Hi, I have been having a look at utilising RF and trying to understand how every device around me emits RF.

I recently came across RTL-SDR and HackRF, alongside software like SDR++, TempestSDR, gqrx etc. I know that I can spy on my monitor and record keyboard keys being pressed using RF, but what are some other ways I should be looking at to exploit my digital vulnerabilities, and trying to solve such problems?

Thanks!


Edit: I’m well aware that nothing I’m doing is that interesting to security agencies across the globe. With that said, I’m interested in maintaining my privacy, and this happens to be an avenue I find interesting. Any suggestions on how I can look to do so would be greatly appreciated!

  • MigratingtoLemmy@lemmy.worldOP
    link
    fedilink
    arrow-up
    1
    ·
    1 year ago

    Thanks, I realise that I’m an absolute beginner in this, and a cheap dongle isn’t going to make me a guru. I don’t even aim to be one, as such: I just want to know what my devices are emitting, and how easy it is to snoop on and decrypt such signals.

    I will have a look at differential power analysis, thanks for mentioning that. I am not very good with electrical engineering concepts, but I’d like to learn as much as I need to.

    I know that it is almost impossible to run from the state. With that said, if an average person decides they want to be able to snoop on my activity, I’d like to nip such efforts immediately.

    Thanks

    • Car@lemmy.dbzer0.com
      link
      fedilink
      arrow-up
      3
      ·
      1 year ago

      I came off as pretty aggressive, so I apologize. I’ve been interested in this field for a while and I am still an amateur in most aspects. This isn’t really an area that’s intuitive or easy to pick up for most people.

      You’ve come out of the gate swinging. It’s technically possible for people to do the things you’re exploring… but the same people who are publishing these techniques and concepts are professionals. They may not have formal education in computer science, but they have the experience.

      Spend time going over things like DEFCON presentations. Sharpen your coding skills. Vacuum up free courseware from sources like MIT.

      You can probably pick up “normal” RF with a cheap SDR antenna setup, but then what? You are stuck with some waves and no idea what to do with them. Are you picking up intentional Bluetooth? How would you recognize Bluetooth that’s frequency hopping? Looking at RF waveforms for modern communications is absolutely ugly and tedious.

      There’s so much to learn. You need to pick one topic and dig in. All of these things have much more depth than we can explain over lemmy.

      • MigratingtoLemmy@lemmy.worldOP
        link
        fedilink
        arrow-up
        2
        ·
        1 year ago

        Thank you for the comment. I did start watching DefCon presentations (and would like to visit in person someday!), and have been interested in RF hacking/ hardware hacking for a while now - just didn’t explore it well enough.

        Now that you mention it, I do want to pick up Bluetooth and other signals that devices give out. The eventual aim is to be skilled enough to run a personal honeypot and experiment with different protocols.

        Thanks, I’ll begin going over some coursework too. Your help is much appreciated!

        • Car@lemmy.dbzer0.com
          link
          fedilink
          arrow-up
          2
          ·
          1 year ago

          Honeypots have gotten really weird lately. Anti-honeypot (along with anti-VM and anti-debugging) techniques and methods are more common than ever. I think something like 80% of all APT-level malware from the past 5 years use these techniques