Howdy Folks,
I have my lunch break right now and since my proxmark arrived, I’ve decided to give it a spin. Flashing bootrom and full image of iceman fork was a breeze. It took me less time compared to brewing a coffee. So now it’s playtime
I mentioned in my previous topic that I have one tag which I cannot read with the flipper. Well I can read it with the proxmark just fine.
So the usual drill went as follow
lf search - nothing.
hf search and we have a winner
I will for sure spend more time researching this product, but just to cut some corners(and share some experience). Is the mim256 clonable to something like gena1 1k s50 ? Maybe a lame question but I just discovered mim256 15 mins ago. Thanks a lot!
Next would be to dump the tag memory. Lua is not my strongest language, but it doesn’t look like a quantum mechanics as well.
Let’s see after I dump the data what I could do with it.
Thanks for the link!
btw one more thing( or actually a few)
seems like the legic is officially supported in the proxmark
check this out
hf legic info
also the lua script advices to create a hex dump via
hf legic save my_dump.hex
@amal@Pilgrimsmaster
Folks do you know if legic prime mim256 can be emulated or replicated(please check the posts above)? I am almost sure the answer is not really, but I am looking for your input. Thanks!
No worries @Pilgrimsmaster
I am researching the topic as we speak. Not much info thou.
Found some official specs under LEGIC Smartcard ICs: LEGIC
I also found the following presentation made from two very interesting individuals, which I am planning to watch right now https://www.youtube.com/watch?v=MvTEA5FD1uo
Looks like a nice thing to research and to play with.
I managed to emulate my legic prime mim1024 successfully with the proxmark3 easy, next step is to clone it. not sure if i’m able to clone it onto any old nfc card but i will try and report back.
I see, so only block content is changeable on legic prime cards and not UID, and there are no magic cards compatible with legic prime readers that allow you to change the UID?
Glad to see there is some movement on the topic I’ve created after some time, unfortunately not the desired outcome. Anyways I gave up cloning the legic long ago
Hi there.
I just ordered a proxmark3, have not received it yet but looking for information and learning.
I’m a system consultant in a company dealing with ID cards, printers for ID cards and all of those little and big things surrounding the cards.
And I’m responsible for analysing customer cards to offer replacements and encoding of smartcards. So I have quite a bunch of encoders and readers in my drawer.
Regarding the LEGIC prime cards:
Those Legic cards are quite special. To encode them, you alway need a legic encoder (with a genuine Legic Chipset allowed for not only reading but encoding media!). And, what most people are not aware of: You need an authorization media (a smartcard), called “IAM” (Initialization Authorization Media). It’s like a security card needed for ordering new keys for your door locks. Without this card you are not able to initialize this Legic card. All our customers have to send us their IAM-Card for ordering new media (usually older access-control-systems). The IAM-card contains a so called “Stamp”, this is a unique code belonging to a single customer and system. This stamp is written on the destination card, too. All readers in the system are programmed (with a different authorization media [SAM] again) to only accept cards with this stamp.
Legic prime does have a proprietary protocol, it’s not standard ISO14443 or any other. The newer Legic Advant is more compliant to industry-standards - but it’s not cracked yet, like Mifare DESFire.
But since Legic prime is hacked and considered unsafe - maybe there’s a way to get data on the media without the genuine tools and authorization media.
Interesting in this matter:
When I receive my Proxmark, I will check myself, what’s possible.
Searching for LEGIC tag…