Re: Mifare Classic Key Recovery tool - "Dark Side" Attack

thefkboss wrote:

the problem is 32-bit system try in 64-bit
there is bug in the code

Thanks, I suspected that.

However, I found a solution.
The old 32-bit binary mfcuk_keyrecovery_darkside_win32.exe found there works fine:
http://code.google.com/p/mfcuk/source/b … /r55/?r=64

Re: Mifare Classic Key Recovery tool - "Dark Side" Attack

thefkboss wrote:

the problem is 32-bit system try in 64-bit
there is bug in the code

I tested on Ubuntu 12.04, both 32-bit and 64-bit and it produces the same issue.
For example, I set Key A on my card to ABABABABABAB, but MFCUK recovers a key of "ef5ad934abab". The first 4 bytes, as usual, are different every time.

78 (edited by thefkboss 2012-12-19 10:08:08)

Re: Mifare Classic Key Recovery tool - "Dark Side" Attack

devadvance wrote:

I tested on Ubuntu 12.04, both 32-bit and 64-bit and it produces the same issue.
For example, I set Key A on my card to ABABABABABAB, but MFCUK recovers a key of "ef5ad934abab". The first 4 bytes, as usual, are different every time.

it´s strange i only have that problem with 32-bit system
could you try with another 64-bit distro different form ubuntu or a less version of Ubuntu for example Ubuntu 10 x 64-bit??

79 (edited by devadvance 2012-12-20 23:48:19)

Re: Mifare Classic Key Recovery tool - "Dark Side" Attack

thefkboss wrote:

it´s strange i only have that problem with 32-bit system
could you try with another 64-bit distro different form ubuntu or a less version of Ubuntu for example Ubuntu 10 x 64-bit??

Just finished trying with Ubuntu 10.04 LTS 64-bit, same result:

./mfcuk -C -R 1 -s 250 -S 250 -v 3 -o test5
[...]

ACTION RESULTS MATRIX AFTER RECOVER - UID __ __ dc 23 - TYPE 0x08 (MC1K)
---------------------------------------------------------------------
Sector    |    Key A    |ACTS | RESL    |    Key B    |ACTS | RESL
---------------------------------------------------------------------
0    |  000000000000    | . . | . .    |  000000000000    | . . | . .
1    |  f134b00eabab    | . R | . R    |  e3922f4bffff    | . R | . R
2    |  000000000000    | . . | . .    |  000000000000    | . . | . .
3    |  000000000000    | . . | . .    |  000000000000    | . . | . .
4    |  000000000000    | . . | . .    |  000000000000    | . . | . .
5    |  000000000000    | . . | . .    |  000000000000    | . . | . .
6    |  000000000000    | . . | . .    |  000000000000    | . . | . .
7    |  000000000000    | . . | . .    |  000000000000    | . . | . .
8    |  000000000000    | . . | . .    |  000000000000    | . . | . .
9    |  000000000000    | . . | . .    |  000000000000    | . . | . .
10    |  000000000000    | . . | . .    |  000000000000    | . . | . .
11    |  000000000000    | . . | . .    |  000000000000    | . . | . .
12    |  000000000000    | . . | . .    |  000000000000    | . . | . .
13    |  000000000000    | . . | . .    |  000000000000    | . . | . .
14    |  000000000000    | . . | . .    |  000000000000    | . . | . .
15    |  000000000000    | . . | . .    |  000000000000    | . . | . .

I set key A to ABABABABABAB and key B is still FFFFFFFFFFFF.

What version/revision of libnfc and MFCUK are you using? I am using the devel version of both:
libnfc (git) revision 2a1558fb3250 (from September 28, 2012)
mfcuk (svn) revision 80 (from September 28, 2012)

EDIT:

I just tested:
libnfc 1.5.1 (git) revision 67529510841d (from October 18, 2011)
mfcuk (svn) revision 52 (from September 25, 2011)
System: Ubuntu 12.04 LTS 64-bit, fully updated

I used the same card as before, key A: ABABABABABAB and key B: FFFFFFFFFFFF.


devadvance@UBULAP64:~/mfcuk/old/mfcuk-read-only/src$ ./mfcuk_keyrecovery_darkside -C -R 1 -s 250 -S 250 -o test7
[...]

devadvance@UBULAP64:~/mfcuk/old/mfcuk-read-only/src$ hexdump test7 
0000000 ____ 23dc 0800 0000 0000 0000 0000 0000
0000010 0000 0000 0000 0000 0000 0000 0000 0000
*
0000070 abab abab abab 0202 0202 ffff ffff ffff
0000080 0000 0000 0000 0000 0000 0000 0000 0000
*
0001000

So it appears that somewhere along the way MFCUK was broken, or the functions in libnfc that it relies on are different than before?

80 (edited by thefkboss 2012-12-23 11:11:03)

Re: Mifare Classic Key Recovery tool - "Dark Side" Attack

I'm sorry i had an old version
devadvance you were right in x64 happend the same i had tried with debian x64 6.0.6