Proxmark3 v4.16191 Released

This is the v4.16191 “Nitride” release of the Iceman fork of the Proxmark3 firmware and client. Constructed from the commits since v4.15864, it brings new low-frequency brute forcing, much faster magic Gen4 card operations, smartcard module firmware updates, and many fixes.

Highlights

  • Added an lf indala brute command (modeled on lf hid brute) that steps up and down through card numbers, and extended lf indala sim to accept a facility code and card number.
  • Rewrote and sped up the magic Gen4 GTU commands: a select-once flag roughly doubles the speed of hf mf gview and hf mf gload (for example gview --4k drops from about 20 seconds to about 7 seconds), plus new hf mf gload, ggetblk, gsetblk and gsave commands.
  • Improved hf mf dump to try key B when key A is unknown but ACLs allow key B reads, and to zero out unknown keys in the dumped file to mark them as not recovered.
  • Added Magic Gen4 GTU detection and protocol symbols, and made autopwn and hardnested detect Mifare Classic EV1 cards and use the known sector key in key-recovery vectors.
  • Updated the smartcard SIM module firmware to v4.13 (a breaking change for smart commands) with adjusted timings and added init stability waits.
  • Added new Ultralight/NTAG tooling: hf mfu esave, an NTAG216 DT NeXT/xNT implant script, and an NTAG I2C PLUS 2K sector utility script.
  • Fixed an SPI memory overflow when writing oversized key dictionaries by enforcing the layout boundaries (now also reported by hw status) and added one more flash sector for Mifare keys.
  • Fixed a stack-based buffer overflow in lf em 4x05 sniff, fixed trace list -r relative times, and improved NXP SLI/SLIX tag identification.

Contributors

This release landed thanks to @iceman1001, @doegox, @jmichelp, @DidierA, @colonelborkmundus, @Alejandro12120, @mhjack, @wh201906, @nvx, @nitraiolo and others.

Read the full changelog and downloads on GitHub.

← All Proxmark News