Tip:
Highlight text to annotate it
X
wall
this time on the show we continue having the airwaves with RF cat USB radioed on
the lawn a little bit a python lovin
but I'm setting up a little counter surveillance Rick the easy way with a
life onion rather distro
less portable VPN clients for unprivileged users
what are your open source options all that and more this time on hack 5
this segment a pack 5 is brought to you by domain dot com
ok back by my name is Darren kitchen I am Shannon Morse
all professional today yes gawlik robot
are you a Cylon sheesh I heard the US in August
not ok loop leading chrome people are long
there are no skin jobs in bloody or are there tellin
John two hands you watch it yes it's ok cool I'll
hi I love it and i also hit that it's like in these will attend
minute doses I now get this boilers but it's no spoiler that kinda so that have
a bloody crime are 10 minutes and that this tragic and by the way beyond
figured I cover huge fans of Battlestar Galactica
Azimi of Inception at the series about the same time the hype that came out so
it's
very wonderful to seen it back and show back
you know what else I am a big fan of yes people nasty on the word technologist
what are you talking about we saw the word technical of such
%uh you're giving away a week of secrets today
yet and you know what that you just do it you just get a quote from a war games
which is even better kinda you know is props if you know the the
on the instance that quote but the but yeah I mean
Technol last is just it's funny because it's like
in like three frames or something up the menu hackers
which is coming up on twenty years old now oh my
got to throwing that out there make everybody else P or those born in the
80's
I feel really all that haha that's pretty penny if you haven't seen it
guy cuz this is the case went to an attack by meet up couple years ago
in Toronto and this awesome kid came out he was like
14 at the time or something so couldn't sit in the bar area parts it was so cool
and he had never seen war games diverting hackers never seen on
sneakers yeah it was so poorly call really good old-school hacker movie
you know they'll make good one of the more but Yahweh down and down
thickness soared polls calling out swordfish
here well I found this Wired magazine I picked it up because it's got Brianna
front nose like a very
but just like times an open-source
which really sad yeah so in here who cares about the fire right but check
this out I
it's not as well one-third if this is this here that cover
I yeah its funny that they would get here
Carter there's a clear yeah all the right here
screen and a clause techno who decided to put that in there you know they also
not miss lee watch
either hackers or show why it's not really yes that's what is interesting to
see the trend
those those words over time license I open and I looked at that and the only
time you ever see that word is
whenever we say trust your tech lasso you know why but
you know I because I have no idea and the show and I was like let's just talk
like a
phrase or something you know it's a good slogan yeah I think
at the time TwinAir know they do this anymore but they say I
in other places in the can or something they started do this seven at the end
iPad today
we how why did on the last episode sir what
does like to *** okay I guess I had all it was
the weirdest thing about they'd they do that at the end of every iPad today
did they do that on on your BD shows well by your honor vampire dairies
that is I as I found out that stands for now okay
I we should probably get into the hacking
I guess I'll alright so what are we doing today well I R you have talked
about this last week underscoring dollar and so excited about
playing with the pork on bad im very proud to
have our logo actually on it rex is this little software company from Redmond
I don't really know what to do but down which sponsored the bad
and I it's one of those things that I'm super excited about
I i'm I'm really getting into are a lot of software-defined radio SDR
and the idea I love you know it's actually kind of an extension of those
things that we've been talking about a lot of contact 50 for years
a in regards to wifi and Bluetooth and other fun particles exit be
and the whole idea that you know packets are packets and it's just like
a different frequency or a different modulation technique and so
this is not are 101 on top refined radio
because we're actually not getting into St are in that terms today
we're going to cut it either way and with something a little easier and
that's what I love about the torque on bad to talk about this recently
basically this guy here is
I would say yes software defined radio in the sense that like AR
a US RP from Addis or a at the forthcoming
pack RF or the on or any others like TV tuner is that you may have seen that can
do
STR do it is basically a
implementation I love this chick from Texas Instrument
call the CC 1111 or 1110 the calculator
now Texas Instruments makes more than tax calculators a mix
critical chips and this one makes it really easy
I had to do you all sorts of different Tom radio stuff basically
it operates within 300 in 928 megahertz
it can do for those that are curious does my solution tapes
to FSK GSK and SK SK and
oh okay those are just different frequency shift keying
impotent checking on-off keying we're not get gonna get into
modulation stop right now but yes sounds like a lot to cover suffice it to say
the beauty of this
chip is that when coupled with the right firmware
you can do some really amazing stuff very simply
using Python as on a show an example of that today
%uh this is all put together with an awesome tool called
RF cat and so here's
RF cat as or cat is over at
Co double dot com I it free and open source
at listen bunch of other cool people put this together and this is the client and
the firmware the source code that you can go ahead and put
on a supported uncle now the dongles include the IM me
you may have seen this is a pink pager for I'm
a guest for girls cuz its you can use it as a boy to
akers love these things because they support the
the CC 1111 chip in them there's also the CC 11:11 p.m. K which is a prototype
board from
on from TI and then the Kronos
has a watch dunkle head manage their
watch caps or whatever so they also you know that
and now the talk on bad
front work on 14 has ACC 1111 into it already is set up
with the the or cap firmware is pre-installed it also has a CC
bootloader on here so you could actually
go ahead and change the firmware that on it I
you can program it with these these pins rate here and here. allow you to like
plugin like a good
that which is a a programmer on so that's pretty cool
and basically using RF cat
you can do some really interesting things with radio without having to
worry too much
about to other stuff there yet
10 hours left that interesting it's a very very good so we've heard about a
bunch of cool stuff that we can do but what are those cool thing
basically anything within those three hundred to two hundred and
our 928 megahertz stuff using that much relations
the or cat library makes it really easy to program some things with that
to give you an example of what others have done here is an article from
Andrew no hawk I about hacking pics here email it's
so I may have late one of these remote for your keys
and he does a great job at explaining I how using software defined radio
I he was able to you know sniff some stuff off is key
how is able to you you know I decode the captured
the signal from is a transmitter and how he was able to use or a cat
to go ahead and transmit that so it's basically the same concept
it's the same concept of a replay attack yes which we typically do in like
were used to that and WiFi right I see this interesting thing and it does that
other interesting I did this over a
me by Jay's house where he had its like a it
well my friend Jay does this really cool home automation system
I'll and it works by I am I
over ZigBee oh yeah yet but there's a TCP interface over the wifi
and basically it's the we were able at Lake his guy gate
where likely send a certain code to the gate to his house for open
and I talked about this weeks back where is how we got
my boi de ese gate open it was at the same taller was that something
perhaps I'm not nobody d Dr
embryo yeah I well know you
but I it descends also we actually just tied to the garage door opener
%uh again Sam what time that was a fun episode going to check that out but
in the sense that I'm Jays his
gay worked on ZigBee I they resist the bug code
open-air I was able to step out of the wifi and then I was able to use net kak
I think it was on ako to just piped the hex codes to it that is expected to see
it open the door to that an example
scary a replay attack words like if you can't buy any interesting bit
and send it again if there's no sort serve if that's the whole security model
is sending some interesting bits
and in this case as you can see on Andrew's blog he talks about how
you know he was able to actually examined in here you'll see these are
the waveforms
that produce the unlock for it and so you can actually see that this is the
one that is here that one that's here we're gonna get into more this as we get
into STR
but here's some source code to give you an example
this is just some basic Python
using the RF cat library we can set your mind relation you can set your frequency
in
in your body and other things and then basically use a little bit
scripting for with Python to do some basic replay attacks in
all sorts of other fun things stick in this the whole concept is to get you
thinking
about radio in more terms and just what we're used to with like wifi where the
stack in all the other underlying
persons per structure done for you yeah we can you find it interesting things
and legally with the 900 megahertz spectrum which is part of the industrial
science medical bands
that the SEC gave us years and years ago that include
by when a kegger hurt so we use up for WiFi and 2.4 gear to use for WiFi
I 900 megahertz here in the US export 33 in Canada
no 43 here but not in Canada and then there's a lot I really low stuff as well
there is a
loafers amid person I first play with us and we'll get into those later but the
point being
this can do fun happy stop transmitting and receiving
very inexpensively and the reason why I am excited about this
badge in particular I I know you're gonna be saying like bomber I didn't go
to work on I didn't get the badge
arm you know i din get on the hack shop when we have like pendulum
I surplus but what's nice is here the harbour design files
it is open hardware anybody can go and grab a copy this and build some
build your own talk on bad and given that all this basically works on the
concept I'll
using that Texas Instruments chip arm
any implementation available do whether you've got the pink pager
or the krona staying or further hardware which I understand as
forthcoming so that will be exciting yeah where
all of us can kinda like use this stuff is what I'm excited by using a poor
is on storm Ford messaging
at Def Con so it's kinda like a big early lead working project I have
%uh so what's the problem with Def Con I
don't use wireless what it don't use wifi
don't use Bluetooth yeah now don't even use GSM basically turn off your computer
when you go
look at your phone you yeah and so frustrating because
if you're like okay so say like you wanted to tell
dual core eighty if what you wanted to tell in like hey the party tonight
changed and now it at this casino /a
right how would you tell them Ono I can't find them I don't turn on my phone
and my phone can send text messages over GSM wanna make it
yeah so what you do is you tell 10 people right now
from actually see them but then you know that the message is going to be
construed on the way over to you
dock or and that actually an example store forward
the game telephone that we split and the problem with that you're totally right
you tell 10 hackers hey when using dual core let him know this
maybe we'll see about the party later that night LA you're like ok we
obviously got a message that the party is now here
needs Lake yeah cool story bro I got twelve different messages and they were
all different
yeah exactly so I like the idea that using
fun stuff that we're going be getting into here on REI GPG slash pgp series
on that will be able to do fun store in Fort stuff
with the the 900-acre tie SMB and specifically this kinda dunkle
at in that secure messaging act
Def Con and I know this is kind of like I would've been is that sick
here well the will put the Syrian the application there have
okay so it's like I'll transmit pgp thing in any football side keys and
everything is all happy and get into that and it'll be fun
%uh the on that
the difficulty a courses I say that out a bit and I mean out like the regular
bans were used to
a WiFi and Bluetooth and cell phones I it still only a matter of time till
people like
a do what they do have to concentrate income tax and then start to
what you know the offing the crap out of everything so
that's always fun when you're trained you know Courtney at that convention and
coordinating
yeah that same yeah thats always fun I think holy
we've always been provided some secure networks yes for that so it's just nice
thank you for all of the conference um
quarter owners hey pearly whites care networks for
your sponsors and vendors convention Management so I'm really excited about
showing you the possibilities when you take some awesome open source libraries
like RF cat and you put it together with call Python scripts
and can give you a taste of what's capable are being done
with a a fun little USB radio like this and we're going to getting into you
setting this up in win 2 1204 here in just a bit the first can take a real
quick break
you guys know where huge fans of domain dot com they're the best place to go for
setting up a new business in a showcase your blog
talking about your cat whatever is a dude or may not come is the best place
for your next big idea and if you're looking for a new domain name continues
on the dot com a
shoulda got da common a registered pack 5 regardless
he lied because it's the original women's basketball globally understood
immediately lends credibility and you know no matter what
if you're into buying and selling domains dot com
have the highest after market value and you completely new domain name and dot
com
over at domain dot com I know she and I aren't crazy about it because a reliable
their portable they're so easy to use and they make it really fun to do
business with them because they have an awesome social media presence
on Twitter you can't win em at don't mean dot com and get this *** huge fan
to pack 5
they wanna *** you up with fifteen percent of their already a portable
domain names and hosting all you have to do is use coupon code
hak5 at checkout to get yourself 15 percent of
when you think domain names think domain dot com
I'll