Hi! I’m thinking of upgrading to the RDV4, but I’m not sure which antenna to buy. Does anyone have experience with either or both of these non-stock antennas for the RDV4?
I know that a separate antenna is not necessary, but it seems like it would be useful? I saw some posts mention that the original stock antenna has weak signal even with the q-switch.
I previously bought a PM3 Easy prototype antenna from another user here. Similarly, if anyone has any prototypes or project antennas for the RDV4, I’m all ears!
–
Also if anyone is willing to let me buy, rent, or borrow any of these (RDV4, ProxLF, or LF Antenna Set), plz lmk! It would be great to briefly test it to see if it’s right for me. I’m in Texas.
Where did you guys buy your tools? These screenshots are from Hacker Warehouse (official distributor). Another site called ’ Red Team Tools ’ has it for cheaper. Is it necessary to purchase from the official distributor?
Hey @cansh
pm3rdv401 user here
I am located in Europe, so I bought my proxmark from lab401
Got the full set because the discount was pretty good, and was not really sure which antenna would be the best for the use cases I have. Got the pm3, blueshark, extended range lf and hf, proxlf and the smart card reader addon.
My observations / experience so far
Device form factor is amazing. Paired with blushark module gives you cordless. Bare in mind that comm via bt is slow(maybe 1/3 of the usb speed). The module is bt2.0. Next, the modular antenna design is also very smart move.
On the antenna front, I can read all cards and fobs with the stock antenna just fine. I guess you’re asking about interacting with t5577 implants. That’s something I am having a slight trouble with. I can read the implants with all 3 antennas - stock, proxlf, and lf extended, but with none of them I can do lf t55x detect. Which means I cannot write to them… Funny thing is my flipper which costs significantly less than the pm3 combo, writes to my implants just fine. I guess there is a bug in the code, but I have no idea if anyone is paying attention or actually trying to fix it.
Software wise, I was running iceman stable builds, then I switched running the latest master.
If you have any other questions, shoot and if I can I will answer
Oh nooooo, I’m surprised that none of the 3 antennas could “detect” but the Flipper could write?! I’m hoping to interact with t5577s, EM 4305s, etc. With the PM3 Easy, it’s hard to get a “lf t55xx detect” and I was hoping it’s better on the RDV4 with all of the antenna options.
If you had to rank the 3 antennas (stock, ProxLF, LF Antenna Set), how would you rank them? The LF Antenna Set has a long-range antenna that looks large (and the description says ~133mm range), so I’m assuming stronger antenna? But then, the ProxLF seems to be more focused and tight coils, so I’m not sure if that’s better? The ProxLF is also $50 cheaper, so I wonder if it’s not as good?
I do have a Flipper, but Flippers can’t write to EM 4305s yet. I saw posts from the Flipper Team last year saying they’re working on writing to EM 4305s, but I don’t think it’ll be happening any time soon since it’s not a crucial issue
I was surprised as well, especially after I spent ~700 euros on the combo. Not a pleasant surprise thou.
This is related to implants only. At least this is my case, but I do not think this is issue with the hardware.
Four coupling - as you mentioned stock, proxlf, lf extended antenna, so you’re assuming right.
If you can do whatever you need with the easy, upgrading to rdv4 is pointless.
This here is why I didn’t go rd4. I got the 3x and a flipper. I haven’t had time yet to try to write to my implants with the pm3x yet since I also have the flipper and it just makes it so much more convenient.
Yikes this is about to be me spending ~$500 for the RDV4 and the 2 non-stock antennas😱 If not the hardware, what would be the issue then? T5577s in general?
Just to make sure I’m understanding correctly, you’re saying that from worst to best is: Stock Antenna < ProxLF < LF Extended Antenna right?
Wait, in terms of antenna/signal strength, the RDV4 with the non-stock antennas aren’t better than the PM3 Easy? The biggest reason for my upgrade from PM3 Easy to RDV4 is antenna signal strength.
Yeah, I like the Flipper too! I just wish the Flipper could write and unlock EM4305 chips🥲 I have other devices just for the EM4305, but they don’t work very well. I really hope the Flipper Team can figure it out, but I think it’s a non-priority item for them.
Issue in my opinion is software bug. I do not think I have 2 faulty t5577 in 2 diff implants that are writable just fine with flipper, but not with proxmark.
Based on my observation that’s correct.
I do not have easy so I cannot comment/compare
Please bare in mind that whatever I am writing here is purely based on my experience with the device.
Your best bet would be to find someone in TX, meet with him/her and test for yourself.
@cansh here is something. Seems like there is more to it than I was thinking. This morning I built the last from master branch and now
If I do lf search, proxmark gives me just the em41xx configuration but no chip detection. if I execute lf t55xx detect it identifies the chip in the implant.
[usb] pm3 --> lf search
[=] NOTE: some demods output possible binary
[=] if it finds something that looks like a tag
[=] False Positives ARE possible
[=]
[=] Checking for known tags...
[=]
[!] ⚠️ Specify one authentication mode
[+] EM 410x ID 15004A3B5F
[+] EM410x ( RF/64 )
[=] -------- Possible de-scramble patterns ---------
[+] Unique TAG ID : A80052DCFA
[=] HoneyWell IdentKey
[+] DEZ 8 : 04864863
[+] DEZ 10 : 0004864863
[+] DEZ 5.5 : 00074.15199
[+] DEZ 3.5A : 021.15199
[+] DEZ 3.5B : 000.15199
[+] DEZ 3.5C : 074.15199
[+] DEZ 14/IK2 : 00090199178079
[+] DEZ 15/IK3 : 000721559936250
[+] DEZ 20/ZK : 10080000050213121510
[=]
[+] Other : 15199_074_04864863
[+] Pattern Paxton : 358512991 [0x155E795F]
[+] Pattern 1 : 9197562 [0x8C57FA]
[+] Pattern Sebury : 15199 74 4864863 [0x3B5F 0x4A 0x4A3B5F]
[+] VD / ID : 021 / 0004864863
[=] ------------------------------------------------
[+] Valid EM410x ID found!
[=] Couldn't identify a chipset
[usb] pm3 --> lf t55xx detect
[=] Chip type......... T55x7
[=] Modulation........ ASK
[=] Bit rate.......... 5 - RF/64
[=] Inverted.......... No
[=] Offset............ 33
[=] Seq. terminator... Yes
[=] Block0............ 00148040 (auto detect)
[=] Downlink mode..... default/fixed bit length
[=] Password set...... No
[usb] pm3 --> lf t55xx info
[=] --- T55x7 Configuration & Information ---------
[=] Safer key : 0
[=] reserved : 0
[=] Data bit rate : 5 - RF/64
[=] eXtended mode : No
[=] Modulation : 8 - Manchester
[=] PSK clock frequency : 0 - RF/2
[=] AOR - Answer on Request : No
[=] OTP - One Time Pad : No
[=] Max block : 2
[=] Password mode : No
[=] Sequence Terminator : No
[=] Fast Write : No
[=] Inverse data : No
[=] POR-Delay : No
[=] -------------------------------------------------------------
[=] Raw Data - Page 0, block 0
[=] 00148040 - 00000000000101001000000001000000
[=] --- Fingerprint ------------
[+] Config block match : EM unique, Paxton
so detect actually started working somehow
p.s. this is with proxlf antenna
