What are the steps to copy the access card by NFC simulation?

Some of the following steps seem redundant, but in fact, each step is meaningful. Please follow the steps strictly, and don't skip or simplify:

Open the NFC tool and click "one-click crack". If the card reader is not connected, the App will ask to connect the card reader (card reader usage tutorial). After successfully connecting the card reader, put the card into the sensor area of the card reader, and then click "Start Execution". If the software prompts "Card not found", you can try several times after moving the card. It is possible that the card is not placed in the signal area of the card reader. After the software finds the card, it will wait patiently for the software to crack, usually for a few minutes to dozens of minutes.

Tips:

The purpose of our cracking is to obtain a complete dump file containing the key. Of course, you can also get the dump file in other ways, such as having the property copied to you.

At this time, we prepare a UID card, and the card number can be modified to make an unencrypted copy card. To ensure that the UID card is unencrypted, you can format the UID card first. In the one-click reading and writing function of the App, there is a format button in the menu in the upper right corner. Remember to connect the card reader in advance before reading or writing the UID card.

Then, in the one-click reading and writing function of App, open the "Modify Card Number" function in the upper right corner menu, put the mother card on the card reader, and click "Read Card Number"; Then, put the duplicate card on the card reader and click "Write Card Number". After writing, we will make an unencrypted copy card with the mother card number.

Using mobile phone to simulate the unencrypted copy card obtained in 0x02, some models of simulated cards are not very stable, so if you can't read and write after the simulation is successful, you only need to delete the simulated card or restart the mobile phone and simulate it several times more.

Note: If you simulate the encryption card, some mobile phones will prompt you for the encryption card and ask you to choose whether to simulate only the card number; Some mobile phones will not prompt and directly simulate the card number. But it is almost impossible to use it if it is only an analog card number. This is why we need to make an unencrypted copy card, so that the mobile phone can completely copy the data of the mother card.

First of all, we set the simulated unencrypted copy card as the default card on the mobile phone (generally, the default card selection interface will appear when the mobile phone swipes the card, and the correct card can only be called after the default card is set).

Then, in the data part of NFC tool, find the dump obtained in step 0x0 1, and click "Write" to enter the one-button read-write interface; You can also open "one-click reading and writing" directly on the homepage of the App, and then select dump; Step 0x0 1 in the card writing option; After the previous steps are completed, open "Delay Card Search" and click "Start Card Writing". At this time, quickly put the phone on the card reader and wait for the writing to be completed.

After writing successfully, you're done! ! !

If the test can't open the door, you can read the data of the mobile phone and compare it with the data of the mother card to ensure that all the data are consistent. If they are inconsistent, you must be mistaken. You can delete the data simulated by the mobile phone and repeat the above steps carefully. Please note that the last few digits of the 0 card simulated by the mobile phone cannot be modified, but it generally does not affect the final result.

Didi, open the door successfully! ! !

Some access control systems have repeated measures, generally in the following two cases: