The ProxPick
ProxPick Information
For more information please contact
info@proxpick.com.
The much anticipated ProxPick has finally arrived! Ever since Chris Paget first demonstrated the power of this tool at RSA (and other conferences), the demand for us to produce a publically available product has grown.
ProxPick Product Details
ProxPick is a highly versatile attack & defense tool for 125-134KHz RFID systems (collectively known as Prox), about the size of a playing card.
It is able to read, copy, and playback almost all Prox-type tags, including:
- VeriChip
- HID Prox (multiple formats)
- Indala
- TI
- Q5
- T5555
- T5557
- EM4100
- HiTag2
- HomeAgain (pet chip)
- FriendChip (pet chip)
ProxPick's decode routines are also capable of reading and
decoding
other 125KHz tag formats that we've never seen before.
ProxPick has several different modes of operation, including:
- Read (it acts as an RFID reader to energize the tag)
- Sniff (another reader energizes the tag while the ProxPick listens in)
- Playback (it emulates the tag and presents the copied ID data)
- Shield (it emulates a tag but returns corrupt data)
In "Read" mode, ProxPick will have a read range of at least 12 inches (we're aiming for 18"). It supports high output power levels and can be used with an antenna wound around a door frame -- In this configuration it can read Prox tags that are carried through the doorway. In "Shield" mode it listens for readers: when it detects a reader trying to scan its ID (or that of other tags you may have in your possession), it leverages the fact that Prox technology has no collision-avoidance strategy: it sends out a signal which appears the same as a legitimate tag but does not contain valid data. This confuses the readers, preventing them from reading your tags regardless of how much incident power is used (Prox cards are very difficult to shield from malicious reads using passive technology; ProxPick provides far more effective semi-active shielding).
In "Sniff" and "Shield" modes, the ProxPick is able to power itself passively from the reader (the same as an RFID tag does) and effectively work for unlimited time with no power source of its own. The only limit to its longevity in Sniff mode is the size of its internal Flash memory (good for over a hundred thousand stored ID numbers); Shield mode has no such limitation. ProxPick has both ICD2 and USB interfaces. Its USB bootloader allows for firmware upgrades as well as tag data downloading for storage on a PC. ProxPick also has high-power and low-power output connectors for different antenna configurations, as well as a versatile input stage that allows it to act as an amplifier for another Prox reader.
ProxPick will be available in kit form at the end of October 2009, for around $50. Full schematics and source code will be released on H4RDW4RE.com under a GPL-compatible license as soon as the first production devices ship.
Pre-order information coming soon. Get more information at
info@proxpick.com
Thank you for your interest in H4RDW4RE products. More to
come!