52梯控论坛

标题: 梯控dump，求思路，求通码 [打印本页]

作者: dop 时间: 2021-2-9 11:09
标题: 梯控dump，求思路，求通码
求思路
梯控分析软件能够分析出控制字节
怎么修改呢？
把楼层控制位全部修改为FF不可行，是否有校验？

就改一个自用，求大神或者有软件的兄弟指点一下！

----------------------------------------

系统名称金博加密时间第9扇区
到期时间9扇区-2区块-第6-8字节99C8DB
起始时间9扇区-2区块-第1-3字节C9C8C8
功能位9扇区-1区块-第3字节89
楼层代码9扇区-1区块-第4-10字节C9C9C9C9C9C988
发卡序号9扇区-1区块-第11-12字节C948
用户编号9扇区-1区块-第13-14字节CCCB

--------------------------------------

0 扇区
0区块:BC 2B 45 C0 12 08 04 00 01 10 5A 11 F3 E7 71 1D
1区块:00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
2区块:00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
3区块:FF FF FF FF FF FF FF 07 80 69 FF FF FF FF FF FF

1 扇区
0区块:00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1区块:00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
2区块:00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
3区块:FF FF FF FF FF FF FF 07 80 69 FF FF FF FF FF FF

2 扇区
0区块:00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1区块:00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
2区块:00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
3区块:FF FF FF FF FF FF FF 07 80 69 FF FF FF FF FF FF

3 扇区
0区块:00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1区块:00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
2区块:00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
3区块:FF FF FF FF FF FF FF 07 80 69 FF FF FF FF FF FF

4 扇区
0区块:00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1区块:00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
2区块:00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
3区块:FF FF FF FF FF FF FF 07 80 69 FF FF FF FF FF FF

5 扇区
0区块:00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1区块:00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
2区块:00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
3区块:FF FF FF FF FF FF FF 07 80 69 FF FF FF FF FF FF

6 扇区
0区块:00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1区块:00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
2区块:00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
3区块:FF FF FF FF FF FF FF 07 80 69 FF FF FF FF FF FF

7 扇区
0区块:00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1区块:00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
2区块:00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
3区块:FF FF FF FF FF FF FF 07 80 69 FF FF FF FF FF FF

8 扇区
0区块:00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1区块:00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
2区块:00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
3区块:FF FF FF FF FF FF FF 07 80 69 FF FF FF FF FF FF

9 扇区
0区块:00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1区块:9A C0 89 C9 C9 C9 C9 C9 C9 88 C9 48 CC CB E9 C9
2区块:C9 C8 C8 C9 C9 99 C8 DB C9 C9 C9 C9 C9 C9 B6 C9
3区块:2D 62 CC 77 E7 73 FF 07 80 00 2D 62 CC 77 E7 73

10 扇区
0区块:C0 CA CA CA CA CA CA 8A CA CA CA CA CA CA CA CA
1区块:CA CA CA CA CA CA CA CA CA CA CA CA CA CA CA CA
2区块:CA CA CA CA CA CA CA CA CA CA CA CA CA CA CA CA
3区块:2D 62 CC 77 E7 73 FF 07 80 00 2D 62 CC 77 E7 73

11 扇区
0区块:00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1区块:00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
2区块:00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
3区块:FF FF FF FF FF FF FF 07 80 69 FF FF FF FF FF FF

12 扇区
0区块:00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1区块:00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
2区块:00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
3区块:FF FF FF FF FF FF FF 07 80 69 FF FF FF FF FF FF

13 扇区
0区块:00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1区块:00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
2区块:00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
3区块:FF FF FF FF FF FF FF 07 80 69 FF FF FF FF FF FF

14 扇区
0区块:00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1区块:00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
2区块:00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
3区块:FF FF FF FF FF FF FF 07 80 69 FF FF FF FF FF FF

15 扇区
0区块:00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1区块:00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
2区块:00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
3区块:FF FF FF FF FF FF FF 07 80 69 FF FF FF FF FF FF

作者: 13664600428 时间: 2021-2-9 11:41
本帖最后由 13664600428 于 2021-2-9 12:49 编辑

金博加密系统，需要软件修改才行。

作者: lyfjdwx 时间: 2021-2-9 13:00
这个楼层有地下2层，只能到5楼，日期还早着

作者: dop 时间: 2021-2-9 13:44

lyfjdwx 发表于 2021-2-9 13:00
这个楼层有地下2层，只能到5楼，日期还早着

您是怎么解码的呢？

作者: lyfjdwx 时间: 2021-2-9 15:26

dop 发表于 2021-2-9 13:44
您是怎么解码的呢？

有软件的，字数补丁

作者: wangchuanchao52 时间: 2021-2-9 17:08
简单。。。。。。

作者: 13702111370 时间: 2021-2-9 23:17

lyfjdwx 发表于 2021-2-9 13:00
这个楼层有地下2层，只能到5楼，日期还早着

日期是50 01 12？

作者: inhejohn 时间: 2021-2-10 09:02
本帖最后由 inhejohn 于 2021-2-10 09:04 编辑

9扇区-1区块修改为
9A C9 F9 36 36 36 36 36 36 36 C9 48 CC CB C9 C9

作者: dop 时间: 2021-2-10 17:45

inhejohn 发表于 2021-2-10 09:02
9扇区-1区块修改为
9A C9 F9 36 36 36 36 36 36 36 C9 48 CC CB C9 C9

测试可行，非常感谢！

作者: liboliu6310 时间: 2021-2-12 10:08
梯控分析软件能够分析

作者: liboliu6310 时间: 2021-2-12 10:08
需要软件修改才行

作者: liboliu6310 时间: 2021-2-14 09:23
件能够分析出控制字节

作者: liboliu6310 时间: 2021-2-14 09:28
控制位全部修改

作者: liboliu6310 时间: 2021-2-14 09:36
分析出控制字节

欢迎光临 52梯控论坛 (https://52tikong.com/)