Chameleon mini Rev G (MF Detection/Reader attack) #226
Comments
|
Not with standard firmware. |
|
I've attempted to bodge this feature into the current Rev G firmware and I'm clueless. I've asked the devs for the RevE Rebooted if they could assist with adding this feature to my fork of the Rev G firmware but they just tell me to go here. Would be nice if they could help out, and if not then we'll have to pray that someone gets this working on the rev g or pray we can afford to purchase a rev e rebooted. https://github.com/lavanoid/ChameleonMini/commit/0ad00933b5aeca77cb0722e145d630c656dbe768 Currently the RevG just locks up with a red LED and I don't know why. |
|
hi @lavanoid I tried the same time ago. found my local repo and pushed it now c8249d5 . There I don't get problems with red LED. But I am not sure if its working. Have no experience with detection function and are not sure what exactly is needed. I checked your code. Looks almost identical what I have done. What have I done:
|
|
I just built the firmware with your commits and it seems to be working, however I have no idea what GUI to use to run mfkey. The latest build of ChameleonMini-rebootedGUI hides the mfkey option when detecting the Rev G. I thought maybe something would be stored in the Chameleon device logs but I don't seem to have anything in there. This is the video I watched, to get an idea of how the MF_DETECT function works: https://www.youtube.com/watch?v=1VpXC3-eKhc |
|
Try my GUI fort Rev G
https://gitlab.com/Gtpy/ChameleonMini-RevG_GUI
It Support the mfkey.
Gesendet von ProtonMail mobile
…-------- Original-Nachricht --------
An 25. Aug. 2019, 19:04, Lava Git schrieb:
I just built the firmware with your commits and it seems to be working, however I have no idea what GUI to use to run mfkey. The latest build of ChameleonMini-rebootedGUI hides the mfkey option when detecting the Rev G.
I thought maybe something would be stored in the Chameleon device logs but I don't seem to have anything in there.
This is the video I watched, to get an idea of how the MF_DETECT function works: https://www.youtube.com/watch?v=1VpXC3-eKhc
|
|
That seems to work! Requires a few retries and doesn't always find the keys (might just be because I'm using Mifare Classic Tool on Android and not an actual reader) but it does indeed work.
|
|
UID changes worked. How you check it with MCT? I never tried this :) |
ghost
mentioned this issue
|
1.) Select "Read Tag" MCT will then attempt to authenticate with the Chameleon with the keys I told it to use, just like what a reader would do :) |
|
Ok thanks. Need to use MCT more :) |
|
Greetings, my fellow Linux user 🐱
|
|
Hi Gtpy, Thanks for the job! I use your GUI Ver.: 1.1.0.4 and firmware update on chameleon is done. MF_DETECTION is now in the pick list (new configuration), but I get "202:INVALID PARAMETER" in configuration field as soon as I try to select it. Thank you Nico |
|
Hi Nico, I think you compiled the firmware from emsec/Chameleon-Mini: Master Branch , right? |
|
Hi Gtpy,
Indeed I think it is my mistake.
I 've used Chameleon-Mini.eep and
<8ffa1aa#diff-5c136db2684df0e3b594562be6cce930>
Chameleon-Mini.hex
<8ffa1aa#diff-5c136db2684df0e3b594562be6cce930>
from master branch. Unfortunately, I feel not very comfortable with
compiling fork. I'm going to wait it will be merged, or if anyone could do
the job, it will be appreciated...
Thanks
Regards
Le jeu. 12 sept. 2019 à 17:52, Gtpy <[email protected]> a écrit :
… Hi Nico,
I think you compiled the firmware from emsec/Chameleon-Mini: Master Branch
, right?
Because emsec not merged the detection feature yet, you’ll need to clone
from my fork(gtpy:mfDetection) look at: #229
<#229>
—
You are receiving this because you authored the thread.
Reply to this email directly, view it on GitHub
<#226?email_source=notifications&email_token=AKYE7IAGUYJRVJZUVM5J23TQJJQS7A5CNFSM4ILRM2UKYY3PNVWWK3TUL52HS4DFVREXG43VMVBW63LNMVXHJKTDN5WW2ZLOORPWSZGOD6SLTGI#issuecomment-530889113>,
or mute the thread
<https://github.com/notifications/unsubscribe-auth/AKYE7IFQZRK3EYYX3QLKF6TQJJQS7ANCNFSM4ILRM2UA>
.
|
|
Check out my repo for MF Detection support on the Rev G. It has had some changes made to it, for readers that check the card capacity. Here is a pre-compiled version with the latest commits in my repo: https://github.com/lavanoid/ChameleonMini/releases/tag/BETA-RevG |
|
I think it might be time to close this issue @geo-rg @david-oswald |
|
I tried to use gtpy's code in #229 but it seems their GUI is not available any more 😢: https://gitlab.com/Gtpy/ChameleonMini-RevG_GUI @nico0481 do you (or anyone else) still have a copy of it and could upload it here? I changed the iceman firmware so that it allows to use the mfkey32 attack but it just returns a CRC checksum error. I assume there is some difference in how the data is being transmitted in the Rev. E rebooted firmware and in #229 but I couldn't find any specific difference yet. |
Hello,
Is the Chameleon mini Rev G able to do reader attack (MF Detection).
With which firmware?
I can't find a way to do this.
Thank you
Best regards
Nico
The text was updated successfully, but these errors were encountered: