Radio Hacks

1359 Articles

Executing A Vehicle Keyless Entry Attack

March 30, 2019 by 1 Comment

You read about well-publicised security exploits, but they always seem to involve somebody with a deity’s grasp of whatever technology is being employed, as well as a pile of impossibly exotic equipment. Surely a mere mortal could never do that!

Happily, that’s not always the case, and to prove it [Gonçalo Nespral] replicated an attack against RF devices such as some garage doors and motor vehicle locks that use a rolling code. His inspiration came from a device from2015, that encouraged the owner of a key to keep transmitting fresh codes. It did this by swamping the receiver of the car, garage door, or whatever with a strong slightly off frequency signal. This would cause the lock to not work, so the user would try again and again. The attacker listens with a very narrow bandwidth receiver on-frequency that is good enough to reject the jamming signal, and can harvest a sequence of the rolling codes enough to compromise it.

[Gonçalo]’s set-up uses a YARD stick One transceiver dongle as its transmitter, and an RTL-SDR for receive. A GNU Radio setup is used to retrieve the key data, and some custom Python code does the remaining work. We wouldn’t advocate using this in the wild and it could conceivably also gain you access to another car with a flashing light on top, but it’s an interesting exposé of the techniques involved.

Rolling code keyfob attacks are something we covered a few years ago, back when these attacks were all shiny and new.

Emergency Neighbourhood Communications Courtesy Of HELPER

March 29, 2019 by 23 Comments

For many people, phone and Internet connectivity are omnipresent and always available. It’s possible to upload selfies from a Chinese subway, and search for restaurant reviews in most highway towns, all thanks to modern cellular connectivity. However, in emergencies, we’re not always so lucky. If towers fail or user demand grows too large, things can collapse all too quickly. It’s in these situations that HELPER aims to flourish.

HELPER stands for Heterogeneous Efficient Low Power Radio. It’s a radio system designed to operate in the absence of any infrastructure, creating a pop-up network to serve community needs in disaster areas. Users can share information about available resources, like water, gasoline and food, while emergency workers can coordinate their response and direct aid to those who need it.

It’s a system built around commonly available parts. Raspberry Pis run the back end software and communicate with individuals over WiFi, with LoRa radios handling the longer-range communication from node to node. Combining this communication ability with GPS location and stored map data allows users to more easily find resources and assistance when things go wrong. The journal article is freely available for those wishing to learn more about the project.

It’s a project which aims to keep people safe when conventional networks go down. The key is to remember that once disaster strikes, it’s usually too late to start distributing radio hardware – emergency gear should be in place well before things start to go south. Of course, there’s also the government side of the equation – in the USA, the Emergency Broadcast System is a great example of emergency communications done right. Video after the break.

Continue reading “Emergency Neighbourhood Communications Courtesy Of HELPER”

Custom LoRa Pager Designed With Care

March 24, 2019 by 13 Comments

LoRa is a useful technology if you need to send data a long way at low power levels. Leveraging this, [5Volt-Junkie] decided to build a small pager named the LoRaNicator.

Those who love a detailed build log will enjoy this. The pager features everything up to and including the kitchen sink. A Cortex M0+ runs the show, flashed with an Arduino compatible bootloader, while a RFM95W module handles the LoRa communications. There’s a pager vibrator and piezo buzzer for notifications, along with a LiPo charger to make keeping the battery topped up easy. There’s even an RTC and soft-power button module.

Even if the LoRa side of things isn’t relevant to your interests, it’s a great example of how to build a useful tool rather than just a proof-of-concept. Things like an easy-to-use interface and simple battery charging go a long way to making something usable in the field. [5Volt-Junkie] even goes so far as to point out that even solder mask matters – if you’re using an infrared oven, your black boards will need a different profile to the usual green PCBs.

All the hard work has paid off, creating an attractive end product that we’d be proud to pack with the rest of our ham gear. LoRa is a useful platform, and as we’ve seen, it can be useful for everything from viticulture to meterology. Video after the break.

Continue reading “Custom LoRa Pager Designed With Care”

Making A 1940s Radio Digital With Nixies

March 17, 2019 by 10 Comments

Classix Philly One Oh Seven Nine is your home for Philly soul right at the top of the dial. That phrase, ‘top of the dial’ doesn’t mean much these days because we all have radios with a digital display and seek buttons. There was a time when radios actually had dials, but [glasslinger] is in a class all by himself. He’s adding a digital display to a 1940s radio, and he’s doing it with Nixie tubes.

The circuitry for the digital display for this AM radio requires getting the frequency the radio is tuned to. This is done by counting the oscillator frequency, then subtracting the IF. [glasslinger] is doing this with an Arduino (hey, it’s a legitimate engineering choice) and a 4040 12-bit binary counter as a pre-scaler. The Arduino does the math and then drives a few 74141 Nixie drivers, which then display the frequency of the receiver in beautiful glass tubes. Add in a single neon bulb for the thousands digit, and you have a four-digit display that will tell you the frequency you’re tuned to on an old AM radio.

The rest of the build consists of fixing up an old radio and gluing the veneer down again with modern glues that will last another seventy years. The finished cabinet was sanded, a bezel for the display was added, and since [glasslinger] has the equipment, he made a new, long neon tube to light up with the volume of the radio. And you thought a cat’s eye detector was cool.

This build is a tour de force, and something that is so incredibly modern but at the same time built on vintage technology. If you’ve got an hour and a half, we highly recommend checking out the build video below.

Continue reading “Making A 1940s Radio Digital With Nixies”

Building A Magnetic Loop Antenna

March 17, 2019 by 21 Comments

Antennas come in many shapes and sizes, with a variety of characteristics making them more or less suitable for various applications. The average hacker with only a middling exposure to RF may be familiar with trace antennas, yagis and dipoles, but there’s a whole load more out there. [Eric Sorensen] is going down the path less travelled, undertaking the build of a self-tuning magnetic loop antenna. 

[Eric]’s build is designed to operate at 100W on the 20 meter band, and this influences the specifications of the antenna. Particularly critical in the magnetic loop design is the voltage across the tuning capacitor; in this design, it comes out at approximately 4 kilovolts. This necessitates the careful choice of parts that can handle these voltages. In this case, a vacuum variable capacitor is used, rated to a peak current of 57 amps and a peak voltage of 5 kilovolts.

The magnetic loop design leads to antenna which is tuned to a very narrow frequency range, giving good selectivity. However, it also requires retuning quite often in order to stay on-band. [Eric] is implementing a self-tuning system to solve this, with a controller using a motor to actuate the tuning capacitor to maintain the antenna at its proper operating point.

If you’re unfamiliar with magnetic loop builds, [Eric]’s project serves as a great introduction to both the electrical and mechanical considerations inherent in such a design. We’ve seen even more obscure designs though – like these antennas applied with advanced spray techniques.

 

This SDR Uses A Tube

March 7, 2019 by 17 Comments

When you think of a software defined radio (SDR) setup, maybe you imagine an IC or two, maybe feeding a computer. You probably don’t think of a vacuum tube. [Mirko Pavleski] built a one-tube shortwave SDR using some instructions from [Burkhard Kainka] which are in German, but Google Translate is good enough if you want to duplicate his feat. You can see a video of [Mirko’s] creation, below.

The build was an experiment to see if a tube receiver could be stable enough to receive digital shortwave radio broadcasts. To avoid AC line hum, the radio is battery operated and while the original uses an EL95 tube, [Mirko] used an EF80.

Continue reading “This SDR Uses A Tube”

Justin McAllister’s Simple, Post-Apocalypse-Friendly Antennas

March 4, 2019 by 10 Comments

Watch Justin McAllister’s presentation on simple antennas suitable for a zombie apocalypse and two things will happen: you’ll be reminded that everything antennas do is amazing, and their reputation for being a black magic art will fade dramatically. Justin really knows his stuff; there is no dangle-a-wire-and-hope-for-the-best in his examples. He demonstrates that it’s possible to communicate over remarkable distances with nothing more than an off-the-shelf radio, battery pack, and an antenna of simple design.

Continue reading “Justin McAllister’s Simple, Post-Apocalypse-Friendly Antennas”