I recently purchased the VivoKey Spark 2 and I’m really excited to start exploring its possibilities. I have a question regarding its compatibility with my building’s access system.
I currently use a Vigik badge to access the entrance of my building here in France. I was wondering if it’s possible to clone or emulate this type of badge using my Spark 2 implant so that I could open the building door with it.
Additionally, if that is possible, is there a way to store and switch between multiple access badges (for example, for different doors or buildings)?
If this is not possible with the Spark 2, could you kindly let me know which implant would allow me to achieve this kind of functionality?
Based on this you’d need an xMagic implant. Before buying though be sure to scan your real key fob using taginfo and post a screenshot of the Full Scan tab.
I had a look at the xMagic implant, and it does seem like the right choice for what I want to do.
That said, I’ve also been looking into the NExT Access Kit + ProxMark3 Easy + Booster Board bundle available in the shop. I was wondering:
Does this kit include everything I would need to achieve the same goal, or would I still need to get the xMagic separately?
My main objective is to be able to use my implant with the Vigik system in my building, but I’m also starting to really get into this whole field. I’d love to have something that allows me to do more in the future — not just this one task — so if the NExT kit or other tools add more capabilities beyond just Vigik compatibility, I’m very interested in that as well.
Unfortunately, I can’t send the TagInfo screenshot just yet because I’m using an iPhone, and it doesn’t seem to work properly with the app — I can’t get it to read the Vigik badge. I suspect it’s due to iOS being quite restrictive.
I’ll have access to an Android phone later this evening, and I’ll send the screenshot then.
According to Google, the Vigik system uses “Mifare Classic” chips. In the world of ISO14443A compliant RFID / NFC chips, there are several different types of chips. They all speak ISO14443A but the features they have, memory structures, and basically how they work is all different.
The xMagic contains a “magic mifare” chip that emulates a “Mifare Classic” chip. This has a 4 byte NUID (non-unique ID) and memory arranged in 16 byte sectors, with each sector protected by an access bit and key block. The NExT contains an NTAG216 chip with 7 byte UID (unique ID) and memory arranged in 4-byte pages. The way they work is fundamentally different. You will need an xMagic.
Once we confirm with your Andorid phone that your Vigik key fob / card is really a Mifare Classic style chip, we can proceed with xMagic selection (there are two types, gen1a and gen2).
I also took the time to do a deeper scan using Mifare Classic Tool app and I can confirm that I’m able to read the tag properly. However, as you mentioned earlier, I can’t clone or write this kind of data to the VivoKey Spark 2 — so you were absolutely right.
That said, the xMagic sounds like a great fit for my current needs, and I’ll likely go with that but I don’t know how to really understand it.
I do have one more question though:
In the future, I’d love to push things further and possibly clone my Navigo transit card (used here in France) onto an implant. I understand this is more complex due to security protocols and encryption, but is there any chip or implant that would be compatible or capable of emulating a Navigo pass ?
Thanks again for all your help — I’m really enjoying diving into this field!
Thanks a lot for all the details — that really helps clarify things!
Yes, my Spark 2 is already installed, and I’ve started experimenting with what it can do. Thanks also for the Spark Actions links — I had seen them, but I’ll dig deeper now that I know it’s actively supported.
Regarding your suggestions:
• I definitely want to go further into this field. My interest keeps growing, and I’m really motivated to explore both the security/access side and potential identity or interaction use cases.
• Budget-wise, I’d prefer to invest gradually, but I’m okay with making a solid base setup now if it gives me versatility going forward.
So if I understand correctly, the best setup for now and the near future would be:
→ Bundle with NExT + Proxmark3 Easy + Booster Board
→ And either xMagic or FlexM1 (with FlexM1 having a better chance with the Vigik system)
Would you say it’s worth choosing the FlexM1 over the xMagic from the beginning? Or is it smart to have both at some point?
Also, I’d love to hear the ideas you mentioned — especially if they help build a long-term implant ecosystem with more features over time (like crypto, payments, identity, etc.).
Thanks again for taking the time — I really appreciate your advice!
Can show the “Full Scan” tab or at least confirm the ID is 4 hexadecimal bytes and not 7 bytes? The ID would look something like “ID: A4:E8:73:18” as the hex bytes are represented as alphanumeric codes 0-9 and A-F so like a single byte in hex is something like 8F or 31 or 01 or FF or AA… and bytes are separated by colons like 03:F1:8A:DE
Yes, what you loose not getting the xMagic is a LF T5577 chip, but, if you get a NExT in your bundle, it has one and you can use that with the xAC plus the FlexM1 will be the better option for you lock.
There is a very small chance, but if you do another TagInfo scan that will answer the question.
There is another possible option using the conversion service.
Ok… next challenge… see all those XX… that means the sectors are secured. Luckily the old mifare classic chips are vulnerable to attacking and breaking that security using tools like the proxmark3.
Next step is to buy a proxmark3 to see if you can crack that card and get they keys and memory contents. Without doing that, am xMagic will be useless basically.
Here’s the full TagInfo scan of my Navigo card as promised — let me know if there’s any chance of making it work, or if the conversion service might be the only path.
Also, I’ve been doing some reading about the Apex Flex, and I saw that while it’s theoretically capable of doing things like payments, in practice it seems that banks don’t currently allow users to upload their own cards due to security restrictions — is that still the case?
Is there any workaround, or official path, for integrating your own payment card into an Apex?
For example, can I scan the chip from my bank card and transfer it somehow, or is it a hard no from the banking systems?
Really curious about that, because the idea of having secure ID + crypto + payment all in one implant is super appealing.
Thanks a lot again — your help is truly appreciated!
That makes sense now — I did notice all the XX in the scan and figured it wasn’t going to be that simple.
I’ve read a bit about Proxmark3 attacks on MIFARE Classic cards, but I’ll be honest… I’m not exactly a hacking genius
Do you think it’s manageable for someone who’s new to this, as long as I follow tutorials carefully? Or is it really something that requires deeper programming or command line experience?
I’m definitely motivated to learn — I just want to make sure I’m not getting in way over my head with the Proxmark3.
It’s a an ISO14443B card… rare. Conversion may be possible… can you post screenshots of the other tabs, or just tap the share icon and post the full scan txt or xml file it saves?
Well, it would never be allowed to copy bank cards… that has never been the case and will never be the case. What is allowed is legitimately supported payment features on a capable chip like the Apex… these are called “payment instruments” and each specific type must go through various levels of approval and certification. Currently the payment networks that control such things (Mastercard, Visa, Europay, etc.) do not allow implants to be payment instruments, even though Apex is capable. It has nothing to do with what banks want. Banks don’t even get a say really. International banking and point of sale payment systems (card systems) are two entirely different worlds, bolted together in an unholy union. The card might have a bank name on it, but it is not something the bank has any real control over as far as how it works or what’s allowed.
There are options like conversions of existing devices. Some in the DT Club have explored these options in ways that you might find interesting.
I agree
I think it’s something that can be tried… if you grab a proxmark3 and want to give it a go, we’re here to help… this thread can serve as that mechanism.
