Proxmark3 v4.14434 Released

This is the “Crimson” release of the Iceman fork of the Proxmark3 firmware and client. Its centerpiece is a large rewrite of the MIFARE DESFire stack, alongside a corrected HID Indala cloning path and several new tools.

Highlights

  • Major MIFARE DESFire rework: native and secure channel handling for d40, EV1 plain, EV1 MAC, and EV1 encrypted modes, with CRC16/CRC32 and CMAC validation moved into a dedicated desfirecrypto module.
  • New DESFire client commands including get UID, get and change key settings, get key version, free memory, format PICC, and application create and delete, exposed under hf mfdes.
  • Added a mfdes default mechanism and CLIGetOptionList in the CLI parser so DESFire commands no longer require re-entering channel and key options each time.
  • Fixed getIndalaBits() so HID Indala 4041X cards clone correctly: a read then clone with the same facility code and serial now produces an identical card.
  • Added the hf_reblay standalone mode for relay attacks, along with supporting Python scripts.
  • Added experimental macOS support for building with MacPorts in addition to Homebrew.
  • Reworked MIFARE MAD handling: corrected the swapped application and cluster codes, added a JSON MAD directory lookup, and decode of the MAD info byte and cardholder information.
  • Added default parameters for hf cipurse so you no longer need to supply them on every call, plus a fix for hf 15 raw that had broken the hf_15_magic.lua script.

Contributors

This release landed thanks to @merlokk, @doegox, @iceman1001, @AxisRay, @linuxgemini, @bettse, @scott4290, @craftbyte, @ah01, @bkerler, and others.

Read the full changelog and downloads on GitHub.

← All Proxmark News