Cyborg in the making with questions

Do you think it’s gonna be worth waiting? I was planning on getting the NExT and xM1 in April.

That really depends on the individual. I’ve opted to hold off on getting my spark in favor of the Apex. Keep in mind though, the install process for a Flex is a little different, and you may have a harder time finding someone to assist you with the install. I personally feel it’s always nice to have an NExT, the two chips in one has proven super awesome so far. I personally have little use for an xM1, but if you need to change your UID for whatever reason, it’s the way to go, from what I’ve read so far.

The Apex I feel should be done in Addition to a NExT, just based off the way I understand the Vivokey products write data.

How is the installation different?

Here’s the installation guide and a picture of the 5.1mm needle for it

I see Pilgrim typing away down there though. He’s got the answers to probably everything in his post. (I genuinely get excited when I see him typing, I’ve yet to find a post of his that isn’t just overflowing with info)

1 Like

@ThexTallxDude I will say the Apex line will actually be released in a glass capsule, a flex piece and a ring.

The “Flex” vs the glass “Max chip” will have no difference between the two besides antenna design. That being said the flex will support Tesla keys were as the Max chip due to its small size might not be able to be read by Tesla reader, but it will be able to produce the Java Applet and keys to unlock the car.


Ooooooooo, I missed that post. I’ll probably go with a flex anyway, instead of fighting with positioning as much.Really hoping I’ve got enough meat on me to get it between my middle and ring finger metacarpals.

1 Like

Sorry I took so long to reply, LIFE got in the way…

@ThexTallxDude has awesomely and quickly put you on the right track.

Just to fill in the Spark Gaps for you ( And NExT that Tall Dude covered), somebody asked the same question just the other day, This is @amal reply

Now that @ThexTallxDude and @amal have answered your other questions, I will attempt to answer your remaing ones, Including the ones you didn’t know to ask :wink:

The NExT is a fantastic Implant. ( My Favourite ) Without a SPECIFIC use, and If I could get only one implant, The NExT would be it.

To answer your xM1 question, It is a legacy product, which now means there are A LOT of systems that used it, It is not secure, BUT that works in our favour, as it has a “backdoor” function, meaning we can write a new UID / NUID to it ( It is the ONLY High Frequency device we can do this with ), HOWEVER it is only compatible with its own system, so as good as it is, there is no point having one if you don’t have access to a system that uses it, But again, there are a lot out in the great wide world so your chances are good.

Before I further answer your questions, I would say to you, all the different options can be both exciting AND overwhelming; I would suggest WE work backwards.
There is no point getting an implant you can’t or don’t know how to use; It is Good for DT sales in the short term, but I THINK It is better for them to have a returning well informed happy customer :+1: telling everybody how awesome their implant is, how they can use it and understand enough to be able to explain how it works to others.

I will shortly send you away to do some research, and when you come back with some answers, we will be able to help you make your decision.
What are you trying to achieve? Access, data storage, Business cards, Payment*?
What is your current use case? if any!
What do you currently have access to use implants on?
Get us as much info as you can ( Access panels, Key cards, fobs, speak to security system admins )
Have a look through the Wikis and FAQs that @ThexTallxDude linked to , they should give you a decent amount of knowledge to make an informed decision.

Without answers from you, I would suggest this:
Get a NExT & Spark2 Now
When released, get an Apex; The Spark 2 will effectively be “replaced” by the Apex BUT the Spark 2 will become a Backup to the Apex, and still be usable in it’s own right.

  • Payment coming in the Apex line eventually…

Hope we have all answered your questions for now, once you have done your research, I’m sure you will have more, but thats what we are here for.



I do my best

Like this???

And it is sparkly, People on here like shiny things


Well that’s the best response I’ve ever gotten out of a forum period. Thanks! And for my research, I am going into the penetration testing world as a career, and just want implants that will be able to cover most systems. If its possible, I want to be able to have a friend ask me “Yeah, well could you clone that one?” And I want to be able to say yes. I don’t have a specific use case as of this moment, but I just want t be able to use it on as many systems as i can. Thanks!


@Larsenic, As an employee with a Red Team firm, I can tell you the NeXT and xM1 Flex would be by far considered the “pentesters kit” it allows you to basically touch 85% of any system you’ll find in the wild.

I’m about to put an order in this weekend when I get back home for a xM1 soooo excited!


Well, That actually helps out to answer your question A LOT, @MouSkxy will be able to give you some good pointers. @DeviantOllam is on this forum from time to time.
He has an xEM in one hand and an xNT in the other, So he can recce access panels, by walking past and swiping and if you get a response, you get an idea of what Frequency you are working with ( I will find you the link from where he mentions this ) (You could use the NExT, but it could cause you issues on a dual-frequency reader) SOME of my work readers do this to me on occasion, which is why I am putting in a specific xEM dedicated to my workplace.

Here are my initial Thoughts
BUT The problem you have is, you will need to (should) plan ahead your placements
NOW, There are sooo many options and variations you could choose, so I will give you one idea, and let @MouSkxy and @DeviantOllam correct me.

Get 2 x xLEDs an LF xLED in one colour and HF xLED as another ( I have Not so subtly, hinted at a 2in1 xLED device for this purpose )
The bonus of this is, using an xLED you will visually, silently and with no interface with the actual system ( It is just energising the LED ) so you can at least get a Frequency, and specifically sniff for the employee cards on a “War walk” with the correct antenna.
Placement, 2in1 ideal, but until then ( if it happens ) you could go HF & LF in the same hand ( at least 5mm apart for safety) or one in each hand.
Argh, I said one suggestion and to many variations, oh well…
So NOW you have your Frequency IDentifier solution, you need something to write to ( UID/ NUID)
Fortunately, your options are made easy by the fact that you only have a couple of options to choose from.
Low Frequency
xEM ( Compatible with may systems )
NExT ( May cause cross talk, although I love :heart: the NExT, in a Pentest, I dont think it is the best tool.

High Frequency
xM1 ( soon FlexM1gen1a & FlexM1gen2 - maybe x Series also??? )
as I said in the other post, This is only compatiable with a specific system, BUT if your target uses it, you are onto a winner.

Now we know your Pentesting career pursuit, I will amend my initial recommendation

Your shopping list is as follows ( for what is currently available in the DT store )
xLED LF Colour a
xLED HF Colour b ( You could get xSIID, PRO storage and access CON potentially not invisible to security system you are trying to stealthfully interrogate )
Spark 2???
You could get more, but that is a good start
Apex When it is available… but now I am getting distracted.
But since I am distracted :stuck_out_tongue_winking_eye:
In the future I would wish for :genie: a Pentest Bundle
2in1 LF/HF xLED + xEM + xM1
I am hoping for a 2in1 xEM/xM1
2in1 xEMLED 2in1 xM1LED ( But would you put HF LED with xM1 or LF LED etc???
Distraction finished

Now where to place your current shopping list?
again many variations, But this time :+1: one suggestion ( you could argue for the other variations, but at the end of the day it is YOUR decision )
Left Hand LF & HF xLEDs
Right Hand xEM & xM1 :raised_hand:

I’ll leave it at that,
Hope that is helpful and some food for thought.
any more questions, feel free to ask, Myself or the others Should be able to answer them.

During my ramblings, @MouSkxy has answered you, Glad we have SIMILAR thoughts :+1:


HERE is the video I mentioned with @DeviantOllam explaining the “interrogation” method with his xEM, The whole video would be a good watch for you, if you haven’t seen it already

Wow. Okay this is now my favorite forum of all time. Thank you so much everyone for the incredible responses. I’m sure I’ll have many more, and now I know who to ask. Y’all are perfect.


Okay I’m already back. Last time for today at least, I promise. I was recommended the two color implants for finding frequencies, the xM1, and the xEM. The xEM does 125 Khz, so my question is, does the xM1 work as a normal reprogrammable 13.56 Mhz chip? It advertises working with MiFare s50 1k, but can it do run-of-the-mill 13.56 sensors? Thanks!

No the xM1 can not do run of the mill 13.56 freq. It is designed specifically for MiFare 1k backdoors as these are the most widely used systems in the wild :+1:.

Think of the 1k as a HiD card that employed shitty security but was sold as a HOLY GRAIL. The world swallowed the blue pill, lol.

Part of the issue here is that there are no such thing as “run of the mil 13.56” anything… even within the HF frequency family there are two very common yet incompatible ISO standards (ISO14443A/B & ISO15693).

A lot of older legacy systems used for building access and sometimes hotel room keys tend to use the Mifare “Classic” 1K chip in their cards, fobs, and badges because it was one of the first passive transponders to proclaim “we have a secure chip!” … but it’s long since been broken. Now the driving factor for keeping these cards in existence is that they are much cheaper than actually secure chips and there are tons of new systems that still support these older cards because they are everywhere… so if you have a large business that has 1000+ readers around various buildings, and you’re adding new readers or replacing ones that die… you can’t move away from the Mifare “Classic” because you’d have to update every single reader… so Mifare “Classic” chips will be around a very long time.

That said, they are not NFC compliant, even though some phones with NFC reader chips from NXP (the company that owns Mifare chip designs) can read them. So now you see NFC chips rising in popularity, and that drives cost down, and so some new access control systems only use more secure chip types like DESFire EV1 or EV2… but by far the most popular 13.56MHz chip used in terms of card count out there is the Mifare “Classic” chip.

Hope that makes sense.

1 Like

So, with the fact that they only do MiFare s50 1k style chips, is it with getting this in conjunction along side something like the NExT? That way I could use NFC enabled applications, I could use 125 Khz things, and I could interface with the MiFare 1k with the xM1. Would that work how I think it would?

DAMN IT, I WAS TYPING AND MISSED @amal and @MouSkxy REPLIED, any way here is MY answer ( It just agrees with the other guys anyway, so feel free to ignore it)

To answer your
Other question.
Yes you could get an NExT, instead of or in conjunction with your xEM, The NExT - xNT for the NFC ability for using with your Phone, business cards etc and to enroll with systems you control ( that are compatiable… we would need more information) in you 13.56MHz “Run of The Mill”


Like you pointed out, the xM1 uses an s50 Mifare Classic 1k (Chinese backdoor magic Chip) There is some history behind it I will find for you, but needless to say, it is some quite old technology, that has a vulnerability / design flaw that we can exploit, which means you can change its UID ( actually in this instance, it is a NUID, Non Unique ID, because of said history ).
But in saying that

This question is quite broad, You could argue that the Mifare 13.56MHz is “run of the mill” because they have been around for so long and there are so many in existence. They were marketed as the next big thing, encrypted Blah blah blah, marketing. THEY WERE NOT.
I would still recommend to you The xM1, because of that fact AND it is better to have it and not need it than need it and not have it. Chances are, if you come accross a HF system and it is an old system, NOT GUARENTEED, but the odds are in your favour it will be compatiable with your xM1.

Clear as mud?
What was the picture at the top?

1 Like

So, the MiFare 1k magic one is so broad and widely used, that it is going to be the most widely applicable one to have. is it worth getting another 13.56 Mhz one to cover my other bases? What I was thinking about was an NExT and the xM1.

I just edited my response just above, that sort of answers that for you.

1 Like