Hacker News new | ask | show | jobs
by tomatotomato37 2673 days ago
Completely out of scope of anything but superpower espionage, but that got me wondering if you could do something useful with a nanoscale mechanical computer built the same way they do those microchip gyroscopes. The simplest would be a mechanical timer for toggling power only when there's no countermeasure scan going on, but I wonder if there are other clever things you could do if you had a nationstate budget
1 comments
crankylinuxuser 2673 days ago
Ive made and will be giving a talk on what a TSCM team would use.

My talk was accepted at CircleCityCon in Indianapolis IN. I've built a tablet capable of intercepting and injecting radio from 20MHz to 1.5GHz.

https://ccc2019cfp.busyconf.com/activities/5c3a57314808fac10...

https://mobile.twitter.com/CrankyLinuxUser/status/1097884386...

Repo: https://gitlab.com/crankylinuxuser/siginttablet

link
dfc 2673 days ago
Why would a TSCM want to inject traffic and potentially alert the adversary to the detection? Have you seen some of the spectrum analyzers built on HackRF?
link
crankylinuxuser 2673 days ago
because for me, doing TSCM is only half of what I'm wanting to do.

There's a lot of wireless stuff out there, not using 802.11__ or BT specs and frequencies. Are these things secure? Probably not. Are they encrypted? Perhaps. Do they defend against replay? Likely not.

But in the end, how do we assess? Standard TSCM gear can do a good job scanning and finding peaks. But its not for protocol decoding and device assessments. My goal is to "Identify signals, categorize protocols for signals found, decode if possible, and attempt to access/exploit".

link
dtornabene 2673 days ago
This is awesome and thanks for sharing it, do you know if the circle city con talks are going to be recorded? I'd love to see a walk through of this stuff
link
crankylinuxuser 2673 days ago
Ive never attended CircleCityCon before, but in my experience, hacker cons do record. The problem I find is the smaller cons end up hosting the videos on a private server.

You could certainly ask them over twitter. In my experience they return questions in an hour or 2.

link
dtornabene 2673 days ago
Hey, thanks for the response, I'll definitely follow up with them on twitter. And, seriously man, very cool stuff, very interested in digging in
link
crankylinuxuser 2673 days ago
Thank you!

Ideally, if you dont care about looks, all you need is a Raspberry Pi 3B+, keyboard/monitor/screen, Rtl-sdr, and a wire.

The wire is hooked up to GPIO 4 and used in conjunction with RPITX library.

The Rtlsdr allows receiving radio signals.

The only broken thing right now, is that changing GPU clock frequencies does "weird" things to the onboard wifi (unsurprising).

My next step will be making 2 scripts: 1 to install a SigInt tooling, and 2 is to update said tooling.

link