Over on YouTube, the "Spy Collection" channel has recently uploaded a video detailing the US National Security Agency's (NSA) GENESIS spy gadget. GENSIS was a modified Motorola cell phone that contained a full software-defined radio system within. This system allowed NSA agents to discreetly record the local RF spectrum for later analysis. For example, an agent may have been able to record the frequencies and RF protocols used at particular facilities of interest for use in later operations.
Details about the NSA GENESIS were revealed when the NSA's Advanced Network Technologies (ANT) catalogue was publicly leaked back in 2013. Originally, project GENESIS was due to be declassified in 2032.
Spy Collection also notes that the leaked documents indicate it is possible the phone was also used, or intended to be used, as a "finishing tool". In other words, a remotely detonated explosive phone, that could be given to persons on the US terrorist list.
Recently, SunFounder sent us a free review unit of their latest "Pironman 5 MAX" enclosure for Raspberry Pi 5 devices. While not directly related to SDR, we thought we'd accept the unit and review this product, as RTL-SDRs are often used together with Raspberry Pi 5 single-board computers. Depending on the number of SDRs connected and the software used, SDR applications can consume a significant amount of CPU, causing heat and throttling down of CPU speeds; therefore, adequate cooling may be necessary.
The Pironman 5 costs US$94.99 if purchased directly from the SunFounder website, and they advertise that US duties and EU VAT are included in the pricing. There is also the slightly lower Pironman 5 model available for US$79.99. The main difference between the 5 and 5 MAX is that there is only one SSD expansion slot vs two on the 5 MAX, and no tap-to-wake OLED functionality.
Overview
The Pironman 5 is what we would consider a high-end enclosure for the Raspberry Pi. It includes a large CPU tower cooling heatsink with a fan, along with two case fans to keep the internal temperatures down.
It also adds a dual slot NVME M.2 expansion board to the Pi 5, so that you can install two SSDs or one SSD and a Hailo AI accelerator module. SSDs might be useful for RTL-SDR users who are recording large amounts of IQ data, or saving many weather satellite images, for example. The Hailo AI accelerator module could turn a Raspberry Pi and RTL-SDR into an RF intelligence powerhouse. One advanced AI use-case might involve running local Whisper speech recognition to log voice communications to text, followed by using a local LLM to summarize daily received data (noting that you'll need to wait for the Hailo-10H model to run local LLMs).
Finally, it also adds an OLED status display, which shows current CPU temperature and fan speeds, as well as an on off button.
Another plus is that the GPIO header remains accessible on the outside of the enclosure, thanks to an extender included in the design.
Pironman 5 Fully Assembled
Assembly
Assembly of the Pironman 5 took just over 30 minutes. It involves screwing in standoffs, seating the heatsink/fans, connecting jumpers and ribbon cables, and screwing down the panels. A nice color paper assembly manual is provided, making the installation easy to follow. Anyone who is mildly familiar with installing connectorized PC components should have no trouble.
All parts included with the Pironman 5.Pironman 5 Assembly ManualPironman 5 Built (Acrylic side panels off)
Software Installation and Usage
After assembly, you can simply insert a freshly burned Raspbian image into the SD card slot and power on the unit.
At this stage, you now need to install some software to properly control the OLED, CPU fans, and case fans. This involves installing some software from their GitHub, but you can simply copy and paste the commands in the terminal one by one.
Once the software is installed a web UI is exposed at <IP_ADDR>:34001. Here you can monitor various stats including CPU temps, and make changes to the OLED, RGB and fan behaviour.
Pironman 5 Web UI
OLED QC Problems?
Unfortunately, our unit had a problem where the OLED screen wouldn't work. We attempted fresh software installs and reseated all cables and connectors, but had no luck. Upon contacting SunFounder, they immediately sent us a new OLED screen to try. But the replacement also did not work.
However, when trying the new screen, we noticed that the screen would briefly light up when we pressed on the FPC connector. Upon inspecting the FPC connector, we noticed that some pins on the PCB looked suspiciously low on solder compared to the others, so we applied flux and used a hot soldering iron to refresh them. After doing this, the OLED screen began working again.
Based on our dealings with SunFounder, we believe that they're support is good, and any customer facing similar issues would be supplied with replacement parts if required.
Pironman OLED Screen Working
Usage and Performance with RTL-SDR
As expected, with the great cooling in place, the Raspberry Pi 5 never throttled down when running an RTL-SDR with SDR++. We also tested it with our KrakenSDR system, which requires more CPU, and found great performance too.
The rear GPIO fans are quiet enough, and the CPU fan makes almost no noise inside the enclosure. We ran a stress test using the 'stress' Linux package, which can push all four CPU cores to 100%. With the fans running in a room with an ambient temperature of 22 degrees, we saw that the CPU temperature never went above 55 degrees C.
While still running 'stress', we manually disabled the two GPIO fans, and the temperature stabilized at around 66 degrees C. So the rear fans may only be required to be on when you have an SSD or AI module installed.
Conclusion
If you're looking for a high-quality enclosure and cooling solution for the Raspberry Pi 5, the Pironman 5 MAX is probably the best high-end solution available. Not only does the enclosure protect the Raspberry Pi 5 completely, but the cooling performance is excellent, and the ability to add SSDs and AI modules is great too.
Disclaimer: We were given a unit for free in exchange for an honest review. We received no other compensation.
The researchers used a simple off-the-shelf 100cm Ku-band satellite dish and a TBS-5927 DVB-S/S2 USB Tuner Card as the core hardware, noting that the total hardware cost was about $800.
Simple COTS hardware used to snoop on unencrypted satellite communications.
After receiving data from various satellites, they found that a lot of the data being sent was unencrypted, and they were able to obtain sensitive data such as plaintext SMS and voice call contents from T-Mobile cellular backhaul and user internet traffic. The researchers notified T-Mobile about the vulnerability, and to their credit, turned on encryption quickly.
They were similarly able to observe uncrypted data from various other companies and organizations, too, including the US Military, the Mexican Government and Military, Walmart-Mexico, a Mexican financial institution, a Mexican bank, a Mexican electricity utility, other utilities, maritime vessels, and offshore oil and gas platforms. They were also able to snoop on users' in-flight WiFi data.
Cellular Backhaul We observed unencrypted cellular backhaul data sent from the core network of multiple telecom providers and destined for specific cell towers in remote areas. This traffic included unencrypted calls, SMS, end user Internet traffic, hardware IDs (e.g. IMSI), and cellular communication encryption keys.
Military and Government We observed unencrypted VoIP and internet traffic and encrypted internal communications from ships, unencrypted traffic for military systems with detailed tracking data for coastal vessel surveillance, and operations of a police force.
In‑flight Wi‑Fi We observed unprotected passenger Internet traffic destined for in-flight Wi-Fi users on airplanes. Visible traffic included passenger web browsing (DNS lookups and HTTPS traffic), encrypted pilot flight‑information systems, and in‑flight entertainment.
VoIP Multiple VoIP providers were using unencrypted satellite backhaul, exposing unencrypted call audio and metadata from end users.
Internal Commercial Networks Retail, financial, and banking companies all used unencrypted satellite communications for their internal networks. We observed unencrypted login credentials, corporate emails, inventory records, and ATM networking information.
Critical Infrastructure Power utility companies and oil and gas pipelines used GEO satellite links to support remotely operated SCADA infrastructure and power grid repair tickets.
The technical paper goes in depth into how they set up their hardware, what services and organizations they were able to eavesdrop on, and how they decoded the signals. The team notes that they have notified affected parties, and most have now implemented encryption. However, it seems that several services are still broadcasting in the clear.
As mentioned in a previous post last week, UUGear have recently released their VU GPSDR expansion board for their Vivid Unit single board computer with touchscreen. Together, this combination results in a handheld Linux system, with built-in RTL-SDR and upconverter.
The VU GPSDR has some interesting features, including:
GPS-assisted 24 MHz clock for improved frequency accuracy and stability
An integrated 108 MHz up-converter for HF (under 30 MHz) reception
Dual programmable rotary encoders for tactile control
A software-controlled frequency output port for experiments
Software features, including OpenStreetMap integration and ADS-B aircraft tracking
Vivid Unit with VU Extender and VU GPSDR
Assembly
We won't repeat the assembly steps as the instructions show everything clearly, but we can say that the assembly steps were clear, and the assembly itself was easy. It was simply a case of plugging in a few jumper wires between the Vivid Unit and VU Extender board, screwing down the extender board, and then slotting in the VU GPSDR into the Extender boards mini-PCIe slot, before finally screwing down the GPSDR. Assembly took less than 10 minutes.
Physical Design Review
The system is put together like a sandwich. You have the screen and Vivid Unit on the top, then the Extender board, and finally the VU GPSDR on the bottom.
The Vivid Unit and GPSDR are essentially bare PCBs that connect to one another via the PCIe slot on the Vivid Extender board. This means that there is no enclosure, and you are essentially handling PCB parts in their raw form. In the future, we would like to see an optional enclosure to protect the unit better.
The exposed design results in some flaws that we have to point out. The shielding cans on the VU GPSSDR unit sit on the rear of the system, and during operation, they get very hot to the touch. So much so that handling the unit requires a bit of care to avoid the hot spots. Most of the heat appears to be coming from the AMS1117 LDO on the rear, which gets up to 80 °C, so be careful not to touch it accidentally. From the photos you can see that the RTL2832U and R860 are heatsunk to the shield. This is a good idea to keep the chips cool, but it also means that the metal gets quite hot to the touch. So handling the unit only from the edges is recommended.
Vivid Unit with the shielding cans removed.VU GPSDR Thermals
Secondly, because the Vivid Unit does not have a built-in battery, you need to power it separately via its USB-C port on the side. This makes the ergonomics of handling the unit a little trickier as you also have a cable sticking out. UUGear has noted that they are working on an 18650 battery pack, so this issue may be resolved in the future.
Finally, the "GPS" in the GPSDR comes from the fact that there is a GPSDO with a built-in GPS patch antenna on board. When active, a GPSDO provides excellent frequency stability, meaning that signals will be on frequency and will not drift.
But because of how the system is designed, the GPS patch antenna faces the ground when you look at the screen, even though it should face upward to get a clear view of the sky for satellite signals. However, despite this, we were happy to see that even while upside down, the patch antenna was able to receive several GNSS satellites with sufficient strength in order to obtain a fix when used outdoors.
Indoors, of course, no GPS fix is possible. But the uBlox NEO-M8N GPS module used in the GPSDR also has a fallback TCXO, so even without any GPS fix, the frequency accuracy of the system is good. UUGear also noted that the GPSDO automatically activates once a GPS fix is achieved, so no action is needed when you take the unit outdoors.
Realistically, the design issue with the GPS patch doesn't really matter anyway. For most use cases in handheld operation, the built-in TCXO will be sufficient. Any use case requiring extreme GPSDO precision will probably involve the device being mounted upside down and used remotely.
The screen is clear and bright, the two encoder wheels are non-indented and are in a good spot, and so is the SMA antenna port, although the VU Extender's USB-C plug can block the antenna SMA port if a really fat plug is used (normal-sized USB-C plugs fit OK). The screen is large and has a high resolution, making it possible to use the onscreen keyboard. However, it is still a little fiddly for typing and clicking, so we ended up plugging in a small wireless keyboard.
Thank you to Süleyman Dündar for submitting news about the pre-release of their new product called "DSG-22.6 GHz". DSG-22.6 GHz is a compact, handheld, open-source RF signal generator covering a continuous range from 300 MHz to 22.6 GHz with 1 Hz tuning resolution, 40BC harmonic level, and power output ranging from 15 dBm to -50 dBm.
An RF signal generator produces a clean, stable radio frequency signal at a chosen frequency. It is a helpful tool for testing SDRs and other radio equipment, such as low-noise amplifiers (LNAs), RF filters, mixers etc.
Competition to the DSG-22.6 GHz may include the ERASynth Micro and moRFeus; however, neither covers the wide frequency range of the DSG-22.6 GHz, and it appears that the ERASynth Micro has been discontinued.
Currently, the product is in the pre-release crowdfunding stage on Crowd Supply, so pricing hasn't been revealed. Interested individuals can subscribe to receive updates on their campaign page. The open source code can also be found on GitHub.
DSG-22.6 GHz. An upcoming wide frequency range, hand held and fully open source signal generator.
Thank you to "Geo" for writing in and sharing with us his open source project called "ESP32-Bus-Pirate" which he thinks might be of interest to those in the RTL-SDR community. The ESP32 is a popular low-cost microcontroller due to the fact that it has WiFi and Bluetooth capabilities built in. Although the ESP32 does not have true SDR capabilities, it can leverage its numerous built-in hardware radio components to achieve various interesting feats. Geo writes:
This firmware turns an inexpensive ESP32-S3 board into a multi-protocol debugging and hacking tool, inspired by the original Bus Pirate and the Flipper Zero.
It currently supports a wide range of protocols and devices, including I²C, SPI, UART, 1-Wire, CAN, infrared, smartcards, and more. It also communicates with radio protocols as Subghz, RFID, RF24, WiFi, Bluetooth.
Compared to existing solutions, the focus is on:
Accessibility — runs on cheap ESP32-S3 hardware (around $7–$10).
Versatility — one device can probe, sniff, and interact with multiple buses.
Extensibility — open-source and modular, making it easy to add new protocol support.
I believe this could be useful for hardware hackers, security researchers, and hobbyists looking for a low-cost, flexible alternative to commercial tools.
With the firmware installed on a compatible ESP32 device, it is possible to create WiFi, Bluetooth, and RF24 sniffers, scanners, and spoofers, as well as perform general sub-GHz and RFID sniffing, scanning, and replay attacks. It also has a host of non-RF capabilities useful for hacking devices.
The MOS Technology 6502 is, by today's standards, an ancient chip, having just turned 50 this September 8. It was the chip behind the early age of home computing, powering iconic systems like the Apple I & II, Commodore 64, Atari, and Nintendo Entertainment System. It is, therefore, fascinating that someone has managed to use this chip as a core component in a modern software-defined radio system.
Over on his blog, Anders B Nielsen describes PhaseLoom, a 6502-based "Quadrature Sampling Detector Phase-Locked Loop SDR frontend". Realistically, we want to point out that the 6502 isn't actually doing any digital signal processing (DSP). The 6502 is used as an assembly programmed controller for a SI5351-based local oscillator and multiplexor chip that generates IQ data. Piping the IQ data into a PC with a soundcard is still required to actually get data out. However, Anders notes that he eventually hopes to get some DSP running on the 6502.
With the setup he is currently able to tune just to he 40m band, noting that performance isn't great, but at least it works!
Anders' video below explains the entire design and concept in detail, and we note that he is currently selling a full kit on his store and has uploaded the schematics to GitHub.
With the recent changes to US import policy, many shops in the EU, including ham radio shops, have begun suspending shipments to the United States. This is the result of both a widespread suspension of shipments to the US by most EU mail carriers and the ongoing unpredictability of the situation.
Because of the recent 15% tariff increase on products imported from the European Union, the suspension of several carrier services to the US, and the growing complexity of the US import system, our online shop Passion-Radio.com must suspend all shipments to the United States until further notice.
In particular, La Poste, the French national postal operator, suspended parcel shipments to the United States as of August 25, 2025 (1), removing one of the main EU–US postal channels. At the same time, UPS announced that starting September 8, 2025, an additional international processing fee will apply to all import shipments, regardless of origin.
There has also been some misunderstanding regarding customs procedures. When parcels arrive in the United States, the buyer must settle not only the 15% customs duty, but also the service fee charged by the carrier for filing customs declarations and advancing duties to US Customs. These charges are billed locally at delivery and remain outside the seller’s control. Import duties and tariffs are always the responsibility of the buyer, not the seller.
"Unfortunately, with constant changes in tariffs, rates, and carrier processes, we cannot guarantee fair, efficient, and transparent shipping conditions," said David, F1JXQ, Director of Passion Radio. "Our goal is to resume shipments to the US as soon as a reliable and cost-effective solution is available for everyone."
Meanwhile, our collaboration with five US-based suppliers continues without disruption, as the European Union has not imposed any retaliatory tariffs or reciprocal 15% import duties on products arriving from the United States.
To all our US friends on the bands: we thank you for your understanding and support, and we look forward to resuming deliveries as soon as possible.
They go on to explain an example:
Practical tariffs impact on an item €50
Before tariffs (without 15%, rate €1 = $1.12 April 2025 rate)
Conversion: €50 × 1.12= $56.00*
Total payable ≈ $56.00
After tariffs (with 15%, rate €1 = $1.16 August 2025 rate)
Conversion: €50 × 1.16 = $58.00*
Customs duty 15%: $58.00 × 0.15 = $8.70
Carrier fees (on average, import processing): $15.00
Total payable ≈ 58.00 + 8.70 + 15.00 = $81.70
Total surcharge ≈ +$25.70 (~+45.89% increase compared to $56.00, before tariff tax)
* Not calculated, fees that may apply when converting Euro € <> US $.
FAQ
• Q1: Who pays import duties and tariffs when ordering from Europe?
By law, the US buyer must pay all customs duties, tariffs, and fees when importing goods from Europe. These charges are not paid by the seller.
• Q2: Why do carriers charge extra fees?
Carriers like UPS, FedEx, or DHL must submit customs declarations and advance duties to US Customs. For this, they bill a brokerage or processing fee directly to the buyer.
