before buying the proxmark3 on this website i asked the question on wheather or not it cloned picopass cards with the hid iclass dp logo and everybody said yes.
i guess what they meant by saying yes was eventually it should but not right now
I assume you’re referring to this post
To be clear: we have said that it has the functionality to read and clone blocks from HID cards. At no point did we say that there is a 100% guarantee that cloning will work properly and that you will have an all-in-one solution that will be easy to control. If you look back at all the things I’ve written about HID cards, I have always said that SE is not cloneable. We have no clue if and/or when it will ever be possible. I assume that there are researchers working on it now, but I personally doubt SE will be cracked any time in the near future. What we might have said is that DP cards can have the non-SE sections cloned with no problem and work fine.
Some DP cards don’t have SE blocks stored on them. Some do. It all comes down to what system your employer/school/whatever uses. You can’t win if you don’t enter, and the proxmark3 is your ticket.
3 Likes
i never imaged RFID cards were so complexed. Figured you scan a card on a scanner (proxmark3)that reads the data and copies it onto a blank card compatible to the same card. never imagined it to be so complex. ah well that’s life .
i’ll check back in the future who knows maybe someone might find a way to copy these types of cards with new technology
(Oversimplification ahead) Some cards are basically small computers running java applets. These don’t give you the ability to just read the entire card, so you can’t just clone them.
Have a look at your bank card some time if it is NFC capable.
1 Like
Don’t we all wish it were that simple. And by the same token, are glad that it’s not!
ok so i tried the cloned card with only blocks 6-9 copied and no it didn’t work so i figured tonight i try writing all of the blocks one by one and i was able to copy blocks 3-18 exactly the same without an issue. when i tried to copy blocks 2 and 1 i got writing failed so i said ok let me try a doing a
hf ic dump --ki 0 to see how it looks my cloned card so far but to my surprise
i cant see the data anymore because it says it has 2 application areas like in the photo i provided .something it never said till i try cloning block 2
what does this mean and how can i back track myself or fix the issue to see the data again.
do i need to wipe my cloned card and restart the process?
Can i even wipe my cloned card to re-enter data onto it again?
if yes what’s the command line to wipe the card clean and try re -entering the data. any information is greatly appreciated
Block 0 is the UID and cannot be changed. I’m not clear on what block 2 does, but I suspect that’s also not changeable.
Changing the application area sizes is likely to do nothing.
If you did not change block 1, you should be able to change the blocks 6+.
I wonder if one could write an Apex applet to emulate an HID card.
my issue is i dont see the data like i use to when i run the command line
hf ic dump --ki 0.
instead i get message saying card has at least 2 application areas. AA1 limit 18 (0x12) AA2 limit 31 (0x1F).
never say that before.
I’m wondering if you managed to change the partitioning on the card.
Just to make sure, can you restart ProxSpace?
You might have borked the card, which means that you’ll need a new card if you want to keep trying. 
At this point, if you’re planning on going the implant route, I might start talking to @amal about custom services.
Were you able to change the Debit/Credit keys? (Blocks 3+)
uh oh…you did a naughty!
writing directly to block 3 is a big no no! ask me how I know 
I’m not saying it’s impossible to recover from, as there are a few threads over on the proxmark forum I’ve read about reverse engineering the Kd-which is the debit key-aka block 3. It just honestly seemed like more work than it was worth for me (seeing as it was one of several blank cards that I had to experiment with)
@philidelphiaChickens he won’t be able to read or write any blocks or dump now, right? Changing the Kd by manually writing it to match the other credential creates a snafu when trying to authenticate via UID/master key. Or, did I misunderstand what I was reading?
yes. its only when i tried block 2, and 1 it said writing failed
Blocks 0-5 I try to stay well clear of as much as I can.
but all the other command lines still read the card . such as hf ic info. tells me all the info
Yep. You should be able to get info from some of the functions of the card. It seems that you messed with the sections of the card that are needed to access individual blocks, which is why you’re not getting more detailed info.
i figured i try copy every block . looked promising when i started backwards and everything was writing and i would double check and they all copied. its just when i got to 2 it started failing
maybe i can clear a block or restart adding info by erasing the card if thats even possible?
If you messed with block 1, you’ve bricked the card. You’ll need a new one. There is no easy way to repair the issues here.