Upload
others
View
46
Download
4
Embed Size (px)
Citation preview
Tech
Nig
ht HackRFOne
Cell GPRS sim900
SDR HackRF and RTLIASP 560
GPRSGe
nera
l P
acke
t R
adio
Serv
ice
Dr. John YoonCCollege
YBERSECURITY
Mercy
Signals Around Us
Cell phones (900/1, 800/1, 900 MHz) Wifi (2.4 & 5 GHz) Bluetooth (2.4 GHz) Zigbee (2.4 GHz) Broadcast TV (54 – 900 MHz) HAM (varied) Police & military comms (varied) Satellite comms (varied) Codeless phones (1.7/27/43-50/900 MHz, 1.9/2.4/5.8 GHz) Radar (varied) Car remotes (315/433 MHz) Garage door openers (310/315/390 MHz) TV remotes (varied)
Agenda
Lab on Wireless Signals
Lab on Wifi Signal
Lab on Cell Signal
Lab on Ad-hoc Wireless Signal
Lab on Wireless Signals
Prep
Hardware
• HackRF
• RTL SDR
Software: Spectrum Analyzer
Windows
• SDR#, HDSDR, SDR-RADIO.com
• https://www.rtl-sdr.com/hackrf-sweep-spectrum-analyzer-windows/
Mac & Linux
• SCR Console
• GNU Radio, GQRX, Linrad
Android
• SDER Touch, Wavesink Plus,
FCC License Search
FCC Database Search
• https://www.fcc.gov/licensing-databases/search-fcc-databases
• http://wireless2.fcc.gov/UlsApp/UlsSearch/searchAdvanced.jsp if you are licensed…
Driver Installation
RTL
HackRF
• Download the driver if your device is not recognized
oVia zadig (download from https://zadig.akeo.ie/)
In Windows, driver managers
• Then verify the existence of your device using
• devmgmt.msc
SDR-Radio Console Installation
Download
• http://sdr-radio.com/
oDownload > 64-Bit
Then, Install SDR-Radio (v3, 64-bit)
SDR Console for
• RTL-SDR and HackRF
SDR-Radio Console Configuration
Radio Definition
• Search > RTL Dongle
• Search > HackRF
Click OK
Then, on Select Radio
• Choose Bandwidth
• Then, Start
Basic SDR-Radio Console
Practice
Basic SDR-Radio Console
Practice
Modulation
Frequency Modulation• Broadband FM
• Narrow band FM
SAM• Sinusoidal Amplitude Modulation
LSB/USBoGood for tuning in
• Lower single Sideband
• Upper single Sideband
CW• Continuous wave
WFM = Wideband Frequency Modulation - An greater % of carrier is modulated to a much higher deviation to provide high fidelity.
NFM = Narrow Frequency Modulation - A small % of the carrier is deviated and so can be spaced closer to other carriers but with very reduced fidelity
AM = Amplitude Modulation - The information is carried in the sidebands on either side of the carrier by injecting the sound energy onto the carrier
L/USB or SSB = Lower/Upper Side band or Single Side Band - Similar to AM but without a carrier and all sound energy is imposed on ONE side band
DSB = Dual or Double Side Band - Like AM (USB+LSB) but with no carrier CW = Continuous Wave - Used for sending Morse Code, the process simply
turns the carrier on and off (pure carrier) RAW is the raw data stream meaning the I and Q data samples but
untreated where as all the other "modes" imply some processing The frequencies listed above are general guide lines but there are no set
rules for which modes are carried on which frequencies. As a rule of thumb, the lower you go in frequency the more narrow the mode of operation but this is not set in stone any where.
Hope this helps - KD6W
HackRF Spectrum Analyzer
Software
• Download from https://github.com/pavsa/hackrf-spectrum-analyzer
Installation
• Requirement: Java Runtime Environment
o If not installed, please do so first
o Set the PATH environment
• Then, install this analyzer
HDSDR
Read
• This: https://0xstubs.org/using-the-hackrf-one-as-a-wideband-spectrum-analyzer/
Download
SDR#
On Raspberry
• sudo apt-get install gqrx-sdr
On windows, Download
• https://airspy.com/download/