各位大神好,最被一张门禁卡的数据给搞糊涂了,请各位大神帮忙看看数据,给个分析思路,看一下这张宿舍门禁卡的数据是怎么实现的。在此万分感谢!
材料:原始门禁卡2张,复制门禁卡2张,ACR122U一台
0.00X背景:
学校只发一张门禁卡,如果丢失再买一张是50大元,已经丢过一张了,于是想把原始的门禁卡信息读出来做一个备份,并做为备用卡。
0.01X操作及读出数据
对本人的一张门禁卡读出数据如下:
0扇区
0区块:0AAAB4EBFF08040001C0886E7854F21D
1区块:00000000000000000000000000000000
2区块:00000000000000000000000000000000
3区块:FFFFFFFFFFFFFF078069FFFFFFFFFFFF
1扇区
0区块:00000000000000000000000000000000
1区块:00000000000000000000000000000000
2区块:00000000000000000000000000000000
3区块:FFFFFFFFFFFFFF078069FFFFFFFFFFFF
2扇区
0区块:00681100000000008000000000000000
1区块:00000000000000000000000000000000
2区块:0000000000000000100B134201010000
3区块:0DA2BDEB30C9FF078069F25D4214CF36
3扇区
0区块:00000000000000000000000000000000
1区块:00000000000000000000000000000000
2区块:00000000000000000000000000000000
3区块:FFFFFFFFFFFFFF078069FFFFFFFFFFFF
4扇区
0区块:00000000000000000000000000000000
1区块:00000000000000000000000000000000
2区块:00000000000000000000000000000000
3区块:FFFFFFFFFFFFFF078069FFFFFFFFFFFF
5扇区
0区块:00000000000000000000000000000000
1区块:00000000000000000000000000000000
2区块:00000000000000000000000000000000
3区块:FFFFFFFFFFFFFF078069FFFFFFFFFFFF
后面的扇区都是初始数据,和3-5扇区一样,就不发了,破了2扇区密码和数据后写入一张空白卡,包括UID全部写入。
0X002发生的情况
在写好备份卡后拿备份卡去测试开门,门应声而开,但是问题来了,人是出去了,可是进不来了,备份卡失效了,在外面冰冻10分钟后回到宿舍,再次读取备份卡数据,数据如下:
0扇区
0区块:0AAAB4EBFF08040001C0886E7854F21D
1区块:00000000000000000000000000000000
2区块:00000000000000000000000000000000
3区块:FFFFFFFFFFFFFF078069FFFFFFFFFFFF
1扇区
0区块:00000000000000000000000000000000
1区块:00000000000000000000000000000000
2区块:00000000000000000000000000000000
3区块:FFFFFFFFFFFFFF078069FFFFFFFFFFFF
2扇区
0区块:0A08173DFFFFFFFFFFFFFFFFFFFFFFFF
1区块:00000000000000000000000000000000
2区块:0000000000000000100B134201010000
3区块:0DA2BDEB30C9FF078069F25D4214CF36
3扇区
0区块:00000000000000000000000000000000
1区块:00000000000000000000000000000000
2区块:00000000000000000000000000000000
3区块:FFFFFFFFFFFFFF078069FFFFFFFFFFFF
4扇区
0区块:00000000000000000000000000000000
1区块:00000000000000000000000000000000
2区块:00000000000000000000000000000000
3区块:FFFFFFFFFFFFFF078069FFFFFFFFFFFF
5扇区
0区块:00000000000000000000000000000000
1区块:00000000000000000000000000000000
2区块:00000000000000000000000000000000
3区块:FFFFFFFFFFFFFF078069FFFFFFFFFFFF
第2扇区的数据有了变化,估计这个是不能开门的原因,分析了半天,也没有得到变化的规律,于是拿原始卡再去开门,然后再回来读卡,原始卡的数据如下:
0扇区
0区块:0AAAB4EBFF08040001C0886E7854F21D
1区块:00000000000000000000000000000000
2区块:00000000000000000000000000000000
3区块:FFFFFFFFFFFFFF078069FFFFFFFFFFFF
1扇区
0区块:00000000000000000000000000000000
1区块:00000000000000000000000000000000
2区块:00000000000000000000000000000000
3区块:FFFFFFFFFFFFFF078069FFFFFFFFFFFF
2扇区
0区块:00681100000000008000000000000000
1区块:00000000000000000000000000000000
2区块:0000000000000000100B134201010000
3区块:0DA2BDEB30C9FF078069F25D4214CF36
3扇区
0区块:00000000000000000000000000000000
1区块:00000000000000000000000000000000
2区块:00000000000000000000000000000000
3区块:FFFFFFFFFFFFFF078069FFFFFFFFFFFF
4扇区
0区块:00000000000000000000000000000000
1区块:00000000000000000000000000000000
2区块:00000000000000000000000000000000
3区块:FFFFFFFFFFFFFF078069FFFFFFFFFFFF
5扇区
0区块:00000000000000000000000000000000
1区块:00000000000000000000000000000000
2区块:00000000000000000000000000000000
3区块:FFFFFFFFFFFFFF078069FFFFFFFFFFFF
发现原始卡第2扇区的数据没有变化,于是再借了同学的一张门卡读了一下,数据如下:
0扇区
0区块:2AB4AEEBDB08040001345 E9BF464861D
1区块:00000000000000000000000000000000
2区块:00000000000000000000000000000000
3区块:FFFFFFFFFFFFFF078069FFFFFFFFFFFF
1扇区
0区块:00000000000000000000000000000000
1区块:00000000000000000000000000000000
2区块:00000000000000000000000000000000
3区块:FFFFFFFFFFFFFF078069FFFFFFFFFFFF
2扇区
0区块:01D21100000000008000000000000000
1区块:00000000000000000000000000000000
2区块:0000000000000000100B1A4201010000
3区块:2DBCA7EB30EDFF078069D2435814 CF12
3扇区
0区块:00000000000000000000000000000000
1区块:00000000000000000000000000000000
2区块:00000000000000000000000000000000
3区块:FFFFFFFFFFFFFF078069FFFFFFFFFFFF
4扇区
0区块:00000000000000000000000000000000
1区块:00000000000000000000000000000000
2区块:00000000000000000000000000000000
3区块:FFFFFFFFFFFFFF078069FFFFFFFFFFFF
5扇区
0区块:00000000000000000000000000000000
1区块:00000000000000000000000000000000
2区块:00000000000000000000000000000000
3区块:FFFFFFFFFFFFFF078069FFFFFFFFFFFF
发现2扇区的KEYA和KEYB不一样,数据也不一样,想了半天也没有想通这是为什么
0X003问题
请各位大神指导一下,提个思路,原始卡是怎么做到这一点的?应如何分析这个卡中的数据。谢谢!
材料:原始门禁卡2张,复制门禁卡2张,ACR122U一台
0.00X背景:
学校只发一张门禁卡,如果丢失再买一张是50大元,已经丢过一张了,于是想把原始的门禁卡信息读出来做一个备份,并做为备用卡。
0.01X操作及读出数据
对本人的一张门禁卡读出数据如下:
0扇区
0区块:0AAAB4EBFF08040001C0886E7854F21D
1区块:00000000000000000000000000000000
2区块:00000000000000000000000000000000
3区块:FFFFFFFFFFFFFF078069FFFFFFFFFFFF
1扇区
0区块:00000000000000000000000000000000
1区块:00000000000000000000000000000000
2区块:00000000000000000000000000000000
3区块:FFFFFFFFFFFFFF078069FFFFFFFFFFFF
2扇区
0区块:00681100000000008000000000000000
1区块:00000000000000000000000000000000
2区块:0000000000000000100B134201010000
3区块:0DA2BDEB30C9FF078069F25D4214CF36
3扇区
0区块:00000000000000000000000000000000
1区块:00000000000000000000000000000000
2区块:00000000000000000000000000000000
3区块:FFFFFFFFFFFFFF078069FFFFFFFFFFFF
4扇区
0区块:00000000000000000000000000000000
1区块:00000000000000000000000000000000
2区块:00000000000000000000000000000000
3区块:FFFFFFFFFFFFFF078069FFFFFFFFFFFF
5扇区
0区块:00000000000000000000000000000000
1区块:00000000000000000000000000000000
2区块:00000000000000000000000000000000
3区块:FFFFFFFFFFFFFF078069FFFFFFFFFFFF
后面的扇区都是初始数据,和3-5扇区一样,就不发了,破了2扇区密码和数据后写入一张空白卡,包括UID全部写入。
0X002发生的情况
在写好备份卡后拿备份卡去测试开门,门应声而开,但是问题来了,人是出去了,可是进不来了,备份卡失效了,在外面冰冻10分钟后回到宿舍,再次读取备份卡数据,数据如下:
0扇区
0区块:0AAAB4EBFF08040001C0886E7854F21D
1区块:00000000000000000000000000000000
2区块:00000000000000000000000000000000
3区块:FFFFFFFFFFFFFF078069FFFFFFFFFFFF
1扇区
0区块:00000000000000000000000000000000
1区块:00000000000000000000000000000000
2区块:00000000000000000000000000000000
3区块:FFFFFFFFFFFFFF078069FFFFFFFFFFFF
2扇区
0区块:0A08173DFFFFFFFFFFFFFFFFFFFFFFFF
1区块:00000000000000000000000000000000
2区块:0000000000000000100B134201010000
3区块:0DA2BDEB30C9FF078069F25D4214CF36
3扇区
0区块:00000000000000000000000000000000
1区块:00000000000000000000000000000000
2区块:00000000000000000000000000000000
3区块:FFFFFFFFFFFFFF078069FFFFFFFFFFFF
4扇区
0区块:00000000000000000000000000000000
1区块:00000000000000000000000000000000
2区块:00000000000000000000000000000000
3区块:FFFFFFFFFFFFFF078069FFFFFFFFFFFF
5扇区
0区块:00000000000000000000000000000000
1区块:00000000000000000000000000000000
2区块:00000000000000000000000000000000
3区块:FFFFFFFFFFFFFF078069FFFFFFFFFFFF
第2扇区的数据有了变化,估计这个是不能开门的原因,分析了半天,也没有得到变化的规律,于是拿原始卡再去开门,然后再回来读卡,原始卡的数据如下:
0扇区
0区块:0AAAB4EBFF08040001C0886E7854F21D
1区块:00000000000000000000000000000000
2区块:00000000000000000000000000000000
3区块:FFFFFFFFFFFFFF078069FFFFFFFFFFFF
1扇区
0区块:00000000000000000000000000000000
1区块:00000000000000000000000000000000
2区块:00000000000000000000000000000000
3区块:FFFFFFFFFFFFFF078069FFFFFFFFFFFF
2扇区
0区块:00681100000000008000000000000000
1区块:00000000000000000000000000000000
2区块:0000000000000000100B134201010000
3区块:0DA2BDEB30C9FF078069F25D4214CF36
3扇区
0区块:00000000000000000000000000000000
1区块:00000000000000000000000000000000
2区块:00000000000000000000000000000000
3区块:FFFFFFFFFFFFFF078069FFFFFFFFFFFF
4扇区
0区块:00000000000000000000000000000000
1区块:00000000000000000000000000000000
2区块:00000000000000000000000000000000
3区块:FFFFFFFFFFFFFF078069FFFFFFFFFFFF
5扇区
0区块:00000000000000000000000000000000
1区块:00000000000000000000000000000000
2区块:00000000000000000000000000000000
3区块:FFFFFFFFFFFFFF078069FFFFFFFFFFFF
发现原始卡第2扇区的数据没有变化,于是再借了同学的一张门卡读了一下,数据如下:
0扇区
0区块:2AB4AEEBDB08040001345 E9BF464861D
1区块:00000000000000000000000000000000
2区块:00000000000000000000000000000000
3区块:FFFFFFFFFFFFFF078069FFFFFFFFFFFF
1扇区
0区块:00000000000000000000000000000000
1区块:00000000000000000000000000000000
2区块:00000000000000000000000000000000
3区块:FFFFFFFFFFFFFF078069FFFFFFFFFFFF
2扇区
0区块:01D21100000000008000000000000000
1区块:00000000000000000000000000000000
2区块:0000000000000000100B1A4201010000
3区块:2DBCA7EB30EDFF078069D2435814 CF12
3扇区
0区块:00000000000000000000000000000000
1区块:00000000000000000000000000000000
2区块:00000000000000000000000000000000
3区块:FFFFFFFFFFFFFF078069FFFFFFFFFFFF
4扇区
0区块:00000000000000000000000000000000
1区块:00000000000000000000000000000000
2区块:00000000000000000000000000000000
3区块:FFFFFFFFFFFFFF078069FFFFFFFFFFFF
5扇区
0区块:00000000000000000000000000000000
1区块:00000000000000000000000000000000
2区块:00000000000000000000000000000000
3区块:FFFFFFFFFFFFFF078069FFFFFFFFFFFF
发现2扇区的KEYA和KEYB不一样,数据也不一样,想了半天也没有想通这是为什么
0X003问题
请各位大神指导一下,提个思路,原始卡是怎么做到这一点的?应如何分析这个卡中的数据。谢谢!
