Это видео недоступно.
Сожалеем об этом.
DIY CC1101 tool - RF jammer, replay attack, sniffer - cheap & easy tool for radio pen testing
HTML-код
- Опубликовано: 3 июн 2023
- I decided to create cheap RF hacking tool with capabilities similar to Yardstick One. All the parts cost 10$ :-)
The project page is here : github.com/mcore1976/cc1101-tool and... I am giving this design for free to everyone... Well, it is not Flipper Zero, it is even BETTER ! and still simpler to use than Yard Stick One
The parts you need : (Sparkfun) Arduino Pro Micro 3.3Volts / 8 MHz version, some cheap CC1101 module for Arduino (try to buy version most accurate for the frequency you want to play 433MHz/315MHz/868MHz ). I have included ESP32 and ESP8266 versions as well as Arduino Nano/Mega/Uno version (this one requires TXS0108E TTL logic converter to interwork with CC1101 module)
It can do :
- scanning radio bands for most accurate frequency of the signal : scan minfreq maxfreq
- record & replay of radio frames ( rec & play commands),
- you can compose your own set of frames/signal chunks to be sent (add /show/ addraw/ showraw/ flush commands) ,
- has built-in jammer functions (command jam)
- can sniff packets ( command rx / rxraw )
- can send single frame (command tx)
- can capture/record and replay any RF signal via RAW format (like Flipper Zero can - commands recraw/playraw/showraw)
- can store & restore recorded/composed packets and RAW RF into non-volatile EEPROM memory (commands save/load)
- it has CHAT option so you can connect many of such devices over radio to support simple radio communicator
It also has a possibility to set every single parameter of CC1101 chip with simple human readable commands thanks to use of SmartRC library by Little_S@tan ( github.com/LSatan/SmartRC-CC1... )
If you combine it with Universal Radio Hacker tool ( github.com/jopohl/urh ) you can do a lot of things over radio... Even without URH you can do record & replay attacks. The tool can be easily used to perform most of RF attacks to cars and other devices like wireless door openers, door bells and so on. I do not encourage you to do such things but sometimes it is worth to check if the wireless devices that you are using are truly safe, don't you think ?
DISCLAIMER - you use this device at your own risk. I can not be held responsible of your own actions and damages you could do with this device. My video has only educational value and the device should be used responsibly following local law regulations.
I am not showing how to hack in this video, you have to figure it out on your own.
If you like this project please press LIKE button and SUBSCRIBE the channel !
Thank You for your support !
#ALCHNL #ARDUINO #SDR
i like that you still update the project to this day, i really appreciate you for making everything public for everyone to learn👍
I am a fan of the open source :-)
I have just added ESP8266 version with wireless connectivity. USB cables are no longer needed when using ESP8266 board instead of Arduino Pro Micro
ESP8266 as a WIFI client
raw.githubusercontent.com/mcore1976/cc1101-tool/main/cc1101-tool-esp8266-wifi.ino
Also ESP8266 as a WIFI ACCESS POINT version is here
raw.githubusercontent.com/mcore1976/cc1101-tool/main/cc1101-tool-esp8266-wifi-ap.ino
In this version you connect over WIFI to ESP8266 directly on 192.168.1.100 port TCP 23 , SSID is "cc1101"
I have tested this using ESP32-WROOM32 with your example codes. It works like a charm. There are some errors here and there to smooth out and definitely a fun thing to experiment with.
You’re a legend dude, I was always wondering how to apply these cc1101 boards but I’m not a microcontroller guy and this gives me a reason to get into it and a blueprint to follow.
I like to demystify things and make them simpler for others.
check my newest version where you can use wifi to connect to this cc1101 tool - you need esp8266 board instead of Arduino Pro Micro
WIFI CLIENT VERSION
raw.githubusercontent.com/mcore1976/cc1101-tool/main/cc1101-tool-esp8266-wifi.ino
WIFI ACCESS POINT VERSION
raw.githubusercontent.com/mcore1976/cc1101-tool/main/cc1101-tool-esp8266-wifi-ap.ino
Can't wait to see this. I found your videos after making a little NRF24 WiFi Jammer, your mic jamming project is awesome. VERY eager to see what you do with the CC1101, that was next on my list of fun transceivers to play with :)
The project it's work with nrf24 or not
@@user-kz4fy4xl1h no, the NRF operates at ~2.4Ghz, you need a CC1101
Amazing content man! I have been trying to do this for months and this really helped me out!
I am glad you see the potential in this device :-)
Very very good! I like CC1101 very much, just have your tutorial, thank you very much!😀
Your content is best
It worked with esp32!! so useful video!Hope you make more!
I am only making good stuff, hahaha. Have you checked my last video ruclips.net/video/mdkEK_wmWJA/видео.html ?
Hi there
I have prepared WIFI version for ESP8266
raw.githubusercontent.com/mcore1976/cc1101-tool/main/cc1101-tool-esp8266-wifi.ino
Here ESP8266 connects to an external Access Point so you need to provide IP addresses and wifi password in the source code
Also ESP8266 as a WIFI ACCESS POINT version is here
raw.githubusercontent.com/mcore1976/cc1101-tool/main/cc1101-tool-esp8266-wifi-ap.ino
In this version you connect over WIFI to ESP8266 directly on 192.168.1.100 port TCP 23 , SSID is "cc1101"
very use full info an innovating tech keep videos like this
You are an absolute legend my friend ... very humble username but again far from just any engineer ... youve helped me enormously ... do u have a patreon or paypal for ppl to support ur work an vids etx??
I am working for free at the moment :-)
Fantastic video! Would be nice to add a WIFI Access Point mode to the ESP32 board in your github repo.
hi really a great tool well done...if I understand correctly for jamming you have to use the corresponding modulation set
for example if I have the right to jam a 2fsk frequency I must select it before launching the Jamm command?
yes. before jam command you need to do setmhz and setmodulation for best efficiency
Congratulations on the channel!! Could I use the Pro Mini?
No, because it has 5V TTL logic on its output. Browse the comments down for more info
Can you make high freq rf spectrum anylyser using broad frequency rf module like si4432 or si4463 and respberry or arduino with tft colour display?
yes I could but I have no interest in such device. I could buy that kind of stuff on aliexpress. I am only making things you can not easily buy
@@justanengineer5599 everything is available but SA of that range is very costly compared with DIY.
Continue to pay attention to you and harvest continuous surprises! Love you
good! in the next video I will be opening my garage gate with this tool. I will show it step by step
Most people here do not even understand how powerful this device is and what can you do with it...
@@justanengineer5599 Wow looking forward to it!😀
@@justanengineer5599 can u also make a video on how to increase the range please? like 1-3 km coverage range
or its not possible?
Hi, the best would be to use additional amplifier board (which I do not have at the moment), but the problem is that these board work only one direction. You can only increase transmission range or only receiving range.
Anyway I found something that pottentially could work both ways : www.aliexpress.com/item/1005003970364886.html
Hi I have a question here. How does Flipper Zero manage to support 315mhz, 433mhz and 868mhz using c1101 while the modules available usually only support one of the three frequencies?
the same way as my software does. cc1101 can be tuned to the wider range than only 315, 433 and 868
Awesome ❤😉👏👏👏
hi would it be possible to adjust the sensitivity when I launch the sniffing...I don't receive anything from the surroundings I think...and I would like to know a little more about the scan function...when I launch it nothing happens is displayed when pressing the remote control
THANKS
for scan function to work properly either the signal has to be available for at least 5 seconds or the frequency range has to be narrowed to 1MHz or less
Loved the video
is it possible to do the same with an ESP32 board or it has to be the Arduino Pro Micro?
check my github there is esp32 and ESP8266 code as well
A note: It is not the same as a YS1, the YS1 has rx/tx amps and it has filters and is already setup to use python. This will require a bit more effort to use python with it ( but should still be doable)
That all said I have ordered a Pi Pico board to use with the numerous cc1101 boards I have as this would be a nice cheap (almost disposable) alternative to my 2 Yardstick Ones so it certainly has its place.
I am hoping it works well, after my issues with RFQuack (TX worked fine, RX did not work at all).
Does the particular CC1101 module that you are using work at 868Mhz ? I don't get why 433 is written on it if is works for almost the whole subGHZ range
I think mine is actually faulty, that made my job harder all along
I managed to get my garage door code using univerval radio hacker at least, but I can't unlock it with my digispark like you did in an earlier project since it works at 868Mhz
Yes. Even 433MHz CC1101 modules work on 868MHz. The important thing is that if you buy 868MHz version it will work better on 868MHz due to different capacitors and coils that are tuned to this frequency on the board.
You may try with this project using RAW commands : scan 867 869, setmhz 868, rxraw 50, recraw 50, playraw 50, showraw , load , save
Pretty freakin awesome! Amazing! Question is it possible to use XBEE module or with a regular nano arduino too. Plus with esp2866
yes. There is ESP8266 script already available and tested. For xbee you need to adjust pin numbers
BTW see the second video showing practical usage of this tool ruclips.net/video/mdkEK_wmWJA/видео.html
@@justanengineer5599 thank you
check WIFI version for esp8266 based my cc1101 tool. usb cables are no longer needed !
ESP8266 as a WIFI CLIENT
raw.githubusercontent.com/mcore1976/cc1101-tool/main/cc1101-tool-esp8266-wifi.ino
ESP8266 as a WIFI ACCESS POINT
raw.githubusercontent.com/mcore1976/cc1101-tool/main/cc1101-tool-esp8266-wifi-ap.ino
loving this, is there a way that it can be dynamically configured to jam frequency within 50 meters
yes. it supports such function out of the box and basically two commands are required to do such operation : setmhz XXX and jam
what else do you want?
Hey can i desolder my cc1101 spring antenna and solder sma antenna?
yes. some of these boards even have holes to solder SMA socket
@@justanengineer5599 I have the same board which your are using in video d sun
Could you use a 5v 16mhz Arduino with a voltage level shifter or is the 8mhz clock necesary for operation?
yes but the better option is to spend 2 usd for ESP8266 board instead of spending money for level shifter, additional cables and arduino pro micro 5v, don't you think? Have you read the description on the Github page of this project? It has evolved a lot since this video. It is now working with variety of boards
Hello, I tried cc1101 with raspberry pi pico, but it freezes code execution on initialization with command cc1101initialize(); so that it only prints the first two lines on the serial port. For example, the line Serial.println(F("cc1101 connection error! check the wiring.
")); does not send to the serial port. I think the problem is in the spi connection, but I can't find out where.
yes it is connection problem between cc1101 and pico. try to ask the colleague responsible for rpi2060 version about the wiring specification
// see pinout: cdn-learn.adafruit.com/assets/assets/000/099/339/original/raspberry_pi_Pico-R3-Pinout-narrow.png
byte sck = 2;
byte miso = 4;
byte mosi = 3;
byte ss = 5;
int gdo0 = 7;
int gdo2 = 6;
hi I have a bad manipulation while trying to update the latest version CC1101.ino
now it is no longer recognized...impossible to reinstall the driver...despite having followed the tutorial
how to do it please?
THANKS
short the reset pin with gnd two times when connected to the pc
Can i use cc1101 868mhz chip
yes
Could this theoretically work for creating a GSM (or possibly QPSK LTE) cell? I heard it can also output QPSK.
i think CC1101 has too low capability to do it.
Is it possible for to write code that has it operate at a range of frequencies like 430-440 at the same time
it would have to swipe between both frequencies. But yes it is possible
sdrsharp,source select RTL-SDR USB ,but device option is locked and says E4000,how can i fix it?
you have to properly install RTL SDR USB drivers using Zadig tool first. I was showing this on one of my videos go step by step ruclips.net/video/dh8fjouH0NY/видео.html
hello ,
just a general question related to CC1101 for 433 mhz version .
When i change the main frequency using init() function from 433 to 868 mhz and then to 915 mhz , the cc1101 module does not have the same power output . why is this ?
this is because you need cc1101 board version tuned for 868/915MHz
@@justanengineer5599 i have looked a lot on internet and i could not find a good cc1101 version that can work on 915 mhz frequency .. can you suggest me a link for it ? thank you
The board is fine outputting on 915Mhz, you just need a suitable antenna. Desolder the spring antenna (17.3 cm) and use an antenna for 915 Mhz (8.2 cm).
hi I can't see the data when I launch rx on the CC1101 tool.. however I have configured the frequency, modulation, deviation when I launch rx nothing is displayed.. except the confirmation that it is is well on its way...
try these commands :
setmhz yourfrequencyhere
rxraw XXXX
recraw XXXX
showraw
playraw XXXX
where XXXX sampling interval in microseconds like for example 100 microseconds :
rxraw 100
Thanks 👍
Can I use any transreciever board as long as connections are correct? Weather it is CC1101 OR AS07-M1101 with D1 mini?
Edit : AS07-M1101 has a VDD instead of VCC. I think it should be fine.
apologies if they are dumb questions.
yes it also fits
sorry for stupid question but whats the difference between your cc1101-tool , LSatan and jopohl projects?
Anyway, its amazing! my hardware pieces just arrived, will do my best!
my cc1101 tool is using the library from LSatan. It is like a practical example of how to use it
Great Job, I am using nodemcu esp8266, Putty hangs, can I enable jammer in the code before uploading code?
no. You have to work on your cabling probably there is problem in wiring between cc1101 board and ESP8266 board. that is why putty is empty.
Hi Adam,
First of all, thank you very much for this guide. I am brand new to Arduino so I hope this isnt a question with a blindingly obvious answer. I set up the circuit on my breadboard, using Ardunio Nano, but as I had 16mhz 5v boards I had to use volatage step down converters. If I have the baud rate set to 115200 in the arduino IDE or Putty I can see the first two lines of your code's output (please type help and then C @ Adam). After this I cannot type into putty, and anything I type into the Arduino IDE seems to be ignored. I am using the Arduino Nano specific code that you provided. Do you have any insight into what might be causing my issue? Thank you!
are you getting cc1101 initialized ok message ? it looks like the code is stuck on CC1101 initialization which gives us an info that either your TTL logic converter does not work or the CC1101 wiring is incorrect
@@justanengineer5599 No, it was not coming through. I think the problem is that my logic level converter doesnt handle SPI (I have learned today!). I have some 8mhz pro micro on the way, as I cannot get my other project to work with the 16mhz + logic converter as well.
Thank you for taking the time to reply!
you may also try with ESP32 boards or ESP8266, I have already posted working code on my Github.
raw.githubusercontent.com/mcore1976/cc1101-tool/main/cc1101-tool-esp8266.ino
raw.githubusercontent.com/mcore1976/cc1101-tool/main/cc1101-tool-esp32-wroom.ino
Nice project, thanks for sharing!
I just programmed an Arduino Pro Mini 3.3V 8mHz wired up with a regual CC1101 board. I use putty to send the rx command but receive nothing. Also send some packets but do not see any response on 433mHz ?
This is the modification I use for the Pro Mini
// defining PINs for Arduino Pro Mini
byte sck = 13; // D13
byte miso = 12; // D12
byte mosi = 11; // D11
byte ss = 10; // D10
byte gdo0 = 9; // D9
byte gdo2 = 5; // D5
Any idea what I'm missing?
Classic mistake,😉
I switched miso/mosi
use RAW mode. Try rxraw XXX where XXX is microseconds
Also can it work at a range of 315 and 433 simultaneously if so how would I code it?
to frequencies at the same time is not possible. But quick jumping between these two frequencies is possible. See my other video about the jammer
Thanx Justan, My putty friezes after starting it, please advise, I am using Pro Micro 5v and the TI-cc1101 transceiver with a bidirectional logic converter
lower down Arduino Pro Micro VCC to 3.3 V and do not use TTL logic converter, that should help.... or buy some other board with esp8266 or esp32 which are already operating on 3.3v ttl logic
Thanx a lot @@justanengineer5599 how do i lower the vcc without using logic converter, please
buy DC-DC step down converter for 2$
What version of esp8266 library will work for code for esp82
I do not understand your question.Use this page to setup your Arduino environment www.instructables.com/Steps-to-Setup-Arduino-IDE-for-NODEMCU-ESP8266-WiF/
or this depending on your board type
www.instructables.com/Wemos-ESP8266-Getting-Started-Guide-Wemos-101/
use this source code to program ESP8266 and further attach with USB to cc1101
github.com/mcore1976/cc1101-tool/blob/main/cc1101-tool-esp8266.ino
I have a bunch of 16Mhz boards, can I still use them for this?
you can but only if you use ttl level converter 5V to 3.3v and voltage stabilizer 3.3v for CC1101 boards. Look, all of newer boards are built for 3.3v like esp8266 esp32 etc. 5V boards are passe because 3.7v li-ion battery has become the standard for powering devices now. It's not worth your time to play with these old boards, better buy some 2usd esp8266 or xiao esp32s instead
I followed every step but it seems it can't find the library while it's installed, do you know why that might be?
download library from here :github.com/mcore1976/cc1101-tool/blob/main/SmartRC-CC1101-Driver-Lib-master.zip
then in arduino menu tab file add zip library
That's what I did, but while I can find all the files and the included ones in the libraries folder for some reason it still can't find it (I am using the arduino pro micro code on my arduino pro micro). Thank you for your time
Update: I fixed it, the issue was that I saved the library on a NAS and the IDE cannot access network resources.
great! happy radio hacking!
Hello sir, can this tool be used to jamm FM Radio bands?
no because it works for 300+ MHz
hey bro my cc1101 module has no MISO pin instead it has three GOD0 GOD1 GOD2 Pins i have red cc1101 module HW863 can u please help
MISO / SO is GDO1 pin on your board
hi, I bought for mistake the module HC-12 insted the CC1101, can I make this project with that transmission module? (I bought the arduino nano and TXS0108E TTL logic convertr)
no this is only for CC1101
100% not. You will need another library for this specific IC with specific instructions...
hey! i need help with my NRF905SE is there a way to make a jammer with it? radio? or dtv jammer? thanks
better use cc11xx modules. NRF905SE does not allow to fine tune the frequency and only works in packet mode
@@justanengineer5599 awww man alr i already got then thanks anyway!
I am trying to do this project with an Pro Micro 3.3v, but it sometimes gets hung up on cc1101intialize and when it doesn't it says "cc1101 connection error! check the wiring." I have triple checked my wiring and can't find any problems. Any help would be appreciated.
there must be poor contact between some pins. Try to solder the cables
@@justanengineer5599 They are soldered
If so, you may try to use next cc1101 board as something may be wrong with existing board
Hi I bought e07 m11010 by mistake , should've gotten cc1101 but it got me confused on aliexpress and just realised its a different board, can this work or shall I order a cc1101 instead ?
e07-m1101d-sma should work
@@justanengineer5599 thank you will give it a go
pro micro atmega32u4 3.3v 8m leonardo,is it ok for this?
yes. it is exactly what I am using here
Hi theres an error when i flash it on arduinodroid it says return code is 0
Use PC and Arduino IDE for flashing ESP8266 board not some Android application because it does not have required libraries like SmartRC and you cannot attach one with this tool. Don't expect that your smartphone is a PC. It is not. It's just a smartphone.
You want to be a hacker ? Buy some PC man.
Can i use RFM69 FSK Transceiver Module for this i mean will it work the same ?
no it wont work
Hi! UNO boards have a 3.3V output pin, can i use UNO boards for this project? I tried searching in your github repo but there was no instructions about uno boards
uno uses 5v ttl logic so it is not good
@@justanengineer5599 if i use a TXS0108E TTL logic converter, can it work then?
yes. this one of the options. The other is to power arduino Atmega chip from 3.3V
This is amazing, will this work to jam frequencies from 500KHz - 2000KHz all at once?
no only 3 ranges from 300-915MHz
Does CC1101 it support ASK modulation?
yes. it is used in my code actually
Thank you for putting together these great videos. I am having some problems getting this working. My main issue is with URH. I do not see any signals. I've tried different Antenna's, I went through all the possible settings, I've changed everything. Adding and removing a low noise amplifier. But it must be.... that URH on my Windows 11 is not working properly. Because when I close the software, and open up SDR#, I can see all the signals on their respective frequencies.. my vehicle FOB (315Mhz), my weatherstation (433.92 Mhz) and my garage door opener at 314.6 MHz. Do you have any suggestions on how to get URH to be able to see these same signals?
yes. first you need to get windows working with your rtl sdr dongle. you may look for some of my old videos showing how to install driver with Zadig tool
@@justanengineer5599 Hey Adam, So I gave up on getting URH to work on Windows. I installed Debian 12 on an older laptop, and URH is working well on that.
I am continuing to work on my Windows machine to complete this project. I am working on an ESP32 board. I have flashed the ESP32 with your .ino file for the ESP32 with no compiling errors. On my ESP 32 I can see a red and blue light lit steady (not flashing). I think this means I have uploaded it successfully. I then switch to Putty to communicate with your program. In Putty, I select the serial radio button, I enter my number for port COM# (in my case my device manager is telling me 5), speed I enter 115200 baud rate, data bits 8, stop bits 1, parity none, flow control none. When I open putty terminal. I only see a Green Square.. and not the (c) Adam Laboda..
any thoughts?
Okay, I changed my procedure a little bit. After Flashing the program, I press Enable on the ESP32, I disconnect the USB Cable from the computer.. wait a few seconds.. then plug it back in.. then open up Putty.. and it's almost working.. but the ESP32 keeps resetting over and over again..so I keep seeing your name roll up the screen along with..
(C) Adam Loboda 2023
ets Jul 29 2019 12:21:46
rst:0x8 (TG1WDT_SYS_RESET),boot:0x1a (SPI_FAST_FLASH_BOOT)
configsip: 0, SPIWP:0xee
clk_drv:0x00,q_drv:0x00,d_drv:0x00,cs0_drv:0x00,hd_drv:0x00,wp_drv:0x00
mode:DIO, clock div:1
load:0x3fff0030,len:1448
load:0x40078000,len:14844
ho 0 tail 12 room 4
load:0x40080400,len:4
load:0x40080404,len:3356
entry 0x4008059c
CC1101 terminal tool connected, use 'help' for list of commands...
It works! It works! Thank you, Thank you, Thank you! Wow.. it only took me like 3 weeks to get this working!
In the end it was a stupid mistake.. In the sample code you provided.. the XIAO chip is the code that isn't commented out and the WROOM code is commented out.. I switched this.. everything is up and running.. just tried jamming.. cause that was the easiest thing to try first.. man.. such a sweet project. Thank You!
// defining PINs set for ESP32 module
// Example for XIAO ESP32 C3
/*
byte sck = 8; // GPIO 8
byte miso = 4; // GPIO 4
byte mosi = 10; // GPIO 10
byte ss = 20; // GPIO 20
int gdo0 = 21; // GPIO 21
int gdo2 = 7; // GPIO 7
*/
// defining PINs set for ESP32 WROOM module
byte sck = 18; // GPIO 18
byte miso = 19; // GPIO 19
byte mosi = 23; // GPIO
byte ss = 5; // GPIO 5
int gdo0 = 2; // GPIO 2
int gdo2 = 4; // GPIO 4
I am glad you made it !
Can this wont on higher frequency than 433 mhz ?
yes. Have you read the description? read first before asking questions
@justanengineer Maybe you know what chip like CC1101 could be used for sniffing/repeating 2,4Ghz ? As I understand correctly the raw/debug mode must be unlock in protocol?
CC2500 is the chip name. it does support OOK. I am notsure my code will work with this chip
@@justanengineer5599 Thank you!
Actually, I started digging in you code and I've been researching for several hours and found CC2500, CC2510/11.
They have async mode and transfer raw data on the GDO0.
So, maybe you concept could work on 2,4Ghz
Does you code work with OOK only?
my code works with all the types of CCxxxx supported modulations
more over looking at this description it seems that my code would work with CC2500
e2e.ti.com/support/wireless-connectivity/other-wireless-group/other-wireless/f/other-wireless-technologies-forum/281641/compatibility-between-cc1100-and-cc2500
@@justanengineer5599 Thank you! Btw r u in Poland?
I am new to this, any configurations for the SDR?
what SDR?
i installed everything ( including driver ) and when i try to upload the code board is disconnect from the computer and windows doesn't recognize it and got error .
"Windows has stopped this device because it has reported problems. (Code 43)
A request for the USB device descriptor failed. "
i try everything. reinstall the drive . update the driver .
but it's keep showing that error!
But when i try with another code it's work.
I just having a issue around there. :(
PLEASE HELP
EDIT: Oh! my bad i just have to change 3.3v to 5v. Thank it's work finally . :)
i will not delet my comment just to help someone , when facing a error like me.
How much distance does the jammer cover?
50-100 meters. CC1101 chip has only 10mW of power
I could make it work using esp8266 nodemcu v3 but the frequency generated is always around 43 khz higher than expected, I am using sdr# and universl radio hacker to double check the frequencys. Help
you need to calibrate rtlsdr. also cc1101 calibration is possible but not with smartrc library.
New to this, where do i go to even start learning ?
watch my previous videos if you have some doubts
Nice work!
Can a raspberry pi be used (with the appropriate add ons) the same way as this?
👍
in general yes. Raspberry Pi can be connected to CC1101 board - you have it described here : securipi.co.uk/cc1101.pdf.
But my point was to build simple to use CC1101 based device that could be connected to anything with USB Serial Port.
This is only an alpha version and it will evolve
@@justanengineer5599 thanks! 👋
Hey what type is it female/male cable and Also which pins do u connect them from the arduino to cc1101
both sides of the cable are female. I have the pins soldered onto both Arduino board and CC1101 board. Anyway it always depends on your board versions
@justanengineer5599 I meant which number pins should i connect then in
it is all in the video as well as on my github page. For example
github.com/mcore1976/cc1101-tool/blob/main/cc1101-tool-arduino-pro-micro-E7-M1101D.png
github.com/mcore1976/cc1101-tool/blob/main/cc1101-arduino-pro-micro-tool.png
github.com/mcore1976/cc1101-tool/blob/main/wemos-d1-mini-cc1101-E07-M1101D.png
if you weren't able to find it I have serious doubts you can build and operate this device
Excellent work mate, but I am having dynamic memory is maxed out issue, any idea on how to fix this? I cant upload code on pro micro 5v. "Compilation error: data section exceeds available space in board".....Global variables use 2219 bytes (108%) of dynamic memory, leaving...
check if you have selected proper board type in arduino in board manager tab. This is the most common mistake. it does compile properly when all is set in correct order
@@justanengineer5599 ok, Should I select sparkfun pro micro instead of just Pro micro..
@@justanengineer5599 Thanx a lot, you are right. Its now working
see... my projects always work If something is wrong it is 100% user error
Hello, I would like to know where I can buy this.
www.aliexpress.com
Hy i try to make a device for a cctv company who need a jammer for drones bec some kids or theft play with a drone and want to Find good spots to enter in site, i can use what i see in this video ? I need the jammer can put down a drone from 500-800 metters arround, please help with that info, thx !
Nah
Drone jammers are illegal, and you are lying
@@thegoldendoge5475 it s not if you use in legal reason, the AirPorts have something like that …
There is no legal reason for that, and signal jammers don’t discriminate, it would block all of the signals for an airport. Just say you wanna fuck around with a signal jammer 😂
didn't recive with rx command auto keyfob frequency, why?
try rxraw xxxx instead. xxxx is the sampling interval in microseconds
Rxraw command instant printing rx copy finish
what? what boards are you using?
Have you DISABLED ADDITIONAL NEWLINE CHARACTER in your terminal application as it was written in my github project readme ? it looks like you did not read it either...
Can we use an esp32-s with upto a clock speed of 160 mhz i would imagine it will work ok if so is there a way you can add support for the esp32 ? I know it xan be ysef as a serial interface. Maybe we can even make a wifi ssh interface webserver or via Bluetooth serial.
You can use any type of board that is supported by SmartRC library, and guess what ? ESP32 is one of the supported !
Moreover I have just added the same functions for recording RAW RF data as in Flipper Zero. You can easily record and replay Car Keys like a champ. My only limit is 1KB of RAM memory in Atmega32u4 and that will not be the limit for better boards, just increase recording buffersize in the Arduino program.
I have just tested this function and it is working perfectly. I have my device connected over OTG cable to android phone for portable hacking
I have added ESP32 version code and wiring info. Someone has to test it because I do not have such board here. I have just ordered but it will take one month until I get it
I've just got my ESP32-WROOM board ( ordered XIAO ESP32-C3 and ESP8266 as well) and ported my software for these boards. You may want to use it :
ESP32 WROOM : raw.githubusercontent.com/mcore1976/cc1101-tool/main/cc1101-tool-esp32-wroom.ino
XIAO ESP32-C3 : raw.githubusercontent.com/mcore1976/cc1101-tool/main/cc1101-tool-esp32.ino
ESP8266 version coming soon..
Hey man. So i feel like i followed the instructions pretty meticulously.... but when I run putty with the sparkfun and cc1101 board attached, it just runs a black screen. I saw a previous comment about this but unless I am confused, I have followed all of those steps? Am i confused about how to install the drivers? I went to arduino ide and set up the board, did the respective installs..... this IS the driver installation right? any ideas? Thanks!
assuming you are using arduino pro micro 8MHz / 3.3V
1. Install Arduino IDE, drivers and configure Arduino exactly step by step as this tutorial describes learn.sparkfun.com/tutorials/pro-micro--fio-v3-hookup-guide/all
2. Download this code to Arduino editor raw.githubusercontent.com/mcore1976/cc1101-tool/main/cc1101-tool.ino
and attach SmartRC library from my github (option add zip library in the arduino menu in editor)
github.com/mcore1976/cc1101-tool/blob/main/SmartRC-CC1101-Driver-Lib-master.zip
3. Select board Sparkfun/Arduino Pro Micro 8MHz/3.3V in board menu, upload the code using correct Serial port number - COMxx - check it in your windoz device manager
4. Use putty to connect to the same porrt COMxx. Settings are Serial port SPEED 115200 no parity no xon/xoff
and should work
thanks man let me walk through and see if I missed any of those steps. Ill let you know what happens! @@justanengineer5599
So all is up and running.... putty says connection is okay and when I set frequency to 433.92 mhz it registers and when I give jam command it registers and says "jamming enabled".... but then it just DOESNT WORK?? at any range. I've tried it on my own car, my friends and a couple family members.... they can hit their lock buttons on their key fobs at any range from their car and with me immediately next to them or their car and it just isnt working. Any ideas?
@@justanengineer5599
your cc1101 board appears to be broken (unlikely), has insufficient antenna (unlikely) or you live in a country where 315MHz frequency is used instead 433.92MHz like US Canada Australia etc. (BTW you should mention your location at the beginning of this thread...)
If you are wondering if it works you may want to buy and try RTLSDR USB dongle to check if your CC1101 is generating proper signal at the selected frequency.
433MHz is for Europe/Asia
Also try commands
For EU/Asia :
scan 433 495
and
for US/Canada
scan 314 316
while continously pressing keyfob (at least for 30 seconds) to find correct frequency for setmhz XXX command
www.analog.com/en/app-notes/remote-keyless-entry-systems-overview.html
"They most commonly use a frequency of 315MHz in the U.S. and Japan, and 433.92MHz in Europe.[...[ Europe has also opened up the 868MHz band to accommodate the growing demand for remote keyless entry systems."
en.wikipedia.org/wiki/Remote_keyless_system
"Most RKEs operate at a frequency of 315 MHz for North America-made cars and at 433.92 MHz for European, Japanese and Asian cars."
Im having the same issue, I also used sdr# to see if tha jammer is working but nothing happend, does anny one know what to do?@@user-vj7qm4sx9l I
frankly congratulations again, I can't believe your project does exactly the same thing as a Fllipper at the RF level...just "for a handful of dollars"...basically if you have to copy the key to my vehicle outside carried receiver (rolling code required) I just have to mention the frequency, the modulation and launch RX 1 possibly rec 1 and that's it? and replay the whole thing...
basically not rec & rx commands but rather
rxraw microsec
recraw microsec
showraw
playraw
where microsec is sampling interval in microseconds like for example 50, 100, 200 etc
thanks you @@justanengineer5599
It’s because it needs a computer
Will this work on a gate *(like in non Public park zones) if i have the right frequency??
if it is RFID based access via card or token then no it will not work.
@@justanengineer5599 well if it operates with Radio then yes? Or if it is, i bulid an rfid reader..think that should be Possable
if operates over radio band supported by cc1101 chip then yes it probably may work
@@justanengineer5599 yes i hope, imma exploit my target soon, wish me luck, but it is a fun project anyways
hello can i use nodemcu esp 8266?
yes. The code for 8266 board is already there. Have you looked into my github page of this project? I presume not because You would not be asking such questions. With 8266 you can connect over wifi and do not need usb cable... This cc1101 tool can be build with esp8266, esp32, raspberry pi pico, arduino pro micro and a many more. There is no other solution like this available. check my github man.
Finished test: NodeMCU ESP8266 still reboots, WEMOS D1 MINI works fine🐱
great. my wemos D1 mini clone tends to restart from time to time but most of the time works stable. My analysis points to SmartRC library which sometimes fires the Watchdog
[EDIT] found the source of the problem. It is INDEED senddata function of SmartRC library which takes too long if Data Rate is 1200bps. Changing it to 9600 bps or even 4800bps in deafult initialization settings solves the issue with WDT Restart on ESP8266 boards. I have updated source code accordingly
Can we jam drine signal using this?
no
Can we use it to jam wireless hidden microphones?
depends on the frequency of these wireless microphones. if it fits within cc1101 bands then yes. Check cc1101 datasheet for info
Use ultrasonic speakers, they can distort the microphones
Specifically if there’s an Amazon one.
How is this different than the evil crow v2?
it has only on CC1101 chip and you can connect it to your mobile phone. Moreover the components cost 15usd not 75usd
is it possible to jam a frequency range for example 90.10 to 92.50 ?
no. check video description and github page for precise frequency range that can be used
Hi , I met a problem ,The two CC1101s work well and can read, write and record. However, one CC1101 cannot read or record other remote controls with the same frequency. Why?
is it the same version and the same vendor of CC1101 board or different? i pressume this board may have faulty components on RF side. Which Arduino board are you using? If using recraw playraw commands sometimes you may need to change modulation type depending on the source of the signal you want to record. By default most car keys and openers are using ASK/OOK type of modulation and 433.92/315MHz but I have seen some working on 868MHz and using GMSK type of modulation in newer cars.
@@justanengineer5599 I want to use one of the CC1101's to record remote control signals, but there is nothing
If 2 other CC1101 boards work OK then this particular board is broken or it has a different pinout than other 2 boards. Try to use "rxraw 100" command to see if it catches anything. Have you checked with Universal Radio Hacker and RTL SDR USB dongle what is the exact frequency and modulation type used in the radio signal you want to capture and record? without this knowledge you can only try to guess... as I mentioned the cc1101-tool is by default configured to 433.92 MHz frequency and ASK/OOK modulation type since this is the common in EU and Asia. You may need to do some research first
@@justanengineer5599I only have 2 CC1101 ,The signal of the remote control is 315, ASK,It would be nice to have a video about recording the remote control signal,Thank you so much!
there will be such guideline in the next video. If your remote is 315MHz based then try folowing commands : "setmhz 315" then "recraw XXX" where XXX is sampling interval. Start with XXX = 200 and then decrease/increase. Type "showraw" and "showbit" to see what has been recorded. Type "playraw XXX" to replay recorded signal over the radio. The hardest is to find correct XXX value and for this I am using Universal Radio Hacker and USB RTL SDR dongle
Can u add oled it looks great
no. but there is wifi enabled version with ESP8266 that you can use with your smartphone without any cables
@@justanengineer5599can I use Arduino pro micro 5v 16mhz instead 3v 8mhz
unfortunatelly no unless ypu power this board from 3.3v power source (you can find power converter board 5V-3V)
@@justanengineer5599my cc1011 power supply voltage dc is 3.3v to 5.5v so I can use Arduino pro micro 5v?
you may try but there is no guarantee it will work
OK. But I wanted to ask you about a particular circuit. My neighbors have a party once a year in the house next to mine. I would like to have something electronic to counteract their music and play the music I want, just for the purpose of irritating them. We can't stand our neighbors and they and we can't stand each other. Please let me know that it is very, very important. Thank you very much.
do they use bluetooth speakers or something? How do they play the sound? if it is over wifi then it may bw disrupted by wifi deauther
@@justanengineer5599 I don't know if they make use of bluetooth devices. They just use a 'stereo system with various audio sources (mp3, cd, radio, etc.). I don't think it's wifi (since they took down the dish for internet last year and now they only surf with their phone).
if it is not wireless then it will be hard to disrupt.
@@justanengineer5599 Eh this I don't know for sure.
I like your diy , you are amazing,
Can you make something like RollJam ?!
this is for rolljam. you just need to figure out how to use it
Panie Adamie kiedy mozna spodziewac sie wersji na esp8266 z kontrolą na wifi? (Oczywiscie bez cisnienia - z ciekawosci pytam ) :)
jeszcze nie zacząłem nad nią pracować, brak czasu. Zapewne coś przed gwiazdką zrobię
dobra, już jest wersja pod WIFI
raw.githubusercontent.com/mcore1976/cc1101-tool/main/cc1101-tool-esp8266-wifi.ino
raw.githubusercontent.com/mcore1976/cc1101-tool/main/cc1101-tool-esp8266-wifi.ino
dla Ciebie :-)
Ahhh coś pięknego dziekuje...wracam z wakacji i zaczynam testowac :) dam znac jak sie sprawuje ;)
jeszcze jest pare drobnych błędów ale dzisiaj poprawię. Aby to działało trzeba mieć jakiś Access Point np. wifi z telefonu do którego płytka ESP8266 się podłączy. W kodzie programu trzeba podać ssid i hasło do wifi oraz adresy ip default gatewaya w ruterze wifi i sam adres IP jaki ma mieć esp8266 pod który potem zresztą łączymy się telnetem z np. ConnectBot na telefonie
Edit
Juz poprawione. Przetestowałem i wszystko działa..
Edit
Jest też wesja z Access Pointem, można się łączyć telnetem bezpośrednio do hotspota "cc1101" pod adres 192.168.1.100 port TCP 23 :
raw.githubusercontent.com/mcore1976/cc1101-tool/main/cc1101-tool-esp8266-wifi-ap.ino
Nice 👍 and can it generate like 2.4 Ghz or any Ghz ???
The RF range is limited by CC1101 capability. it is 300-950MHz
setGDO
exit status 1
'class ELECHOUSE_CC1101' has no member named 'setGDO0'; did you mean 'setGDO'?
Cześć wyskakuje mi taki błąd przy weryfikacji co robie źle?
podpiąłeś dobrą bibliotekę smartrc w zip do skryptu bo chyba nie bałdzo...? generalnie powinna ona mieć dwie klasy : setGDO0(tutaj numer pinu gd0) oraz setGDO( tutaj nr pinu gd0, oraz numer pinu gdo2). On nie widzi tych klas co oznacza ze nie uzywasz biblioteki SmartRC a natywnej ELECHOUSE. Cos mu sie nie zgadza z tymi parametrami numerami pinow gdo0 i gdo2. U mnie z tą samą płytką to działa więc skopiuj kod w wersji RAW do skryptu bo moze jakies dziwne znaki w nim masz
@@justanengineer5599 Zgadza się mój błąd :) już wszystko śmiga. Pozdrawiam.
git !
why my putty shows nothing only black?
1. set speed in putty to 115200 bits per second on Serial Port
2. connect putty to proper serial port. in most cases it is the same number as for arduino programming
3. you need to have usb serial port drivers installed.
4. Check if you see anything through Arduino Debug
I can use it on android..
Please make a video for iPhones 🙏🙏
I love all your videos 💯💯 the best
Iphones can attach to cc1101-tool based in ESP8266 with wifi without any cabling. I do not posses an iphone. If you will buy me one the I will make the video 😀
@@justanengineer5599 if you’re just in my country. I would give you one. Haha
I have a lot of old iPhones. 😅😅
If it’s through wifi, android can connect to it too.
1 more video please for esp8266😅🙏🙏
Thank you so much.
mam problem z wgraniem szkicu:
Szkic używa 29122 bajtów (101%) pamięci programu. Maksimum to 28672 bajtów.
usun troche linii z obslugi komendy help i się zmieści. Co to za Arduino? jaki chip?
@@justanengineer5599
wow, tak szybkiej odpowiedzi się nie spodziewałem
MEGA328P chyba arduino micro, wgrywam przez adapter ftdi
coś mącisz chłopie. Arduino Pro Micro ma USB i przez to się wgrywa. Możesz mieć ewentualnie Arduino Pro Mini lub Nano gdzie jest chip ATMEGA328P. Jak nie wiesz jakiej płytki uzywasz albo źle ustawileś w Arduino IDE typ płytki to się nie dziw że program nie wchodzi. Albo obejrzyj jakiś tutorial jak się wybiera płytke w board manager w Arduino IDE i jak się ustawia nuner portu i typ płytki
Friend. I can use RFM69HW-433 ?
no. this one does not fit. it needs ti have cc1101 chip
@engineer5599 I'm changing the library and sketch. I will try. thanks
how can i increase jammer's distance?maybe use some rf pa?
yes but it has to be two way amplifier. Someone already asked for this and there are some links. browse the comments under my cc1101 videos
@@justanengineer5599 thanks,i couldn't find links,in which vedio?
cc1101 jammer
@@justanengineer5599 thanks for responding,lots of rfpa in ali market,which kind of.should i buy?
as I mentioned search for something BIDIRECTIONAL tuned to your frequency 315/433MHz powered from 5V with SMA connector and you need CC1101 board with SMA connector as well. You also need some SMA male cables to be able to connect these boards
would the same boars with an atmega 328p chip work?
the cc1101 board will work with atmega328p but 2 things : you need to lower VCC to 3.3V while powering atmega and you have to attach it through FTDI232 to the PC USB
@@justanengineer5599thanks man. also another question i had, if i were to use this to test a relay attack would i need an rtl sdr?
nope but you need 2 of such devices. One to jam and second to record and replay
@@justanengineer5599but it would also work with rtl sdr? my idea is to use an rtl sdr to capture the signal with radio hacker and replay with this.
yes. if you want to record with URH the you need to have RTLSDR. As I said the point is that ATMEGA328P does not have USB port and you need to use FTDI232 board to attach it over USB. Also you need to power this Atmega from 3.3V to make it work with CC1101
Hello Thank you for publishing such a code.
The remote control data received by recraw (milisec) changes every time it is received (due to the security mechanism used).
Any ideas for this problem?
use Universal Radio Hacker to see if it is a rolling code
@@justanengineer5599 Can I use the jammer mode (jam 1) and the receiver mode(recraw) at the same time?
I want to make a rolling attack.
not. I would suggest to build two sets of this device and use them both at the same time
@@justanengineer5599I made two sets of this device (to carry out the replay attack).
One in jam mode
One is also in the recraw mode
The problem is that the recraw receives the jamming frequency and not the remote control data
Do you have a solution?
setrxbw is the command that you should use to narrow the receive bandwidth not to get the jammer signal. Read issues tab for the project. I have already explained how to do it for other person
Can we use gnu radio software
you can use gnu radio to find what are the parameters of the signal that you want to replicate with this CC1101 tool. But the best is to use Universal Radio Hacker and then put decoded frames (hex values and zeros as pause) into CC1101 tool with the commands : flush, addraw XxxxxxxxxxxxxX , playraw , The frame can be checked with showraw . This device has A LOT of functionality but at least some basic level of understanding RF and signals is required
Can your device read any RFID chip even Active Rfid chips? Rfid Biohack chips? Mainly saying could it read any Impplanted RFID chip? Do you sell these components?
this is for different frequency than RFID
Just use Proxmark3
zjechałem do:
Szkic używa 27518 bajtów (95%) pamięci programu. Maksimum to 28672 bajtów.
ile ardu potrzebuje?
jak się popieści to się zmieści. powinno się wgrać jak usunąłeś zbędne serial.print(blablabla) z funkcji help. A swoją droga nie wiem jakie masz Arfuino IDE którą wersję, bo u mnie bez problemu wchodzi kompilacja do Arduino Pro Micro
1.8.19 ubuntu
ja na obydwu i win10 i ubuntu kompilowałem i jakoś wchodziło. Spróbuj najnowsze Arduino wrzucić
wrzuciłem program na ESP8266 i nie ma problemu, ale musiałem to robić z win10, bo na ubuntu nie ogarniam drivera usb ch34...
przegladajac Twoje materialy zauważyłem, że próbowałem wgrać na pro mini, a nie pro micro
b. dziękuję za feedback
@@jigotai9407does it work on pro mini
Can you pick up Tesla charging port signals with this?
yes exactly. Use recraw rxraw showraw and playraw commands
@justanengineer5599 Thank you I will look into it! Great videos
@@justanengineer5599 sorry does this work for Arduino Nano?
no. because arduino nano uses 5V TTL logic and CC1101 board requires 3.3V. You may buy cheap esp8266 board like Wemos D1 Mini clone for 2$ instead of using more expensive arduinos like Pro Micro
This cc1101tool in total will cost you less than 5 bucks
@@justanengineer5599 The nano has 3.3v pin to power the CC1101.
Yoooo, i tried to find the CC1101 board but cant get it... is there any alternative? 😅
are you joking man? checked www.aliexpress.com ?
How do you live there internet people? You are always stuck if you cant find something in the nearest shop.
Noo the problem is that due to some issues... i cant order anything online... thats why im asking
Well, you cant make radio transmitter from the shit and pair of sticks. You need to buy some hardware.
alright thanks
@@justanengineer5599 awesome quote xD
Hello this does not work for me i have an esp32 and cc1101 and in the serial output of puTTY it just giving me question marks and no text i have recompiled the same script 3 times on esp32 still no luck
check port speed of your usb to serial port. It is not 115200 probably
In the source code you have these lines
// initialize USB Serial Port CDC
Serial.begin(115200);
Adjust your putty settings accordingly
@@justanengineer5599 Okay thanks i will look in to it!
HELLO WHEN I try the rxraw it just crashes and rx command doesnt recieve any signal@@justanengineer5599
use rxraw xxx where xxx is microsecond like for example 100. Read the help man!
@@justanengineer5599 Ok thanks but i think my cc1101 isnt working the way it is supposed to its giving me alot of zeros or maybe i havent mached the mhz frequency anyway thanks for the help merry christmas