Car Keyless Entry Replay Hack (Raspberry Pi)
Name
Muhammad Ahsan
ID
F2019376007
“Car Hacking System sing RTL SDR and RASPBERRY ”
Car Hacking System sing RTL SDR and RASPBERRY
IN This project we hack car using a RTL SDR and RASPBERRY.
Most RKEs operate at a frequency of 315 MHz for North America-made cars and at 433.92 MHz for European, Japanese and Asian cars.
First we use rtl sdr to check frequency of car key remote.
We use Airspay software for recording frequency .
So we get frequency of car key remote and know we record this frequency and then we do replay attack with the help of raspberry.
For doing this replay attack we use a software
“rpitx “
For installing this software we use these commands .
We connect RTL-SDR Dongle with raspberry pi to Do reply attack
We do reply attack using rpitx software in raspberry pi
We get this software from github
Source https://github.com/F5OEO/rpitx
After installing this software we use this command to record frequency:
“ rtl_sdr -s 250000 -g 42 -f 314650000 car_remote.iq ”
After recording frequency we do replay attack
We use this command for reply attack
“ ./sendiq -s 250000 -f 314650000 -t u8 -i car_remote.iq ”
“KNOW our car opens without key just doing this replay attack.”
The
End
Project Summary
Captured and replayed car key fob signals on the 314.65 MHz spectrum using low-cost hardware.
Captured the key transmission code using rtl_sdr command. Saved the signal as a raw IQ file. Re-transmitted the data stream using the sendiq library on a Raspberry Pi's GPIO pins.
Unlocked the target vehicle doors programmatically using low-cost DIY equipment.