Improving HRPT Reception + A Free HRPT Decoder

Back in December Tysonpower showed us  how he was able to receive HRPT weather satellite images with a 80cm and 1.2m satellite dish, LNA and Airspy Mini. 

If you didn't already know, HRPT signals are a little different to the more commonly received NOAA APT or Meteor M2 LRPT images which most readers may be more familiar with. HRPT images are more difficult to receive as they are broadcast in the L-band at about 1.7 GHz and so receiving them requires a dish antenna (or high gain Yagi antenna), L-band dish feed, LNA and a high bandwidth SDR such as an Airspy Mini. The result is a high resolution and uncompressed image with several more color channels compared to APT and LRPT images.

In the last video Tysonpower was successful with receiving HRPT images with his setup. But recently over on his YouTube channel and on his blog Tysonpower has shown how he has improved his HRPT reception by first optimizing the feed and adding in a copper matching line which helps improve the impedance matching of the feed. He also added an L-Band filter tuned to the HRPT signal which he notes made the biggest improvement, and he also moved all the components into a watertight box for permanent outdoor mounting. With these changes he's now able to consistently pull in some very nice imagery. All the images are still received by hand tracking the satellite dish as the satellite passes over, but he notes that he plans to experiment with motorized trackers in the future.

Note that the video shown below is narrated in German, but English subtitles are provided if you turn on YouTube captions.

[EN subs] HRPT - optimierungen und sehr gute Bilder

A sample HRPT image received by Tysonpower.
A sample HRPT image received by Tysonpower.

In addition to the above Tysonpower also writes that he has created a free HRPT decoder for the HRPT signals originating from NOAA satellites. He writes regarding HRPT decoders:

I found it quite complicated to find a decoder for HRPT when i started and there is still no one that you can just Download.

The only free Decoder is the gr-noaa example in gnu radio that has a depricated wx GUI and uses a input from a specific SDR. I used that gr-noaa example and created a decoder that uses the modern QT GUI and has a clean interface. You just put in a wav IQ file from SDR# for example and it will decode the Data into the file you entered. It is not the best one out there in form of signal processing, but a good start i would say.

The decoder can be downloaded from tynet.eu/hrpt-decoder. Below is a second YouTube video where Tysonpower explains how to use the decoder.

[EN subs] Kostenloser HRPT Decoder (GNU Radio) - Und wie man ihn nutzt

Tweet
Share
Reddit
Vote
Email

RTL-SDR Module for the VCV Rack Modular Synthesizer

VCV Rack is an open source virtual modular synthesizer, which is software that can be used to create synth music or sounds. The interface is modeled after physical synthesizers called Euroracks. Recently, Jon Williams has ported rtl_fm to the VCV Rack plugin system which allows him to include live FM music in the synthesizer output. This can be used to create some interesting sounds which he demonstrates on the video that is shown below. The frequency tuning is 'voltage controlled', which simply means that it can be adjusted with a knob in the software.

The code is available on GitHub and is fully open source.

Tweet
Share
Reddit
Vote
Email

A MW DXers Review of the Airspy HF+

Medium Wave DXer Bjarne Mjelde has recently written up his experiences with the new Airspy HF+ software defined radio. If you weren't already aware, MW DXing is the art of attempting to receive extremely weak and distant broadcast AM stations which may be close to powerful local stations. Generally a radio with high end dynamic range specifications is required for this task. The HF+ is a new low cost SDR that aims to meet those very needs.

In his review Bjarne noted that the MW band sensitivity of the HF+ was good, but not quite as good as the more expensive Perseus and Cloud-IQ SDRs. He also noted that the LW band was more attenuated than expected. However, he discovered that there is an optional hardware modification for the HF+ that involves simply bypassing a capacitor on the PCB with a short circuit. After performing this mod Bjarne found that the sensitivity was significantly improved on the MW and LW bands. Also although sensitivity above 15 MHz was expected to be reduced, Bjarne found no noticeable detrimental effects.

Bjarne concludes that the HF+ is a very capable receiver that after modding satisfies the needs of a demanding MW DXer, although he does note the drawback of the limited 660 kHz of bandwidth. In other previous reviews of low cost SDRs on his blog, Bjarne  reviewed the SDRplay RSP1A, ColibiriNano and the Airspy R2 + SpyVerter. Basically he found that none really satisfied his MW DXing needs, with the RSP1A being suprisingly good but failing with strong signals, the Airspy R2 + SpyVerter having too high of a noise floor, and the ColibriNANO being okay, but with a high internal noise level.

The HF+ Mod (Edited by Bjarne, original photo by Nils Schiffhauer)
The HF+ Mod (Edited by Bjarne, original photo by Nils Schiffhauer)
Tweet
Share
Reddit
Vote
Email

How an LNA can Improve VHF Reception with an RTL-SDR

Over on his YouTube channel Adam 9A4QV has uploaded a video showing how an LNA work to improve signal SNR on VHF, as long as the LNA is placed close to the antenna. Adam is the manufacturer and seller of the popular LNA4ALL low noise amplifiers.

On UHF and high frequencies an LNA can help by reducing the system noise figure, but on VHF this effect is small. But if the LNA is placed near the antenna then the LNA can still help significantly by overcoming any losses in the coax cable, filters, switches or any other lossy components in the signal path. It might also help create a better SWR match for the dongle and antenna. The video has some sound issues in during the demonstration part, but on his Reddit thread Adam writes:

Well, monitoring the beacon signal on 144.478 Mhz the S/n without LNA was just 10dB and cannot improve with decreasing the gain. Inserting the LNA in line, close to the antenna, through the Bias-T the S/n improve from 10dB to 23dB.

To meet the most of the user's conditions I was using the RTL-SDR dongle and the 20 meters of RG-6 coaxial cable with F-connectors.

It is obvious that using the LNA on the antenna can improve your reception even on the VHF band. Using the proper bandpass filter instead of a single FM stop filter will give much better results.

LNA4ALL on the VHF close to antenna effect

Tweet
Share
Reddit
Vote
Email

Upcoming Book “Inside Radio: An Attack and Defense Guide”

Unicorn team are information security researchers who often also dabble with wireless security research. Recently they have been promoting their upcoming text book titled "Inside Radio: An Attack and Defense Guide".

Judging from the blurb and released contents the book will be an excellent introduction to anyone interested in today's wireless security issues. They cover topics such as RFID, Bluetooh, ZigBee, GSM, LTE and GPS. In regards to SDRs, the book specifically covers SDRs like the RTL-SDR, HackRF, bladeRF and LimeSDR and their role in wireless security research. They also probably reference and show how to use those SDRs in the  chapters about replay attacks, ADS-B security risks, and GSM security.

The book is yet to be released and is currently available for pre-order on Amazon or Springer for US$59.99. The expected release date is May 9, 2018, and copies will also be for sale at the HITB SECCONF 2018 conference during 9 - 13 April in Amsterdam.

The blurb and released contents are pasted below. See their promo page for the full contents list:

This book discusses the security issues in a wide range of wireless devices and systems, such as RFID, Bluetooth, ZigBee, GSM, LTE, and GPS. It collects the findings of recent research by the UnicornTeam at 360 Technology, and reviews the state-of-the-art literature on wireless security. The book also offers detailed case studies and theoretical treatments – specifically it lists numerous laboratory procedures, results, plots, commands and screenshots from real-world experiments. It is a valuable reference guide for practitioners and researchers who want to learn more about the advanced research findings and use the off-the-shelf tools to explore the wireless world.

Authors:
Qing YANG is the founder of UnicornTeam & the head of the Radio Security Research Department at 360 Technology. He has vast experience in information security area. He has presented at Black Hat, DEFCON, CanSecWest, HITB, Ruxcon, POC, XCon, China ISC etc.

Lin HUANG is a senior wireless security researcher and SDR technology expert at 360 Technology. Her interests include security issues in wireless communication, especially cellular network security. She was a speaker at Black Hat, DEFCON, and HITB security conferences. She is 360 Technology’s 3GPP SA3 delegate.

This book is a joint effort by the entire UnicornTeam, including Qiren GU, Jun LI, Haoqi SHAN, Yingtao ZENG, and Wanqiao ZHANG etc.

 
 
Tweet11
Share
Reddit
Vote
Email
11 Shares

A Homemade Magnetic Loop Antenna used with RTL-SDR Direct Sampling

Over on our forums user "SandB"  has submitted his designs for a homemade magnetic loop antenna with preamp that he uses together with his RTL-SDR in direct sampling mode. The antenna looks like an interesting build so we are resharing it here. He writes:

So, antenna itself represents as handmade on-PCB winding made of two-side-foiled fiberglass size of 30x40 cm. Both 'windings' connected in the middle and thus winded to 'continue' each other.

Preamp located in metal box attached to antenna and connected via 1.5m S/FTP cable to another box with RTL stick. Note that some transistors soldered on PCB in upside-down - dot on layout means base.

Electrically preamp made as 3-stages balanced signal amplifier with low-input impedance and low-pass filter before input with cut-off at 15MHz. Such complications were required to reduce interferences and intermodulations. Antenna itself is more effective on long-medium waves, so preamp has higher gain on short waves (gain varies from 45db at 200KHz to 68 db at 10MHz - see attached freq responce pic). Getting more flat responce at lower frequencies is possible by increasing C10/C11/C12 to 22nF.

My implementation has some additional elements to make possible to adjust preamp's gain in few db's. But seems its quite useless so that details not included in this post. Anyway, its possible to reduce gain by increasing R6 to 500K.

Box with RTL SDR: I put both signal wires as 3 windings via ferrite ring with high permeability just before RTL chip. This noticeable reduced stray interference, that induced in that cable but doesn't affect differential signal.

Tweet
Share
Reddit
Vote
Email

OpenWebRX now Supports the Airspy HF+

Thanks to Stefan Dambeck for letting us know that there is now a fork of libairspyhf made by DL9RDZ which contains an adapted version of airspyhf_rx (the raw IQ generator). This enables the Airspy HF+ to be easily integrated into OpenWebRX.

If you weren't aware, OpenWebRX is a browser based SDR interface and server software that allows an SDR to be used by multiple people at the same time over the internet. It performs audio demodulation and compression on the server side allowing for very low and efficient network usage.  In this way it is different to Airspy official server solution SpyServer which sends the IQ data over the network. So an OpenWebRX server uses significantly less network bandwidth and might be more suitable for those on slower or capped internet connections.

At the moment we're not seeing any public HF+ servers available on the OpenWebRX database at sdr.hu, but this may change in the future.

Airspy HF+ Running on the OpenWebRX Web Browser Interface
Airspy HF+ Running on the OpenWebRX Web Browser Interface
Tweet
Share
Reddit
Vote
Email

Wirelessly Activated Facial Recognition with a Raspberry Pi, Camera and RTL-SDR Dongle

Over on his blog and YouTube channel Trevor Phillips has shown us how he's created a wirelessly activated facial recognition system using a Raspberry Pi Zero, Raspberry Pi camera, wireless button and RTL-SDR dongle.

He uses a handicap door button with wireless transmitter that transmits at 300 - 390 MHz, and uses the RTL-SDR on the Raspberry Pi Zero to detect whenever the button is pressed. The button detection algorithm simply looks for an increase in RF energy via an FFT transform. Once a button press is detected by the RTL-SDR and Raspberry Pi the camera and facial recognition software on the Pi activate, and a text to speech algorithm asks the button presser to face the camera for identification. If the face is recognized in the database the speech to text welcomes the user.

Facial recognition for less than $80

Tweet
Share
Reddit
Vote
Email