Proxmark3 community

Research, development and trades concerning the powerful Proxmark3 device.

Remember; sharing is caring. Bring something back to the community.


"Learn the tools of the trade the hard way." +Fravia

You are not logged in.

Announcement

Time changes and with it the technology
Proxmark3 @ discord

Users of this forum, please be aware that information stored on this site is not private.

#1 2011-10-05 23:54:20

dorian g
Member
Registered: 2011-10-05
Posts: 2

longer range antenna, hid maxi prox + PM3

hello all,

i am interested in trying to use a 5375AGN00 MaxiProx with my proxmark3. i have asked some general information from the gentleman that runs proxclone.com, mainly because he is the inspiration of my own idea. I am trying to replicate his setup

http://proxclone.com/Long_Range_Cloner.html

he has made a custom cloner card and i was thinking along the lines of using my proxmark3.

my question is as follows, assuming the MaxiProx is operating normally it pushes wiegland card data out via a +data line and a -data line. i wonder where that data should enter the promark3.

with my half assed understanding of promarks, and half assed understanding of how to read schematics i am thinking i know just about enough to fry my card. i am assuming that it should enter somewhere after the a/d convertor. but in all honesty i really have no idea.

does anyone have ideas?

DG

Offline

#2 2011-10-06 09:32:04

0xFFFF
Administrator
From: Vic - Australia
Registered: 2011-05-31
Posts: 632

Re: longer range antenna, hid maxi prox + PM3

I have ideas but I don't know if all of them are right! tongue

The HID 125kHz Prox family use Frequency-Shift Keying. There are a few resources out there that explain FSK in great detail.
The data + line and data - line you are referring are 'data 1' and 'data 0' lines. These are TTL lines that will pulse on and off to represent either a 1 or a 0 in the card data bit stream. This has nothing to do with the RF portion of the HID reader or the Proxmark.
You could connect a FTDI USB<->TTL converter directly to those lines. You'll need to write a program to interpret the data.
Depending on the card format you'll probably see something like this - 11011101000000001100100101 where bits 1-8 are the Site code and bits 9-24 are the card number.

You cannot 'inject' this data in to the Proxmark the way you are describing. You could modify the Proxmark slightly to allow connection of a reader. There are a lot of bumps along that road. Manufacturers have a number of interfaces to their readers. Wiegand is only one of them and none of them stick to a standard with regards to timing, pull up/down, etc...

You've got a lot of research to do.

Hope this helps.

Offline

#3 2011-10-07 00:15:32

dorian g
Member
Registered: 2011-10-05
Posts: 2

Re: longer range antenna, hid maxi prox + PM3

it does help, thank you for responding. i know i have barely scratched the surface of things RFID, actually i have barely scratched the surface of a lot of things in this forum. but i love reading and trying to understand. again, thanks for taking the time to respond!!

Offline

#4 2011-10-07 00:36:52

Bugman1400
Contributor
Registered: 2010-12-20
Posts: 132

Re: longer range antenna, hid maxi prox + PM3

I would try to replicate what Carl did on Proxclone and forget the integration with the proxmark3. You will learn enough to fill a dump truck.

I am doing the same thing with his Proximity Card Reader/Cloner. What I have learned so far is,

1.) How to use ExpressSCH and ExpressPCB
2.) Order a custom PCb and parts from DigiKey and Newark
3.) How to initialize a HD44780 LCD
4.) How to program a Parallax SX28 and use its SX-Key Editor
5.) Assembly programming.......Carl loves assembly!

Yet, I am still only half way through.

He has also written another fantastic paper on iClass Cloner.

Good Luck!

Offline

Board footer

Powered by FluxBB