Close

Hack Chat Transcript, Part 2

A event log for RF Hacking Hack Chat

Find out what's behind the waterfall

dan-maloneyDan Maloney 10/12/2022 at 20:220 Comments

Chris Poore12:43 PM
All the user interaction is through the GUI

Chris Poore12:43 PM
If you just want the third-party software, check out the installer

Chris Poore12:43 PM
it's great for staging computers or seeing what's out there

salec12:43 PM
Except in name and mental attitude towards its object, what are structural differences between a test and an attack?

kjansky112:44 PM
Starlink beacons can readily observed with only Ku LNB's without any dishes.

salec12:45 PM
I mean, perhaps some patterns used in organizing testing can be basis for organizing attacks

Paulmsam12:45 PM
dark theme, a noob friendly walk through lol. scaling the size of the window doesn't scale the entire frame. sweep detector gave me some strange issue if i Rember. wasn't doing the correct frequencies. Maybe a step by step approach if wanted. so that you can go via each tool for the correct outcome?

Dan Maloney12:45 PM

https://hackaday.com/2022/09/23/snooping-on-starlink-with-an-rtl-sdr/

HACKADAY DAN MALONEY

Snooping On Starlink With An RTL-SDR

With an ever-growing constellation of Starlink satellites whizzing around over our heads, you might be getting the urge to start experimenting with the high-speed internet service. But at $100 or more a month plus hardware, the barrier to entry is just a little daunting for a lot of us.

Read this on Hackaday

morgan12:46 PM
it looks like better packaing/installer is needed to break away from ubuntu, building on arch presently but it's.... complainy

Chris Poore12:46 PM
I will release videos that show examples of how each tab is supposed to work. But if there is something you want it to do, it can usually be done.

Chris Poore12:46 PM
I just have to know about it

David Shamblin12:46 PM
What would you consider to be the "Hello World" of RFhacking with FISSURE?

william kennedy joined  the room.12:47 PM

Chris Poore12:48 PM
If you're just getting started, there are a couple lessons on different topics. There are links to lessons that others have made.

Chris Poore12:48 PM
When I do a demo, I usually pick a simple RF protocol like X10 or TPMS and use it show a general RF reverse engineering process

Dan Maloney12:49 PM
I liked that garage door opener demo myself.

Chris Poore12:49 PM
That includes things like: monitoring, collection, replay, signal analysis, research, demodulation, injection

Chris Poore12:50 PM
you can launch GNU Radio inspection flow graphs with GUIs for monitoring or use some other tool like QSpectrumAnalyzer with a hackrf_sweep

Chris Poore12:51 PM
you can record right in the IQ Data tab and crop the files to isolate signals

Chris Poore12:51 PM
You can play it back to see if it had effect

Runn.DMZ12:51 PM
Hey Chris, have you posted any of your demos and if so where?

David Shamblin12:51 PM
TPMS is something I-

kjansky112:51 PM
Is there an equivalent drone denial of service/control application

Andre Lewis12:52 PM
Can you generate settings for GnuRadio filters etc?

Monta12:52 PM
Do you have a link to a video of you doing the TPMS (or X10) reverse engineering process you mentioned?

morgan12:52 PM
@salec I did get the installer to run on Arch, but it looks like it has a lot of hardcoded assumptions its on a deb system (sensible-browsers, gnome-terminal, ...)

David Shamblin12:52 PM
Something I always wanted to tackle.* I don't know it got cut off. I'll have to try it out. Thanks.

Chris Poore12:52 PM
There's an old video from almost two years ago here https://www.ainfosec.com/technologies/fissure/

Chris Poore12:53 PM
I don't like pointing people towards it because I need to make a newer video that covers all the new changes

Chris Poore12:54 PM
My github has a couple videos for some protocols https://github.com/cpoore1

Runn.DMZ12:54 PM
Thanks!

Chris Poore12:55 PM
Then there's twitter where I'll post some short ones. Keep an eye out in the future for more comprehensive examples

Paulmsam12:56 PM
So I have to decode a msk 2.4ghz signal. I have managed to pack and repack the bits via gnu radio. But cannot figure out exactly the bits of the data. I have now also sniffed the spi protocall, and slowly going over that. But it's slow going

Andre Lewis12:56 PM
Or I think it would be intersting to see how any tools are getting called under the hood, like a verbose mode

Chris Poore12:57 PM
There isn't much incorporated yet surround drones. We've done a lot of work in the past and there are some tools that probably shouldn't be released. But you can do generic jamming, use gr-ieee802-11 for 5 MHz Wi-Fi, someone out there has been reversing ocusync2

Paulmsam12:57 PM
Msk decoding seems to not be included in alot of packages that I can find

Thomas Shaddack12:58 PM
Thought. Passive radar. Array of receivers with direction finding. Detecting presence of signals, from actively emitted packets to noise from motor drivers or dc-dc converters. Plotting presence of devices in the area.

Two_Bags joined  the room.1:00 PM

salec1:00 PM
@Thomas Shaddack try it with microphones first - passive sonar

Chris Poore1:00 PM
direction finding, tracking, visualization are all things that fit but may need help to get fully integrated

Dan Maloney1:00 PM
OK, that was a quick hour! Lots of good questions, hope everyone got a chance to chip in. I want to thank Chris for his time today, and everyone else too for participating. Great chat everyone! Feel free to keep the chat going, of course -- the Hack Chat channel is always open!

Chris Poore1:00 PM
Thanks everybody!

Christopher1:01 PM
Thanks Chris!

Dan Maloney1:01 PM
Thanks Chris!

salec1:01 PM
Thanks Chris, thanks Dan!

Zach Kost-Smith1:01 PM
Thanks

Discussions