The Hak5 Key Croc is a pentesting tool designed for emulating USB devices such as keyboards. It is commonly used by pentesters for keylogging and keystroke injection. It has some advanced features like keyword detection which can be used to detect when a certain word is typed. Under the hood it runs Linux on a quad-core ARM processor.
Over on the Hak5 YouTube channel Glytch shows us that he's been using the Key Croc as a remote RTL-SDR server. The server is setup through a payload script, which is then activated by typing "setup" into notepad on a PC. The keystroke logging and keyword detection feature detects the setup keyword, and runs the payload script which installs the RTL-SDR drivers and rtl_tcp server all while using the keystroke injection feature to output the install progress. Then it is a simple matter of plugging in an RTL-SDR, and connecting to the rtl_tcp server on a program like SDR#.
Glytch notes that this is useful because you can run the entire Key Croc server and RTL-SDR on a portable battery pack, and now you have a remote SDR that you can place anywhere within your WiFi network.
Turning a KeyCroc into an RTL SDR Server w/ Glytch
On this episode of Hak5 (a popular hacking and security themed YouTube channel) Darren and Shannon discuss OpenWebRX, a SDR web broadcasting and remote control tool that is compatible with the RTL-SDR. OpenWebRX is similar to the WebSDR software in that it allows people to connect to remote SDR’s on the internet and tune them to any station within their currently set bandwidth frequency range. Many already functioning online OpenWebRX receivers can be found in the database at sdr.hu.
In the first part of the video the Hak5 team explore the worldwide SDR’s on the sdr.hu website. Then in the second part they show a demonstration on how to install the OpenWebRX software in order to create a SDR broadcast with an RTL-SDR.
FREE SDR receivers all around the world with OpenWebRX – Hak5 1916
Over on YouTube the popular security and hacking themed channel Hak5 have created two videos together with Mike Ossmann (creator of the HackRF and Yardstick One) that give a good introduction and overview on reverse engineering unknown radio protocols. In the video they show how to use a SDR like the RTL-SDR or HackRF to initially capture the radio signal, and then how to use the Yardstick One to reverse engineer and recreate the signal. Using this process they reverse engineer the radio protocol for a wireless liquor cabinet lock.
The Yardstick One is a computer controlled wireless transceiver (but it is not an SDR). The Yardstick One understands many radio protocols by default and can be programmed in Python, lowering the learning barrier for reverse engineering signals.
Mike Ossmann has also been slowly releasing very detailed video tutorials about DSP and radio related topics. If you are interested in reverse engineering radio signals it is a very helpful series to watch.
Radio Hacking: Reverse Engineering Protocols Part 1 – Hak5 1913
Radio Hacking: Reverse Engineering Protocols Part 2 – Hak5 1914
On this weeks episode of Hak5, a popular electronics and hacking YouTube show, the presenters talk about reverse engineering and performing replay attacks on wireless devices such as a doorbell. They also talk about using the recently released Yardstick One which is a PC controlled wireless transceiver that understands multiple modulation techniques (ASK, OOK, GFSK, 2-FSK, 4-FSK, MSK) and works on multiple bands (300-348 MHz, 391-464 MHz, and 782-928 MHz), but is not a software defined radio.
Finally they discuss how to use the RTL-SDR and GQRX to stream received audio over a UDP network connection using netcat in Linux.
Hacking Wireless Doorbells and Software Defined Radio tips – Hak5 1910
If you are interested in the Yardstick one, Hak5 also uploaded two earlier episodes this month showing how to use the Yardstick one, and how to hack wireless remotes by using the RTL-SDR to do the initial reverse engineering, and then using the Yarstick One to do the transmitting.
How to begin hacking with the YARD Stick One – Hak5 1908
How to Hack Wireless Remotes with Radio Replay Attacks – Hak5 1909
On this episode of Hak5, a popular technology YouTube channel, Shannon does a tutorial on how to get started with the HackRF. The HackRF is a recently released software defined radio similar to the RTL-SDR dongle, but with transmit capabilities.
In the video she shows how to set up the HackRF on Pentoo Linux and GNU Radio. She then shows how to use a GNU Radio program that can receive multiple broadcast FM signals simultaneously. The GNU Radio program is one that is based on Micheal Ossmans GNU Radio video tutorials.
Getting Started With The HackRF, Hak5 1707
In this episode of Hak5, a popular YouTube technology channel, Shannon shows how to use the RTL-SDR on Debian Linux. She shows how to install the RTL-SDR drivers from scratch if using a distribution without them pre-installed and also shows how to install and use rtl_fm, a command line FM demodulator.
WiFi Birdhouses and Linux RTL-SDR Setup, Hak5 1703
In this episode of Hak5 amongst other things presenter Shannon explores yet another SDR GUI alternative at around the 14 minute mark. This time she shows SDR-RADIO which is an RTL-SDR compatible alternative to SDR# and HDSDR. She shows how to install SDR-RADIO and how to use it. If you are interested in SDR-RADIO we also have installation instructions available on our Quickstart Guide.
WTF IS GDPR?! Facebook and Apples New Privacy Protections – ThreatWire
In this Hak5 episode Darren discusses the HackRF PortaPack which is a portable LCD screen device that connects to a HackRF SDR and allows portable frequency spectrum visualization. The PortaPack is currently under development and in the future it will allow demodulation of multiple audio modes and possibly digital demodulation and recording capabilities as well.
Later in the episode Shannon presents a tutorial on HDSDR, an SDR GUI alternative to SDR#. She shows how to install and use the HDSDR program.
Exploring With The PortaPack and HDSDR; Then Relaxing In A HotTub, Hak5 1624