx<0){
37 if (g_debugMode){
38 if (idx==-1){
39 PrintAndLog("DEBUG: Just Noise Detected");
40 } else if (idx == -2) {
41 PrintAndLog("DEBUG: Error demoding fsk");
42 } else if (idx == -3) {
43 PrintAndLog("DEBUG: Preamble not found");
44 } else if (idx == -4) {
45 PrintAndLog("DEBUG: Error in Manchester data, SIZE: %d", BitLen);
46 } else {
47 PrintAndLog("DEBUG: Error demoding fsk %d", idx);
48 }
49 }
50 return 0;
51 }
52 if (hi2==0 && hi==0 && lo==0) {
53 if (g_debugMode) PrintAndLog("DEBUG: Error - no values found");
54 return 0;
55 }
56 if (hi2 != 0){ //extra large HID tags
57 PrintAndLog("HID Prox TAG ID: %x%08x%08x (%d)",
58 (unsigned int) hi2, (unsigned int) hi, (unsigned int) lo, (unsigned int) (lo>>1) & 0xFFFF);
59 }
60 else { //standard HID tags <38 bits
61 uint8_t fmtLen = 0;
62 uint32_t fc = 0;
63 uint32_t cardnum = 0;
64 if (((hi>>5)&1)==1){//if bit 38 is set then < 37 bit format is used
65 uint32_t lo2=0;
66 lo2=(((hi & 31) << 12) | (lo>>20)); //get bits 21-37 to check for format len bit
67 uint8_t idx3 = 1;
68 while(lo2>1){ //find last bit set to 1 (format len bit)
69 lo2=lo2>>1;
70 idx3++;
71 }
72 fmtLen =idx3+19;
73 fc =0;
74 cardnum=0;
75 if(fmtLen==26){
76 cardnum = (lo>>1)&0xFFFF;
77 fc = (lo>>17)&0xFF;
78 }
79 if(fmtLen==34){
80 cardnum = (lo>>1)&0xFFFF;
81 fc= ((hi&1)<<15)|(lo>>17);
82 }
83 if(fmtLen==35){
84 cardnum = (lo>>1)&0xFFFFF;
85 fc = ((hi&1)<<11)|(lo>>21);
86 }
87 }
88 else { //if bit 38 is not set then 37 bit format is used
89 fmtLen = 37;
90 fc = 0;
91 cardnum = 0;
92 if(fmtLen == 37){
93 cardnum = (lo>>1)&0x7FFFF;
94 fc = ((hi&0xF)<<12)|(lo>>20);
95 }
96 }
97 PrintAndLog("HID Prox TAG ID: %x%08x (%d) - Format Len: %dbit - FC: %d - Card: %d",
98 (unsigned int) hi, (unsigned int) lo, (unsigned int) (lo>>1) & 0xFFFF,
99 (unsigned int) fmtLen, (unsigned int) fc, (unsigned int) cardnum);
100 }
101 setDemodBuf(BitStream,BitLen,idx);
102 if (g_debugMode){
103 PrintAndLog("DEBUG: idx: %d, Len: %d, Printing Demod Buffer:", idx, BitLen);
104 printDemodBuff();
105 }
106 return 1;
107 }
108
109 int CmdHIDReadFSK(const char *Cmd)
110 {
111 int findone=0;
112 if(Cmd[0]=='1') findone=1;
113 UsbCommand c={CMD_HID_DEMOD_FSK};
114 c.arg[0]=findone;
115 SendCommand(&c);
116 return 0;
117 }
118
119 int CmdHIDSim(const char *Cmd)
120 {
121 unsigned int hi = 0, lo = 0;
122 int n = 0, i = 0;
123
124 while (sscanf(&Cmd[i++], "%1x", &n ) == 1) {
125 hi = (hi << 4) | (lo >> 28);
126 lo = (lo << 4) | (n & 0xf);
127 }
128
129 PrintAndLog("Emulating tag with ID %x%16x", hi, lo);
130 PrintAndLog("Press pm3-button to abort simulation");
131
132 UsbCommand c = {CMD_HID_SIM_TAG, {hi, lo, 0}};
133 SendCommand(&c);
134 return 0;
135 }
136
137 int CmdHIDClone(const char *Cmd)
138 {
139 unsigned int hi2 = 0, hi = 0, lo = 0;
140 int n = 0, i = 0;
141 UsbCommand c;
142
143 if (strchr(Cmd,'l') != 0) {
144 while (sscanf(&Cmd[i++], "%1x", &n ) == 1) {
145 hi2 = (hi2 << 4) | (hi >> 28);
146 hi = (hi << 4) | (lo >> 28);
147 lo = (lo << 4) | (n & 0xf);
148 }
149
150 PrintAndLog("Cloning tag with long ID %x%08x%08x", hi2, hi, lo);
151
152 c.d.asBytes[0] = 1;
153 }
154 else {
155 while (sscanf(&Cmd[i++], "%1x", &n ) == 1) {
156 hi = (hi << 4) | (lo >> 28);
157 lo = (lo << 4) | (n & 0xf);
158 }
159
160 PrintAndLog("Cloning tag with ID %x%08x", hi, lo);
161
162 hi2 = 0;
163 c.d.asBytes[0] = 0;
164 }
165
166 c.cmd = CMD_HID_CLONE_TAG;
167 c.arg[0] = hi2;
168 c.arg[1] = hi;
169 c.arg[2] = lo;
170
171 SendCommand(&c);
172 return 0;
173 }
174
175 static command_t CommandTable[] =
176 {
177 {"help", CmdHelp, 1, "This help"},
178 {"demod", CmdFSKdemodHID, 1, "Demodulate HID Prox from GraphBuffer"},
179 {"read", CmdHIDReadFSK, 0, "['1'] Realtime HID FSK Read from antenna (option '1' for one tag only)"},
180 {"sim", CmdHIDSim, 0, "<ID> -- HID tag simulator"},
181 {"clone", CmdHIDClone, 0, "<ID> ['l'] -- Clone HID to T55x7 (tag must be in antenna)(option 'l' for 84bit ID)"},
182 {NULL, NULL, 0, NULL}
183 };
184
185 int CmdLFHID(const char *Cmd)
186 {
187 CmdsParse(CommandTable, Cmd);
188 return 0;
189 }
190
191 int CmdHelp(const char *Cmd)
192 {
193 CmdsHelp(CommandTable);
194 return 0;
195 }
Impressum, Datenschutz