Tech

Nig

ht HackRFOne

Cell GPRS sim900

SDR HackRF and RTLIASP 560

GPRSGe

nera

l P

acke

t R

adio

Serv

ice

Dr. John YoonCCollege

YBERSECURITY

Mercy

Signals Around Us

Cell phones (900/1, 800/1, 900 MHz) Wifi (2.4 & 5 GHz) Bluetooth (2.4 GHz) Zigbee (2.4 GHz) Broadcast TV (54 – 900 MHz) HAM (varied) Police & military comms (varied) Satellite comms (varied) Codeless phones (1.7/27/43-50/900 MHz, 1.9/2.4/5.8 GHz) Radar (varied) Car remotes (315/433 MHz) Garage door openers (310/315/390 MHz) TV remotes (varied)

Agenda

Lab on Wireless Signals

Lab on Wifi Signal

Lab on Cell Signal

Lab on Ad-hoc Wireless Signal

Lab on Wireless Signals

Prep

Hardware

• HackRF

• RTL SDR

Software: Spectrum Analyzer

Windows

• SDR#, HDSDR, SDR-RADIO.com

• https://www.rtl-sdr.com/hackrf-sweep-spectrum-analyzer-windows/

Mac & Linux

• SCR Console

• GNU Radio, GQRX, Linrad

Android

• SDER Touch, Wavesink Plus,

FCC License Search

FCC Database Search

• https://www.fcc.gov/licensing-databases/search-fcc-databases

• http://wireless2.fcc.gov/UlsApp/UlsSearch/searchAdvanced.jsp if you are licensed…

Driver Installation

RTL

HackRF

• Download the driver if your device is not recognized

oVia zadig (download from https://zadig.akeo.ie/)

In Windows, driver managers

• Then verify the existence of your device using

• devmgmt.msc

SDR-Radio Console Installation

Download

• http://sdr-radio.com/

oDownload > 64-Bit

Then, Install SDR-Radio (v3, 64-bit)

SDR Console for

• RTL-SDR and HackRF

SDR-Radio Console Configuration

Radio Definition

• Search > RTL Dongle

• Search > HackRF

Click OK

Then, on Select Radio

• Choose Bandwidth

• Then, Start

Basic SDR-Radio Console

Practice

Basic SDR-Radio Console

Practice

Modulation

Frequency Modulation• Broadband FM

• Narrow band FM

SAM• Sinusoidal Amplitude Modulation

LSB/USBoGood for tuning in

• Lower single Sideband

• Upper single Sideband

CW• Continuous wave

WFM = Wideband Frequency Modulation - An greater % of carrier is modulated to a much higher deviation to provide high fidelity.

NFM = Narrow Frequency Modulation - A small % of the carrier is deviated and so can be spaced closer to other carriers but with very reduced fidelity

AM = Amplitude Modulation - The information is carried in the sidebands on either side of the carrier by injecting the sound energy onto the carrier

L/USB or SSB = Lower/Upper Side band or Single Side Band - Similar to AM but without a carrier and all sound energy is imposed on ONE side band

DSB = Dual or Double Side Band - Like AM (USB+LSB) but with no carrier CW = Continuous Wave - Used for sending Morse Code, the process simply

turns the carrier on and off (pure carrier) RAW is the raw data stream meaning the I and Q data samples but

untreated where as all the other "modes" imply some processing The frequencies listed above are general guide lines but there are no set

rules for which modes are carried on which frequencies. As a rule of thumb, the lower you go in frequency the more narrow the mode of operation but this is not set in stone any where.

Hope this helps - KD6W

HackRF Spectrum Analyzer

Software

• Download from https://github.com/pavsa/hackrf-spectrum-analyzer

Installation

• Requirement: Java Runtime Environment

o If not installed, please do so first

o Set the PATH environment

• Then, install this analyzer

HDSDR

Read

• This: https://0xstubs.org/using-the-hackrf-one-as-a-wideband-spectrum-analyzer/

Download

SDR#

On Raspberry

• sudo apt-get install gqrx-sdr

On windows, Download

• https://airspy.com/download/