IoT pentest via hackRF and Gnuradio

Set-up end-to-end is complex (here in Parrot Security OS and generic hackRF HW)

Recon and Pentest of the growing number of connected devices many with weak security (Car, house radio-keys, RF tags etc.).

Basic home or biz pentest: List critical devices and frequency ranges, activate/trigger device and record for post-processing. Security may be OK or weak with possibility to re-transmit recorded/cloned radio sequence.

Gnuradio Install on Linux, here Parrot Security OS (Debian)
$sudo apt update
$sudo apt -y install gnuradio

Run companion (GUI) for workflow definition
$gnuradio-companion

hackRF one SW install https://hackrf.readthedocs.io/en/latest/installing_hackrf_software.html https://installati.one/debian/10/hackrf/

FCC ID search

Tutorial Michael Ossmann https://greatscottgadgets.com/sdr/1/

fcctable (frequency allocation)

Example FM radio

NFM_rcv.grc_Download

Posted

in

by

hannes

Tags: