Proxmark3 v4.20469 "Daddy Iceman" Released

Version 4.20469, nicknamed “Daddy Iceman”, of the Iceman fork of the Proxmark3 is released. This release focuses on dramatic iCLASS recovery performance gains and better cross-card technology detection, with new standalone modes and fixes for Proxmark 3, RDV4 and iCopy-X users.

Highlights

  • hf iclass legrec saw large performance work: code optimizations delivered roughly a 147% speed increase, plus a --fast option (with automated AA2 block selection) and a --sl option that tweaks communication delays for further gains.
  • hf iclass legbrute gained multithreading support, substantially cutting brute-force time on the 40-bit keyspace.
  • New iCLASS glitching simulations: hf iclass sim -t 6 glitches the SIO block and hf iclass sim -t 7 glitches key block responses, useful for downgrade and recovery research.
  • hf iclass trbl was renamed to hf iclass tear and now has a device-side implementation, with readability improvements and correct credit-key handling for partial tear-off results.
  • New HF_ST25_TEAROFF standalone mode stores and restores ST25TB tags with tear-off for counters, runnable without a host.
  • Card-technology detection was refactored across the client: hf 14a info and hf mf info now detect and report when a different card technology is present, and hf mf autopwn exits on DESFire and limits attacks on MIFARE Plus.
  • New hf_mfu_ultra.lua script restores dumps to ULTRA/UL-5 tags and clears previously written ULTRA tags.
  • Added the new PM3ULTIMATE platform to the build and docs, including FPGA compilation support.

Contributors

This release landed thanks to @antiklesys, @iceman1001, @doegox, @n-hutton, @seclabz, @mak-42, @sup3rgiu, @BIOS9, @rfidgeek1337, and others.

Read the full changelog and downloads on GitHub.

← All Proxmark News