Flipper Zero: Replay attack CC1101 "Normal Mode" (GFSK signals)
The Flipper Zero uses a CC1101 to capture Sub-GHz radio signals. We can do "Read RAW" of signals, using "Async mode" but by default can't capture/replay GFSK_9_99Kb "Normal mode" signals. Many Arduino/STM32/Pi projects also use a CC1101 for sending "Normal mode" messages between two devices. We create a "Custom Preset" so we can intercept, interpret and replay those signals!
I have a few Flipper Zero devices, so we are able to edit the "Normal mode" registers (for example, setting Manchester encoding, packet length, address, etc.) and then intercept the signal and see how it changes.
Once we have a "Custom Preset" it's also possible to write our own Sub-GHz protocol encoder/decoder (following steps from previous videos) to be able to display key data.
-=
Setup dev environment:
• Flipper Zero - Windows development en...
Regex: -79 to +79 (-[1-7]\d? )|( [1-7]\d? )
-=
Support this channel:
Option 1. Like, Subscribe and click the Bell (to get notified)
Option 2. https://ko-fi.com/codeallnight (donate $3 via PayPal or Venmo)
Option 3. Click the "Thanks" button on YouTube.
Option 4. Purchase a FlipBoard (I get a portion of the sale). https://github.com/MakeItHackin/FlipB...
Option 5. Buy items from Lab401 using PROMO code "DEREK" at https://lab401.com/r?id=7c6mqp (You save 5% and I get 5%)
-=
Timeline:
0:00 - Introduction
1:11 - Subghz chat
2:19 - Custom preset
4:45 - Capture "Normal mode" signal
5:56 - Signal analysis
11:58 - PKTLEN/CRC
12:36 - Manchester encoding
13:13 - Signal analysis (Manchester encoded)
16:52 - Summary
Watch video Flipper Zero: Replay attack CC1101 "Normal Mode" (GFSK signals) online, duration hours minute second in high quality that is uploaded to the channel Derek Jamison 27 July 2024. Share the link to the video on social media so that your subscribers and friends will also watch this video. This video clip has been viewed 1,277 times and liked it 42 visitors.
