Proxmark3 v4.21611 "BREAKMEIFYOUCAN!" Released

Version 4.21611, nicknamed “BREAKMEIFYOUCAN!”, of the Iceman fork of the Proxmark3 is out. It is a large release heavy on iCLASS attacks and MIFARE DESFire tooling, with new credential ecosystems (Aliro, SECC, Gallagher) and a modernized Qt6 client. Proxmark 3, RDV4 and iCopy-X users get faster brute forcing, new tear-off attacks, and broad new tag support.

Highlights

  • New hf iclass blacktears command performs an automated tear-off of block 1 to force a card into non-secure page mode, a clean way to drop iCLASS page protection.
  • hf iclass legbrute throughput was heavily optimised: recursive cipher functions were replaced with iterative loops, a 256-entry lookup table was added for select(), and per-key bitstream overhead was eliminated. Key-range partitioning across threads was also fixed so threads cover non-overlapping slices of the 40-bit keyspace, with an ETA display and resumable keyboard abort.
  • New --live option on hf iclass lookup recovers a reader’s key live by simulating a tag and running the lookup against both standard and elite dictionaries; hf iclass tagsim was added to quickly simulate a card from a facility code and card number.
  • New hf 14b tearoff provides an interactive ST25TB/SRx monotonic counter tear-off attack, useful for rolling back single-use counters.
  • DESFire tooling expanded significantly: new hf mfdes brutedamslot, bruteisofid/selectisofid, delegated application commands (getdelegateappinfo, createdelegateapp), plus dict/ascii/mad presets and tag-loss recovery for hf mfdes bruteaid.
  • New hf aliro info/read, hf secc info/sim, hf gst info/read, and hf vas info commands add support for Aliro, iCLASS SE config cards, and related credential templates; MIFARE Classic support was added to hf gallagher.
  • wiegand encode/decode gained support for the new 96-bit ASN.1 encoded format and --bin encoding, with unified parameters and verbose PACS output.
  • New lf relay command relays between two Proxmark3 devices over the internet, and the client now builds with Qt6 plus added binary hardening across host platforms.

Contributors

This release landed thanks to @antiklesys, @kormax, @iceman1001, @team-orangeBlue, @cindersocket, @xNovyz, @doegox, @pingu2211, @recursivenomad, and @apply-science.

Read the full changelog and downloads on GitHub.

← All Proxmark News