RF Fun with ESP8266 Devices

and Software Defined Radio…Is that a dongle in your pocket or are you just happy to…..

Jeff Murri KK4ETK

Independent Security Researcher

murrij@gmail.com

Twittertubes: @infosec208

Standard Disclaimer…

In no way, shape or form am I speaking for any

previous or current employer.

You’re on your own to make sure that you are

adhering to applicable laws when it comes to the

topics of our friendly chat today.

You can very easily make a WIFI Deauther, WIFI

Jammer and do evil with your ESP8266 board. If

you do then you’re on your own.

Don’t Forget to Be Awesome (DFTBA)!!

Let’s chat about some hardware…

• Software Defined Radio (SDR)

• ESP8266 and ESP32 chips

• If we have time - ESPXX chips

and CAN Bus for tweaking

your ride…

• Will have a SDR workshop this

afternoon if you want…

• Ask questions as they come up!

Let’s keep this interactive.

Software Defined Radio - Hardware• RTL-SDR aka the $20.00 SDR

▫ www.rtl-sdr.com is definitive source for info.

▫ I recommend the NooElec RTL2832U dongle.

▫ Don’t forget to get the appropriate antenna adapter for whatever dongle you get!

▫ All the information you need as far as purchasing hardware is at:www.rtl-sdr.com/buy-rtl-sdr-dvb-t-dongles/

▫ Another source of RTL-SDR info is rtlsdr.org, and of course The Google.

Gateway Drug for SDR

Software Defined Radio – Other HardwareCool thing is more and more have transmit capabilities….

• SDRPlay RSP2 $169.99 (this is my daily driver for SDR) 1 kHz to 2GHz with up to 10MHz viewable in the SDR app More information at hackrf.nooelec.com

• LimeSDR Mini $139.00 plus accessories (open source) 10 MHz to 3.5 GHz with some transmit capabilities! More information at https://myriadrf.org/projects/limesdr/

• HackRF One $299.00 plus accessories (open source) MHz to 6GHz with some transmit capabilities! More information at hackrf.nooelec.com

• USRP (Big Bucks) 70MHz to 6GHz with huge bandwidth More information at www.ettus.com

Software Defined Radio - Applications• Windows

▫ SDR# at www.sdrsharp.com

Has a crap ton of plug-ins. Used to be open source. Now

closed source, but it has a great plug-in API.

▫ HDSDR at www.hdsdr.de

Some people prefer the HDSDR interface. It also has hooks to

some amateur radio transmission apps. Ability to record and

scheduling a recording makes some people happy.

▫ SDR-Radio at www.sdr-radio.com

Can be overwhelming at first, but has a ton of functionality.

Try HDSDR first then SDR# and see which one you prefer…

Software Defined Radio – Demo on Windows

• When using the RTL-SDR Dongle in Windows you need to first run an app called Zadig to tell Windows that the dongle isn’t a TV Tuner (it’s intended function originally), but instead it’s a generic WinUSB device that can feed data to an SDR application.

• Note: Be careful here. If you aren’t paying attention you can replace the driver for your mouse and/or keyboard.

• With Linux I haven’t had a problem with the dongle being recognized as an SDR device but YMMV.

An excellent resource for software setup is:www.rtl-sdr.com/rtl-sdr-quick-start-guide/

Windows Demo

Software Defined Radio - Applications

• Linux and Mac▫ GNU Radio

Is a beast, but gets you closest to the hardware.

More information at gnuradio.org

Supports pretty much everything, but has a steep learning curve.

Michael Ossmann’s superb SDR tutorials start with GNU Radio and are highly recommended at greatscottgadgets.com/sdr/

Balint has a great set of tutorials at files.ettus.com/tutorials/

Software Defined Radio - Applications

• Linux and Mac▫ The raw RTL-SDR software

Command line tools and the OSMOCOM guys are also behind all the great RTL-SDR stuff that we know and love today. HUGE props to them. More info can be found at: sdr.osmocom.org/trac/wiki/rtl-sdr Hak5 has a great set of vids at hak5.org/tag/rtl-sdr particularly Episode 1703 for RTL-SDR.

▫ GQRX Recommended software for Linux/Mac. Runs on top

of GNU-Radio. Info at gqrx.dk

Let’s Switch Gears and Talk About

Some ESP8266 Fun and That Dang Cool

Badge You have.

• ESP8266 boards come in many variants.

• Everything from external antenna connectors to more onboard nvram, etc.

• Latest ESP8266 is ESP-12E

• Oh, we’ll talk about the ESP32 modules at the end...

The Original ESP8266 Module

• This is the raw board – the

chip itself and 4MB of FLASH.

• Can crater the board by

plugging it directly to USB

(which is 5 volts).

• 3V tolerant

• Price: $1.00-$2.00

ESP8266 Node MCU module

• We ARE using this today

• Can be programmed by itself

via USB!

• Chip is only 3.3 volt tolerant,

but the board has a 5 volt to

3.3 volt level converter.

• Board Price: $3.00-$11.00

Note you get what you pay for here....

ESP8266 Specs

• 802.11 b/g/n protocol

• Wi-Fi Direct (P2P), soft-AP

• Integrated TCP/IP protocol stack

• Integrated TR switch, balun, LNA,

power amplifier and matching network

• Integrated PLL, regulators, and power

management units

• +19.5dBm output power in 802.11b

mode

• 512k up to 4MB of flash memory.

ESP8266 GPIO/Pinouts

Programming....

• Lua

• Direct AT commands

• Visual Basic

• C++

• MQTT

• Micro Python

• Mongoose

• Grows every day….

We’ll use C and Arduino

To begin, we’ll need to update the board manager with a custom URL.

Open up Arduino, then go to the Preferences (File> Preferences).

Towards the bottom of the window, type.copy this URL into the “Additional Board Manager URLs” text box:

http://arduino.esp8266.com/stable/package_esp8266com_index.json

ht

Thank you Friends!

Questions?