Tagged: rtl2832

Decoding Multiple Pager Transmissions Simultaneously with GNU Radio

A few weeks ago we posted about "LikWidChz"'s work on using GNU Radio to channelize multiple NRSC-5 HD-Radio transmissions for simultaneous decoding with GNU Radio and an RTL-SDR. He has now also submitted a way to channelize pager traffic. He writes:

Quite a while ago I wanted to decode pager traffic, specifically Flex. When I started doing some basic poking around I figured out that there were multiple pager transmissions going on at once. Thinking about GnuRadio and its ability to chop up signal.. I was curious if anyone tried to decode them all at once.. I didn't get a whole lot of answers on the subject and It didn't seem like people used GnuRadio to pass MultiMonNG data.. I had my work cut out for me.

In my area all of the flex transmissions were between 928Mhz and 932Mhz and quite strong... You don't need much of an antenna to RX these transmissions. A simple wire of appropriate length will do nicely.

My plan was to design a graph and tune into the center of the range I was interested in and somehow channelize it. The remaining steps are required to format the data to allow MultiMonNG to process that audio stream. This is done a couple times depending on how many you want to decode in parallel. Have fun!

This this zip file we have uploaded his GRC file, and his full PDF description of the flowgraph. Again we note that to get in touch with the author you can log on #gnuradio and ##rtlsdr on freenode IRC and fine him under the nickname "LikWidChz".

Channelizing Pager Signals in GNU Radio

Exploring 433 MHz Devices in the Neighborhood with RTL-SDR and rtl_433

Over on his YouTube channel CWNE88 has posted how he has been using and RTL-SDR with the rtl_433 software to explore the data coming in from various 433 MHz ISM band devices in his neighborhood. In the video he explains how he has set up rtl_433 on his Raspberry Pi, and what sort of data he is receiving. Some examples of devices he's received include various weather stations, doorbells, remotes and car tyre pressure monitors.

He also mentions how these signals are unencrypted, noting that in a future video he will show on GNU Radio how a false signal could be synthesized.

Decoding 433 MHz Devices With SDR

yellowShoes: A Browser Based HD Radio / NRSC-5 User Interface

Thank you to Evuraan for writing in and sharing his new browser based HD Radio / NRSC-5 interface for the nrsc5 decoder which he has called yellowShoes.

NOTE: We have been informed by some users that yellowShoes may contain a Trojan virus. This is likely to be a false positive which is a very common problem with antivirus software falsely detecting viruses on newly released niche software via heuristics. We have removed the above link out of an abundance of caution, however if you wish to continue the yellowShoes Github is here. If you want the software, but are concerned you can check the code compile it yourself.

NOTE UPDATE: The author of the software has contacted us regarding the virus concerns and written "I wanted to write in clarify that it is indeed a false positive, please see https://groups.google.com/g/golang-nuts/c/Au1FbtTZzbk and also https://golang.org/doc/faq#virus - this false positive occurs when you cross compile go binaries - This is a common occurrence, especially on Windows machines. Commercial virus scanning programs are often confused by the structure of Go binaries, which they don't see as often as those compiled from other languages." 

HD Radio is a digital broadcast protocol replacement for analogue broadcast FM. It is only used in North America and is easily recognized as the two rectangular blocks on either side of a broadcast FM station signal on a spectrum analyzer/waterfall display. Together with an RTL-SDR and theori's command line nrsc5 decoder, the HD Radio signal can be decoded and listened to. Evuraan writes:

I wrote yellowShoes - an nrsc5 player which you can control from your browser. (Should work on Windows, Linux etc. Player F/E also works on Android Phones.)

Its sole dependency is that the nrsc5 binary must be available in the path.

A discussion thread on Reddit has also been created.

Screenshot of the yellowShoes browser based UI for the NRSC5 decoder.

Cloning A Garage Key with RTL-SDR, Universal Radio Hacker and an Arduino

Over on YouTube Adam Łoboda has uploaded a video showing the full steps that he's taken to reverse engineer and clone a wireless garage door key using an RTL-SDR and Arduino.

He starts by using the Universal Radio Hacker software to record a copy of the wireless signal generated by the garage key. Using the software he can then analyze the signal, and determine the preamble data, payload data and pulse width which he can then input into some Arduino code. The Arduino can then generate an identical signal, and transmit it via a cheap FS1000A 433 MHz RF module. Finally, at the end of the video Adam shows the cloned Arduino based garage key working as expected. 

hacking & clonning my garage key with URH ( Universal radio Hacker ) and ARDUINO DIGISPARK + FS1000A

Raspberry-NOAA V2: Raspberry Pi Automated NOAA and Meteor Weather Satellite Capture

Raspberry-NOAA is open source code and a set of scripts that allows you to set up a Raspberry Pi as an automated NOAA and Meteor weather satellite station with an SDR like an RTL-SDR. The software makes use of the Raspberry Pi version of WXtoIMG and meteor_decoder for decoding the satellites, a program called predict for predicting satellite passes, and various automatically generated cron scripts to schedule recording and processing.

Recently V2 has been released by Justin Karimi who builds on the work of the original creators. It seems that the webpanel has been upgraded and made mobile friendly, as well as many more enhancements that can be seen on the Release page notes.

Raspberry-NOAA V2 Web Panel

Receiving Unintentionally Radiated Signals from the Computer System Bus with an RTL-SDR

Back in 2018 we first posted about "System Bus Radio" which is code and a web based app that allows you to transmit RF directly from your computer without any transmitting hardware. It works on the principle of manipulating the unintentional RF radiation produced by a computers system bus by sending instructions that can produce different AM tones. The idea is to demonstrate how unintentional radiation from computers could be a security risk. 

Recently the creator of System Bus Radio has uploaded a guide on receiving the generated signals with an RTL-SDR. He recommends using an RTL-SDR with upconverter, balun and an AM loop antenna. He then shows how he was able to receive the signals from his  MacBook Pro M1, noting that he was able to receive audible signals from several inches away at frequencies between 63 kHz to 5.5 MHz.

System Bus Radio received with an RTL-SDR and upconverter.

MagicSDR: A new Android and iOS RTL_TCP Client

Unlike Android devices, Apple iOS devices can't run RTL-SDRs directly through their USB ports. However, they can still connect to another networked device such as a PC or Raspberry Pi running an rtl_tcp server. In the past we've seen two rtl_tcp clients for iOS released [1 , 2].

Now a third client called "MagicSDR" has just been released, and this one is cross platform for Android and iOS. The app is free on the Android store (with in-app purchases), and costs US$14.99 on the Apple App Store. The developer writes: 

MagicSDR makes it possible to interactively explore RF spectrum using panadapter and waterfall visualization, demodulate and play AM, SSB, CW, NFM, WFM signals, collect frequencies. Built on the principle of plug-in architecture, MagicSDR - powerful and flexible next-generation SDR (software-defined radio) application. Typical applications are dx-ing, ham radio, radio astronomy, and spectrum analysis. Explore the spectrum everywhere!

MagicSDR processes signals that are streamed over the local network from the rtl_tcp server, which is running on the host computer. The smartphone itself, on which MagicSDR is running, can act as a host computer.

To start playing with MagicSDR, you need to set up a server on a host computer to which SDR peripherals (rtl-sdr dongle) will be connected or connect SDR peripherals directly to a smartphone via a USB OTG cable. To try application without SDR peripherals, MagicSDR can emulate a virtual radio device.

MagicSDR rtl_tcp client on iOS

Frugal Radio: Decoding ACARS on VHF with your SDR Radio

Rob from Frugal Radio has recently uploaded episode five in his YouTube series on Aviation monitoring. This episode covers VHF ACARS decoding with an RTL-SDR. ACARS is an acronym for Aircraft Communications Addressing and Reporting System and is a short text based wireless communications system used by aircraft when communicating with ground stations.

In the video Rob overviews the frequencies that ACARS is transmitted on in various regions of the world and what equipment you need to decode ACARS. He goes on to explain in depth what some typical data messages that you might receive are including D-ATIS/WX Reports, Pre Departure Clearance, Loadsheets, OOOI, Aircraft performance telemetry, ATC/Oceanic Clearances and arrival airport and parking gate information. Finally he shows various ACARS software decoders that can be used including ACARSDEC, Black Cat ACARS and ACARSDECO2.

Decoding ACARS on VHF with your SDR Radio - Monitoring Aviation Communications Ep 5