52梯控论坛

标题: 新手入坑，破天宇ABCD时的懵逼 [打印本页]

作者: fengchen1991 时间: 2020-11-12 18:23
标题: 新手入坑，破天宇ABCD时的懵逼
本帖最后由 fengchen1991 于 2020-11-12 18:23 编辑

为了研究自己家电梯入坑了，我家电梯是天宇ABCD1代系统（在锤子解密器上看到的）。自己琢磨着发了几次卡，都不能用，不知道问题出在哪里。求大神指点。先上两组数据，第一组数据是我目前在用的卡（物业发的卡）
0 扇区
0 区块: CB 53 F8 30 50 08 04 00 02 03 5C D2 A3 D5 4B 1D
1 区块: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
2 区块: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
3 区块: FF FF FF FF FF FF FF 07 80 69 FF FF FF FF FF FF

1 扇区
0 区块: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1 区块: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
2 区块: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
3 区块: FF FF FF FF FF FF FF 07 80 69 FF FF FF FF FF FF

2 扇区
0 区块: 16 04 00 00 00 00 15 0A 1E 0F 00 00 00 00 00 A1
1 区块: 20 00 00 00 00 00 00 00 20 00 00 00 00 00 00 00
2 区块: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
3 区块: AB CD 06 13 09 04 FF 07 80 69 AB CD 06 13 09 04

3 扇区
0 区块: 05 06 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1 区块: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
2 区块: FF E3 00 00 00 00 00 00 00 00 00 00 00 00 00 00
3 区块: AB CD 06 13 09 04 FF 07 80 69 AB CD 06 13 09 04

4 扇区
0 区块: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1 区块: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
2 区块: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
3 区块: FF FF FF FF FF FF FF 07 80 69 FF FF FF FF FF FF

5 扇区
0 区块: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1 区块: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
2 区块: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
3 区块: FF FF FF FF FF FF FF 07 80 69 FF FF FF FF FF FF

只有0/2/3三个扇区有数据。而且所有卡片的密码都是一样的。看起来很简单。然后我用锤子解密器里的手动发卡功能，发了下面的数据。
0 扇区
0 区块: F2 F4 3C 33 09 08 04 00 62 63 64 65 66 67 68 69
1 区块: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
2 区块: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
3 区块: FF FF FF FF FF FF FF 07 80 69 FF FF FF FF FF FF

1 扇区
0 区块: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1 区块: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
2 区块: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
3 区块: FF FF FF FF FF FF FF 07 80 69 FF FF FF FF FF FF

2 扇区
0 区块: 05 24 00 00 00 00 1E 01 01 0A 00 00 00 00 00 A1
1 区块: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
2 区块: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
3 区块: AB CD 06 13 09 04 FF 07 80 69 AB CD 06 13 09 04

3 扇区
0 区块: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1 区块: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
2 区块: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
3 区块: AB CD 06 13 09 04 FF 07 80 69 AB CD 06 13 09 04

4 扇区
0 区块: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1 区块: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
2 区块: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
3 区块: FF FF FF FF FF FF FF 07 80 69 FF FF FF FF FF FF

卡号效验09、数据效验05。改的通楼，延期到300101.
然后我把这组数据写到卡号是F2 F4 3C 33的 M1卡里。
我以为卡号正确（我是固定卡号发卡）、效验正确，都没毛病。
为啥还是不能用呢，哪里出错了？
我是刚入坑第三天的小白，可能很多思路和专业术语很搞笑，大神们体谅，帮忙指点，谢谢。

作者: fengchen1991 时间: 2020-11-12 18:31
期间还遇到更懵逼的是，在往刚买到手的CUID卡里写数据的时候，会出现错误，然后电脑就检测不到我的PN532设备了，cuid卡也坏了（读取时显示检测不到卡片），532拔下来电脑就自动重启。搞的到现在不会用cuid卡。好难啊，没人指导，处处懵逼。

作者: www9241307 时间: 2020-11-12 19:14
本帖最后由 www9241307 于 2020-11-12 19:18 编辑

2 扇区
0 区块: 16 04 00 00 00 00 15 0A 1E 0F 00 00 00 00 00 A1 16为效验，改数据要算好效验
1 区块: 20 00 00 00 00 00 00 00 20 00 00 00 00 00 00 00
2 区块: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
3 区块: AB CD 06 13 09 04 FF 07 80 69 AB CD 06 13 09 04

3 扇区
0 区块: 05 06 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1 区块: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
2 区块: FF E3 00 00 00 00 00 00 00 00 00 00 00 00 00 00 标记处为滚动，初始FF FF
3 区块: AB CD 06 13 09 04 FF 07 80 69 AB CD 06 13 09 04

下面是发卡数据，你试下

0 扇区
F6 20 B5 A7 C4 08 04 00 02 03 5C D2 A3 D5 4B 1D
00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
FF FF FF FF FF FF FF 07 80 69 FF FF FF FF FF FF

1 扇区
00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
FF FF FF FF FF FF FF 07 80 69 FF FF FF FF FF FF

2 扇区
D8 24 00 00 00 00 19 0C 1F 0F 00 00 00 00 00 A1
00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
AB CD 06 13 09 04 FF 07 80 69 AB CD 06 13 09 04

3 扇区
00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
FF FF 00 00 00 00 00 00 00 00 00 00 00 00 00 00
AB CD 06 13 09 04 FF 07 80 69 AB CD 06 13 09 04

作者: fengchen1991 时间: 2020-11-12 19:17

www9241307 发表于 2020-11-12 19:14
2 扇区
0 区块: 16 04 00 00 00 00 15 0A 1E 0F 00 00 00 00 00 A1 16为效验，改数据要算好效 ...

谢谢大神指教

作者: www9241307 时间: 2020-11-12 19:19

fengchen1991 发表于 2020-11-12 19:17
谢谢大神指教

发卡数据，你试下

0 扇区
F6 20 B5 A7 C4 08 04 00 02 03 5C D2 A3 D5 4B 1D
00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
FF FF FF FF FF FF FF 07 80 69 FF FF FF FF FF FF

1 扇区
00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
FF FF FF FF FF FF FF 07 80 69 FF FF FF FF FF FF

2 扇区
D8 24 00 00 00 00 19 0C 1F 0F 00 00 00 00 00 A1
00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
AB CD 06 13 09 04 FF 07 80 69 AB CD 06 13 09 04

3 扇区
00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
FF FF 00 00 00 00 00 00 00 00 00 00 00 00 00 00
AB CD 06 13 09 04 FF 07 80 69 AB CD 06 13 09 04

作者: fengchen1991 时间: 2020-11-12 19:36
果然是滚动的问题，改成FF立马好使了，长老果然牛逼

作者: wp7305 时间: 2020-11-12 21:27
厉害了！厉害了！

作者: fengchen1991 时间: 2020-11-12 22:13

www9241307 发表于 2020-11-12 19:19
发卡数据，你试下

大神，谢谢指点，滚动改成初始就发卡成功了。
我还有个不明白的地方。你给我的这组发卡数据，卡号和我手里的卡的卡号不一样。我怎么能把我的卡号更改成你给我发的那组数据的卡号呢？
因为卡号参与数据效验的计算，我卡号不更改的话数据肯定不能用的吧。
我上次发卡成功，都是用的固定卡号手动发卡。锤子里有个自动发卡的功能，卡号都是随机的。这随机卡号的数据怎么用啊

作者: www9241307 时间: 2020-11-12 22:40

fengchen1991 发表于 2020-11-12 22:13
大神，谢谢指点，滚动改成初始就发卡成功了。
我还有个不明白的地方。你给我的这组发卡数据，卡号和我手 ...

写卡时把卡号写0扇区就行

作者: 官二爷 时间: 2020-11-12 23:13
学会了吧，下次可以自己改了
厉害

作者: AZNMC 时间: 2020-11-13 08:32
长老出现的贴子，我都要学习一下，尽管看不太懂，但总能涨点知识。顶，顶，顶

作者: jiazhiliang1001 时间: 2020-11-25 16:44
学习下，每天进步一点点

作者: zhaodeshun 时间: 2020-12-11 20:18

www9241307 2020-11-12 19:14
2
0 : 16 04 00 00 00 00 15 0A 1E 0F 00 00 00 00 00 A1 16Ч飬Ч ...

0B23B1EAУ7320У

作者: 秋天红了 时间: 2020-12-20 20:33
楼主，校验码怎么算出来的，用哪些数据啊？

作者: ayang0823 时间: 2021-2-5 16:16

厉害了！厉害了！

作者: pwcpp 时间: 2021-2-23 01:10

秋天红了发表于 2020-12-20 20:33
楼主，校验码怎么算出来的，用哪些数据啊？

锤子解密器打开爆破效验，应该就可以看到校验算法了

作者: aaaaaaaaaaaa 时间: 2021-5-1 21:10

pwcpp 发表于 2021-2-23 01:10
锤子解密器打开爆破效验，应该就可以看到校验算法了

我没买锤子怎么办啊.......

作者: aaaaaaaaaaaa 时间: 2021-5-1 21:11

www9241307 发表于 2020-11-12 19:14
2 扇区
0 区块: 16 04 00 00 00 00 15 0A 1E 0F 00 00 00 00 00 A1 16为效验，改数据要算好效 ...

大佬那个D824的校验码是怎么算出来的啊

作者: 3559951583 时间: 2021-8-17 16:57

aaaaaaaaaaaa 发表于 2021-5-1 21:11
大佬那个D824的校验码是怎么算出来的啊

D8是根据发卡计算的，24 04 都是功能位

作者: shaiyu 时间: 2022-7-24 00:55
天宇复制完两张卡都不能用啥情况，卡号被拉黑了？

作者: qd_software 时间: 2022-8-30 08:55
这个帖子很有用

作者: hugo279 时间: 2024-1-28 19:17
好帖很有参考意义

欢迎光临 52梯控论坛 (https://52tikong.com/)