- SmartRider
- USB NFC card reader
- mfoc
- libnfc_crypto1_crack
- SmartRider Sector 1 Key A
Easiest method for installing crypto1_crack is to install it via miLazyCracker and modifying the install script to replace broken packages.
- Clone the miLazyCracker repository.
- Download
craptev1-v1.1.tar.xz
andcrapto1-v3.3.tar.xz
from this repository and save them into the same folder asmiLazyCrackerFreshInstall.sh
. - Comment out lines 6 and 7 from
miLazyCrackerFreshInstall.sh
containing the wget commands. - Run
miLazyCrackerFreshInstall.sh
and the setup should proceed successfully.
- Connect the NFC card reader and with your card on the reader, run
mfoc -O dump.mfc
- MFOC should find the key for Sector 1 Key A and use that to decrypt the rest of the card.
- If that works, mfoc will print the card contents in the terminal and into dump.mfc. If MFOC says that the hardnested attack isn't supported, you must use the next method
- Connect the NFC reader and place your card on the reader.
- Run
libnfc_crypto1_crack (key A) 0 A 0 B
, replacing (key A) with the key. Use method 1 to find the key (you can find the key, but mfoc can't crack the newer cards). This will return your personal key A. - If the key is found, run
libnfc_crypto1_crack FOUNDKEY 0 B 4 A
, replacing FOUNDKEY with the key that step 2 outputs. This will return your personal key B. - Once you have both keys, paste them both into a file called
keys.txt
in your working directory, on individual lines. - Run
mfoc -O dump.mfc -f keys.txt
. - Assuming all goes well, the terminal will output the card contents to the terminal and into dump.mfc.
2031d1****** # universal key S1 KA
e23831****** # personal key A
c3922a****** # personal key B