Over in our store we're currently selling a RadarBox branded bundle that includes an ADS-B optimized antenna with 10 meters of coax, and an ADS-B optimized RTL-SDR dongle. RadarBox24 is an ADS-B aggregation flight tracking service similar to other services like FlightRadar24 and FlightAware. The set is RadarBox branded, but it can be used with any tracking service, or just for your own ADS-B station.
The bundle is now on sale with 15% off!This brings the price of this bundle down to $42.45 plus shipping. The sale will last until 19 September and only while stocks last.
To purchase please visit our store and scroll down to find the RadarBox bundle Add to Cart button.
The antenna has 7 dBi gain, 50 (+-5) Ohm impedance, and is made from fiberglass and aluminum. It is fully waterproof and outdoor rated with 10 meters of coax cable and includes mounting clamps. The RadarBox RTL-SDR is specifically optimized for 1090 MHz ADS-B reception with it's built in filter and low noise amplifier.
The bundle ships out once per week and tracking is provided 1-2 days after shipping.
RadarBox Bundle: Includes 1x Outdoor ADS-B Antenna AND 1x ADS-B Optimized RTL-SDR
The Hermes Lite 2 (HL2) amateur radio direct sampling HF SDR transceiver board is now active for a group buy over on Makerfabs. The price is $225.70, and there need to be 25 orders before the group buy is confirmed. If confirmed, production will begin on 23 September, with production estimated to take about one month. More information about the group buy available on the Hermes Lite 2 Wiki. The N2ADR filter board for transmitting with the HL2 is also available on Makerfabs for $52.70.
The Hermes-Lite is able to be very low cost because at it's core is the AD9866 chip which is a mass produced RF front end (LNA + ADC & DAC) that is commonly used in cable modems. Because it is a mass produced commodity, the chip only costs approx. US$35-$25 on Mouser depending on quantity. The chip has a 12-bit 80 MHz ADC and DAC, meaning that if used without any analog mixer front end (like in the Hermes-Lite) it can receive the entire spectrum between 0.1 to 38 MHz all at once.
The Hermes-Lite is also a lot more than just the RF chip, as it contains a set of switched RF filters and a 5W power amplifier for TX. It also interfaces with a PC via Ethernet and has a built in FPGA for DSP processing.
At last years Chaos Communication Congress (35C3) Conference, leveldown security presented their findings on multiple security vulnerabilities present in cryptocurrency hardware wallets. Cryptocurrency is a type of digital asset that relies on computers solving cryptographic equations to keep the network trusted and secure. Popular cryptocurrencies include Bitcoin, Ethereum and Ripple. To access your cryptocurrency funds on a computer, a software application called a wallet is used.
However, if a computer holding a wallet is compromised, it is possible that the wallet could be opened by a hacker and funds transferred out. To improve security, hardware wallets are available. These are USB keys that require you to enter a PIN on the key before the funds can be accessed. If the USB key is not inserted and activated by the PIN, the wallet cannot be opened.
All electronic devices including hardware cryptocurrency wallets unintentionally emit RF signals. One possible attack against a hardware wallet is to analyze these RF emissions and see if any information can be obtained from them. The team at leveldown found that the Ledger Blue cryptocurrency wallet in particular has a flaw where each PIN number button press emits a strong RF pulse. By using a HackRF and machine learning to analyze the unintentional RF output of each button press, the team was able to retrieve the PIN number with only RF sniffing from more than 2 meters away.
To do this they created a GNU Radio flowchart that records data from the HackRF whenever an RF pulse is detected. A small Arduino powered servo then presses the buttons on the wallet hundreds of times, allowing hundreds of RF examples to be collected. Those RF samples are then used to train a neural network created in Tensorflow (a popular machine learning package). The result is a network that performs with 96% accuracy.
If you're interested in exploring other unintentional RF emissions from electronics, check out our previous post on using the TempestSDR software to spy on monitors/TVs with unintentionally emitted RF, and the various other posts on our blog on this topic.
Over on YouTube Andreas Spiess has uploaded a video titled "How does Software Defined Radio (SDR) work under the Hood?". The video is an entertaining introduction to how software defined radio works and begins from the beginning by explaining how basic analogue radios work with components such as modulators, demodulators, frequency generators, mixers and filters. After the basics he goes on to explain the digitization of radio signals that occurs in SDRs, and gives an introduction ADCs and how IQ sampling works.
Later in the video Andreas shows various applications for SDRs, discusses various SDRs on the market like RTL-SDR, HackRF, SDRplay, LimeSDR and PlutoSDR and introduces GNU Radio Companion and other SDR programs from our big list of software post.
#286 How does Software Defined Radio (SDR) work under the Hood? SDR Tutorial
Over on YouTube TechMinds has uploaded a video showing how to use the Iridium Toolkit software to receive data and audio from Iridium satellites with an Airspy. Iridium is a global satellite service that provides various services such as global paging, satellite phones, tracking and fleet management services, as well as services for emergency, aircraft, maritime and covert operations too. It consists of multiple low earth orbit satellites where there is at least one visible in the sky at any point in time, at most locations on the Earth.
The frequencies used by the older generation Iridium satellites are in the L-band, and the data is completely unencrypted. That allows anyone with an RTL-SDR or other SDR radio to decode the data with the open source Iridium Toolkit. If you're interested in how Iridium Toolkit was developed, see this previous post about Stefan "Sec" Zehl and Schneider's 2016 talk.
In the video Tech Minds shows decoding of various data, including an audio call and the satellite tracks and heat map of Iridium satellites.
We just wanted to note that this Monday the reduced preorder pricing of US$130 + shipping will end, and the price will rise to the retail price of $149.95 + shipping. So if you have been thinking about ordering a unit, now would be a good time. Ordering is currently possible through Indiegogo. On Monday we will change to our own store. EDIT: Now available to purchase on the Othernet Store.
For shipping, US orders will be sent domestically from Othernet's office in Chicago. They are still waiting on the US shipment to arrive, but it is expected to arrive by the end of next week. Once shipped locally you will receive a shipment notification.
For international orders, the packages are being labelled now, and should be going out early next week, or sooner.
KerberosSDR Inside and Outside the Enclosure
Future Updates to KerberosSDR
With the profits raised from KerberosSDR sales we are looking to continue funding development on the open source server software and visualization software being created (as well as applying updates ourselves). In future updates we will be looking at features such as:
Streamlining the sample and phase sync calibration process.
Experimenting with software notch filters for calibration (may reduce the need to disconnect the antennas during calibration).
Reworking the buffering code for improved sample ingestion performance and increased averaging.
Direction finding and passive radar algorithm improvements.
Creating a networked web application for combining data from two or more physically distributed KerberosSDRs over the internet for immediate TX localization.
Updates and bug fixes for the Android mobile direction finding app for use in vehicles.
Improving passive radar to be able to use all four RX ports for surveillance so that larger areas can be covered.
Plotting passive radar pings on a map.
Beginning experimentation with beam forming.
In the farther future we hope to eventually have even more clever software that can do things like locate multiple signals in the bandwidth at once, automatically plot them on a map, and track them via their unique RF fingerprint, or other identifiers.
Future hardware updates may see more streamlined calibration and smaller sizes.
Over on Reddit user u/isysopi201 has put up a fun post showing what an RTL-SDR Blog V3 looks like under an X-Ray machine. With the full resolution images, it is possible to see the PCB traces in internal planes, the windings on the electrolytic capacitor, inductors, USB choke and direct sampling matching transformer, as well as the bond wires on the RTL2832U and R820T2 silicon chips that connect the pins to the silicon.
Thank you to Nils Schiffhauer (DK8OK) for submitting an article documenting his tests on the Airspy HF+ Discovery (pdf mirror). Spurred on by discussions on the SDR-Console mailing list, Nils went looking for issues with spurious signals generated by the HF+ itself. In the end he finds some minor spurious signals, but notes that they have absolutely no adverse effects once an antenna is connected.
Youssef Touil (developer of the Airspy HF+ line of products) has also noted that the minimum discernible signal (MDS) of the HF+ is so low that it's become normal for very weak spurs to now be visible without an antenna connected. However, once an antenna is connected the natural atmospheric noise floor which is much higher than the MDS hides these spurs, and so the spurs have no consequence on reception.
In Nils' first test he uses a very high end Winradio W65DDC SDR to detect the spurs coming from an Airspy HF+, Airspy HF+ with preselector retrofit, and the Airspy HF+ Discovery. The results are quoted below:
[With the Airspy HF+] you indeed see a very few spurious signals, all well below -140 dBm/Hz.
With the Airspy HF+ Preselector connected, the number of spurious signal is very much reduced, as is their maximum level.
This picture still further improves with the Airspy HF+ Discovery connected: all visible seven spurious signals are measured to well below -150 dBm/Hz.
The first result is clear:
Airspy has improved also the spurious signals from model to model, landing at a stunning reduction with their matchbox-like Discovery.
The spurious signals were significantly reduced in both numbers and level.
Together with sensitivity and dynamic range, the performance of these SDRs is exceptionally good. If you see their price tag, they are a real bargain.
Overall: they deliver professional performance in every important aspect at an incredible low price.
In the second test Nils tunes to the center of a spur, then tested with a dummy load and then antenna connected. His results showed that all spurs disappeared once an antenna was connected. He summarizes below:
Yes, there are a very few and low-level spurious signals at all Airspy’s receivers – as they are found [much] worse at some competing SDRs.
By development, even this has been significantly improved from model to model with the new Discovery leading the gang.
All spurious signals disappear with an antenna connected.
There has been found no case where, in practice, any spurious signal even remotely touched or even limited reception of the most miniscule signals.To complain about “spurious signals” simply is “Much Ado about Nothing” in an Ivory Tower, far away from any practical application.
Nils also tested 7300 kHz reception and the co-existance of weak amateur radio signals with strong broadcast signals.
