Архив за 20.05.2019

Cool SDR demo?

I (very) recently acquired a couple limeSDR minis for a project. I haven't had the time to do anything with them yet, but I'm going to a event this week where I can bring fun science demonstrations (for the public). I was wondering if there's an example of a neat demo/project that is also easy enough to implement in less than a week. Kinda a long shot I guess, but let me know!

Maybe if I can't think of anything, I'll just set them up to be sending some data between each other and have the waterfall being shown on one of the screens. I always thought those waterfalls were a nice visual way to get someone interested in something. Hopefully it won't take too long to set that kind of thing up?

submitted by /u/solEEnoid
[link] [comments]

Comment on Spoofing Aircraft Instrument Landing Systems with an SDR by snn47

Unlike other article on ARS technical this article is cherry picking what it needs to support the headline, but lacks some important facts necessary for the understanding ILS-system. Therefore the ars technica article and the post on RTL-SDR needs to be revised and amended in explanations, why the proposed jamming is very hard to unlikely to achieve in reality, even though it sounds plausible, when demonstrated on a test bench.

Both ILS-LLZ- and ILS-GP-Receiver of an aircraft derive the information fly left/right (ILS-LLZ) and fly lower/higher (ILS-GP) from the difference in Depth Of Modulation (DOM) between the 90 Hz and 150 Hz tone of the Amplitude Modulation in relation to the carrier received.

However the Difference in DOM between the 90 Hz and 150 Hz tone of the AM received by the ILS receivers exists in space, is not generated as AM in the ILS-LLZ- and ILS-GP-transmitter.

– The difference in Depth Of Modulation (DOM) between the 90 Hz and 150 Hz modulation of the Amplitude Modulated ILS-LLZ and ILS-GP signal signals varies in space and therefore with the 3d position of an aircraft.
– ILS-LLZ and ILS-GP transmitter generate only signals with a constant Depth Of Modulation (DOM).
– The varying DOM of the 90 Hz and 150 Hz in space requires for generation several signals (with and without carrier, CSB and SBO) which are feed through elaborate phase and amplitude shifting networks to feed a minimum of 3 ILS-LLZ and ILS-LLZ-antennas.

The aircraft ILS-LLZ- and ILS-GP-Receiver receives the
– ILS-LLZ 90 Hz signal is stronger, when an aircraft flies left of the RWY center line
– stronger for the 150 Hz signal, when the aircraft is flying right of the center line.
– For an aircraft flying directly on the extended center line the Difference in DOM is 0, because both 90 Hz and 150 Hz have identical DOM.
– ILS-GP is similar and differs only in so far that the 90 Hz is the signal above, and the 150 Hz the signal below the Glide slope.

It is not easy to estimate the volume of space of and consequently volume of possible interference such a proposed transmitter can create, because it will differ among other factors with the interferers location, antenna pattern and EIRP it will create compared to signal in space generated by the ILS-LLZ- and ILS-GP-antenna/-EIRP pattern and the varying aircraft 3d-position in relation to the interferer and ILS-LLZ and ILS-GP.

The Instrument Landing Systems (ILS) is standardized by ICAO since 1949 in Annex 10 and related documents and consists of
– ILS-Localizer (ILS-LLZ) providing fly left/right for the aircraft to maintain the extended Runway (RWY) center line (108 -112 MHz)
– ILS-Glide-Path (ILS-GP) providing fly lower/higher Glide-Slope normally of 3° ending at the touchdown (329-335MHz)
– Outer-, Middle- and Inner-Marker identifying distance to the touchdown (75 MHz) and/or
– Distance Measuring Equipment (DME (960 – 1215 MHz) which can replace or augment the Marker

My op25 build running on Raspberry Pi B+. Configured to listen to the MANY systems in the Central MD, Southern PA area. Many systems here are Phase 2.

My op25 build running on Raspberry Pi B+. Configured to listen to the MANY systems in the Central MD, Southern PA area. Many systems here are Phase 2. submitted by /u/dhaman78
[link] [comments]

Another request to get help with signal identification

I found a few day ago this signal at 9.760.1MHz - 10kHz wide, it appear on other frequencies also. I came across tonight with another patern on the waterfall.
I assume it's not an interference because I'am far from any potential source of it, pattern change and I don't see this signal everyday.

It's make me think to an Over The Horizon radar signal, like this one https://www.sigidwiki.com/wiki/PLUTO_II_OTH_Radar, but I live in France and the pattern is different but still close.

Any ideas ?
Thanks =)

submitted by /u/supercho7
[link] [comments]

RTL-SDR Discussion • Re: Raspberry pi 3 b+ and rtl-sdr

I would like to use gqrx to record iq streams, if the pi is powerful enough to handle the duty

Statistics: Posted by Jekko — Mon May 20, 2019 12:13 pm

RTL-SDR Discussion • Re: Raspberry pi 3 b+ and rtl-sdr

Would you like to use your Pi with a monitor and keyboard attached? Or headless, as a remote RTL-SDR rtl_tcp server? For the latter, I just use the Raspbian Stretch Lite OS image, boot it up, then download and and run the rtl-sdr install scripts via ssh. There are a bunch of SDR client apps that will talk to an rtl_tcp server (iPhone, Android, Linux, PC, macOS, etc.)

Statistics: Posted by hotpaw2 — Mon May 20, 2019 11:46 am

RTL-SDR Discussion • Raspberry pi 3 b+ and rtl-sdr


A friend of mine gave me as a gift for my bitrhday a raspberry pi 3 b+.
I would like to use it with the rtl-sdr v3 dongle.

My question is: does exist a distribution for raspberry pi ready to use for the rtl-sdr? I know that it exists for the rsp1a but i don't know if it works for the rtl-sdr too.

I am open to every kind of raccomandation :)

Statistics: Posted by Jekko — Mon May 20, 2019 10:06 am

Spoofing Aircraft Instrument Landing Systems with an SDR

Recently Arstechnica ran an in depth story about how a $600 USRP software defined radio could be used to trick an aircraft that is making use of the Instrument Landing System (ILS). ILS is a radio based system that has been used as far back as 1938 and earlier. It's a very simple system consisting of an array of transmitter antennas at the end of a runway and a radio receiver in the aircraft. Depending on the horizontal and vertical position of the aircraft, the ILS system can help the pilot to center the aircraft on the runway, and descend at the correct rate. Although it is an old technology, it is still in use to this day as a key instrument to help pilots land especially when optical visibility is poor such as at night or during bad weather/fog.

Researchers from Northeastern University in Boston have pointed out in their latest research that due to their age, ILS systems are inherently insecure and can easily be spoofed by anyone with a TX capable radio. Such a spoofing attack could be used to cause a plane to land incorrectly. In the past ILS failures involving distorted signals have already caused near catastrophic incidents.

However, to carry out the attack the attacker would require a fairly strong power amplifier and directional antenna lined up with the runway. Also as most airports monitor for interference the attack would probably be discovered. They write that the attack could also be carried out from within the aircraft, but the requirements for a strong signal and thus large power amplifier and directional antenna would still be required, making the operation too suspicious to carry out onboard.

Wireless Attacks on Aircraft Landing Systems

Hermes-Lite: A Low Cost Amateur Radio SDR Made from A Repurposed Cable Modem Chip

The HPSDR Hermes SDR is an open source amateur radio SDR transceiver project that was released as far back as 2011. More recently Steve Haynal has been working on a Hermes-Lite project which is intended to be an opensource open hardware low cost amateur radio HF transceiver which is based on the HPSDR Hermes SDR project software and FPGA DSP implementation.

The Hermes-Lite is able to be very low cost (less than $300) because it is based on the AD9866 chip which is a mass produced RF front end (LNA + ADC & DAC) used in cable modems. Because it is a mass produced commodity, the chip only costs approx. US$35-$25 on Mouser depending on quantity. The chip has a 12-bit 80 MHz ADC and DAC, meaning that if used without any analog mixer front end (like in the Hermes-Lite) it can receive the entire spectrum between 0.1 to 38 MHz all at once.  

The Hermes-Lite is also a lot more than just the RF chip, as it contains a set of switched RF filters and a 5W power amplifier for TX. It also interfaces with a PC via Ethernet and has a built in FPGA for DSP processing.

Recently Steve presented at the FOSSi Foundation Latch-Up conference on May 4-5, and a YouTube recording of his presentation is shown below.

[First seen on The SWLing Post]

Hermes-Lite: Amateur Radio SDR

Need some help with the yardstick one (rfcat library)

So I just got the yardstick one and I was installing all of the build requirements for RFcat, but when i type in "rfcat -r" it states

" bash: rfcat: command not found "

any help?

submitted by /u/BaconBoy4535
[link] [comments]
Май 2019
Пн Вт Ср Чт Пт Сб Вс
« Апр   Июн »