ฝัง
- เผยแพร่เมื่อ 2 มิ.ย. 2024
- Unlock Car with Flipper Zero and HackRF One PortaPack H2+ (RollJam Attack)! takeaparttech.com/download/
To get Flipper Zero Tesla Charge Port files visit my website:
takeaparttech.com/download/
or get combo Tesla files :
takeaparttech.com/download/?a...
Disclaimer: This video is for educational purposes only.
Join this channel to get access to perks:
/ @takeapart
get 80% off at NordVPN:
go.nordvpn.net/SH4AV
FREE stuff on : takeaparttech.com/download/
My KIT: kit.co/TakeApart
Support Us on Patreon : / takeapart
visit our web: www.takeaparttech.com
FB:
/ takeapartyt
Book Your next Holiday here: www.booking.com/index.html?ai...
TIMECODES:
0:00 - Intro
0:15 - Rolljam Attack Flipper Zero & HackRF
0:35 - how to jam with Flipper Zero
1:10 - How to capture FOB signal with HackRF
1:42 - Rolljam Attack Flipper Zero & HackRF Car Unlock
2:17 - How to get Jamming files for Flipper Zero
4:05 - Outro
Thank You and have a look in links bellow for parts or gadgets you need! :
Flipper zero:
amzn.to/3CwDg3N
Silicone case for Flipper zero:
amzn.to/3XhmL3l
Wrist strap :
amzn.to/3vNc6BP
s.click.aliexpress.com/e/_DkD...
Devboard for Flipper zero:
amzn.to/3GNsoRy
Screen protector Flipper zero:
amzn.to/3vNbuw1
CC1101 module w antenna:
s.click.aliexpress.com/e/_DBe...
amzn.to/3jVg1KJ
433MHz SMA antenna:
s.click.aliexpress.com/e/_DEr...
amzn.to/3xjMLjU
ESP8266 wifi board:
amzn.to/3VYpKg6
s.click.aliexpress.com/e/_Dev...
NRF24 and extras:
amzn.to/3jXIS0w
s.click.aliexpress.com/e/_DEi...
HC-SR04 distance sensor:
amzn.to/3XwvFKP
s.click.aliexpress.com/e/_DFc...
Jumper wires for modules:
amzn.to/3X96zkK
s.click.aliexpress.com/e/_DdJ...
Random screen protector (cheap):
amzn.to/3GLIDhY
s.click.aliexpress.com/e/_DCt...
Portapack H2 transparent case:
s.click.aliexpress.com/e/_Dli...
amzn.to/3Mspa7D
Portapack H2 alloy case:
amzn.to/3MxPWf1
s.click.aliexpress.com/e/_DER...
HackRF Portapack H2 :
amzn.to/3BQb773
s.click.aliexpress.com/e/_DcG...
Just HackRF one board:
s.click.aliexpress.com/e/_Ddl...
amzn.to/3WrZFYK
antenna ANT500:
amzn.to/3MRUWMY
s.click.aliexpress.com/e/_Dmr...
antenna ANT700:
amzn.to/3IAzmdd
s.click.aliexpress.com/e/_DdE...
antenna :
amzn.to/3Mwm96b
#flipperzero #hackrf #hack #hacking
For unlocking Flippers features you will have to install Unleashed or RogueMaster firmwares ...
Unleashed: github.com/DarkFlippers/unlea...
RM : github.com/RogueMaster/flippe...
flipper zero
flipper
flipperzero
hack
hacking
radio
hackrf
hack rf one
rolljam
rolljam attack
relay attack
jamming
radio jamming
signal jamming
jammer
way to donate via cryptocurrency:
BTC :
19PJUJFmuDWYdW321mGn9qLUXaH5dnWPbj
ETH:
0xf2dcd9ad4ce2939ce2323e469c097008cbbd4ec3
ZEC:
t1WgUTwKYaQj4g2Rojsik4fqqmrUfpa8mcK
disclaimer:
TakeApart is not responsible for any damage on your devices or property caused by following this video, this video is informative only ! Disassembling, modifying or trying to repair electronic devices, gadgets is not recommended for untrained persons. Applying any liquid into or onto electronic devices is bad idea and you should never do so if you are not a trained professional! - แนวปฏิบัติและการใช้ชีวิต
![[TH] 2024 PMSL SEA GF D1 | Summer | แข่งที่ไทย ต้องใส่ให้สุด](http://i.ytimg.com/vi/Jkuf7nCS7jI/mqdefault.jpg)
Bro great video! I’ve been playing with my portapack H2 & Flipper. Just bought a old broken down 3D printer for $10! I almost have it up & running. I gotta print some parts for it as soon as I do. I’m really having fun playing around with these toys. Can’t wait until I can print a few things.
great! let me know once you repair your printer
I was looking for one of them to get, but I'll now get both. What a combo
absolutely!
If i want to roll jam my car from distance can use antenna for longer range will it not jamming then also the portapack if i use antenna and witch antenna should i buy for longer range and not stop capture the rolling for portapack when i jamm
nice one! however in this case you had a range advantage of jamming near the car while recording right next to the remote. for a proper rolljam, i heard you should jam around the frequency (on both sides?), preferably use a directional antenna, and capture two "open" signals while replying the first one, causing the car owner not to notice the trick.
since hackrf is only half duplex, it cannot jam and record simultaneously so you need more than that..
I heard evil crow may be helpful on that one..
a nice video would be letting your friend pass around with the key trying to unlock, while you running the rolljam on him 😉
Hi, i like to learn with electronic gadgets. I like hackrf one, just one question. When i captured the signal of the key (and the jammer do the work to block the signal) the signal captured from the key on the hackrf one i can use it more times or just one time? And if before use the signal of the hackrf one I use the key, can I use after that the signal of the hackrf one? Thanks a lot!
only once …
...or you can capture out of the range of the car or while car is running when car is running key fob is automatically ignored.... but jamming is a cool alternative
yes I have videos on that as well ….
Ty bro you deserve a follow
thanks for watching and support
Hi when i try capture the rolling code and also jaming my car whit my uv5 boateng jammer its blocking the signal from the portapack. Witch jammer should i buy.
you are too close to the jammer… (jammer can be close to the car, but you - with fob and hackrf have to go few meters away) . or your jammer is too powerful.
So does your car remote use rolling codes?
I'm subbed.
Look forward to watching your Flipper Zero videos.
hi, yes so far all cars on my channel had rolling codes
@@takeapartmaybe I’m confused, but doesn’t the keyfob stop working if you send it’s signal from the flipper? Forget the RollJam attack for a minute; if you just record your fobs signal (out of range of car), and then send it to car using Flipper, I thought the keyfob would become out of sync and stop working. ?
Rolling codes you say?
Buy any pre 2016 VW or Audi ECU and rip the seed out.
Every pre 2016 Volkswagen group car uses 1 of 4 seed codes. They may roll, though finding where they're at is as easy as knowing the cryptographic sequence for the rolling code and having a seed code.
Hi One question maybe you can help me. I have a portapack h3 and tried to jam the key fob signal. I'm running the correct frequency (imo, analyzed it with the flipper zero) but if I press unlock on the key the car still opens. So there is no signal jamming
433.92 or 315MHz … are two main frequencies. if you car and keyfob communicate via bluetooth or RFID you will need to jam those frequencies as well(but with different antennas) . let me know model and make + year of you car
@@takeapart i have a Audi a4 2021 and it's 433 mhz
I guess it is keyless entry and start? if so it has another way to communicate…
@@takeapart Yes thats correct it's keyless. That means i need a car which uses a physical key?
@@takeapart It was definitly the car. I tried it with a fiat 500 and a physical key and the signal was blocked but when I copy the signal it will not open the car. Do you have any suggestions?
Love the channel.
thanks 🙏
Hii, thank you for this amazing video. I just want to ask you if I can use hackrf one portapack to capture or record the Wi-Fi traffic between the application and the smart device?
you can see the signal, for that purposes you just need hack rf and pc with dedicated software.
@@takeapart thank you so much, I installed the software GNU radio) to do the recording
How do you find out the frequency of the cars remote? Is it all the same for that specific car year and model?
frequency analyzer
@@takeapart I'm trying to figure out how car theives remotely unlock cars in the parking lot. I understand the jamming and replay attacks, but how they guess the frequency and do it all within a matter of minutes?
@RainBitcoins mainly there are only two frequencies used by cars manufacturers… 315MHz and 433.92Mhz …. sk it takes literally 5seconds to switch if they on wrong one
@@takeapart Ah I see... Good to know.. Have you played around with the blade rf at all? I'm really enjoying your videos... New sub here. Keep up the great work.
@RainBitcoins no worries… blade rf is in my bucket list
Are you Romanian by any chance? Asking because Dacia cars are usually seen in Romania, as they are produced there.
not Romanian, Dacia cars are popular in whole Europe… cheap cars
Hi when i try to capture my key car and also jamming whit my boafeng uv5 jammer but it blocks the capture to portapack and can not copy my key whitc jammer device should i buy to jaming the the key and capture the Rolling code same time
increase the distance from jammer. key and hackrf should be away from baofeng .
How Can i contact you my hack ed does not work pls Can you help me
@user-ur6jq8le2o check about tab on my channel and you will find my email!
Cant find friend Can you send me here plz
@user-ur6jq8le2o then head to my website… takeaparttech.com
I bought 1) portapack H2 and 2) Hack RF One from two different shops of ali express. These came separately and when I plugged them in the screen didn't turn on. Only the leds are on but there is no image on the screen...!!! WHAT SHOULD I DO...??? please HELP
hi, press and hold left button prior to pressing wheel and hold them for 2-3s
I assume that you installed portapack FW!?
i did it@@takeapart BUT it NOT works... BUT thaks for your HELP very very thank you sir... ;)
@@takeapart ohh NO... i just BUY from ali express and it didnt work... Yhe screen is not openining.. Just leds on.. İ didnt use any usb to PC...
I solve IT
And this will work for any car since u can customize the settings so much huh?
pretty much…. on any car using RF
Only on cars that don't use Rolling Code
0:44 >>> "Make sure you check your local laws, because jamming is not fun!" Hmm... it LOOKS pretty fun! LOL
(Just kidding govt, don't look at me)
🤦🏼🔥😀
Nice 👍
Thanks ✌
hey, i cant jam car key signal. on frequency analyzer, frequency of key fob always changes. how do i jam correctly?
hi, it should change by a little…. so it should be fine
Is it bad to jam on the exact same frequency as your key fob is transmitting on ?
that is the whole point….
I meant when you’re capturing you might capture the jamming being sent out instead of only capturing the signal for unlock
in mu case: flippers range is not great, so even few meters away I had good enough capture to unlock successfully.
try it yourself.
in case of more powerful jamming device you may jam even receiver.
what is wrong with your voice ? xDDDDDD
excuse me?
He has another countries accent.
Bruh
He’s Austrian I think
Dude it’s like exaggerated lol I swear it’s on purpose. So annoying.
how do thieves this capturing the key without the knob pushing
for now not possible with flipper
@@takeapart the flipper only effects as a jammer understand this anyway great video
Can you do this without the flipper?
can be done with two hackrf units…
@@takeapart not one?
@kev2slime hackrf is half duplex- it can not receive and transmit at the same time
0:32 - 2:20
?
U can do same with 2 flippers
absolutely!
Witch Honda cars can u start with flippers ?
im not sure … have to find it out
@@ipwnxdemonzz4223 To my knowledge, every Honda from 2012-2022 is vulnerable to Rolling Pwn, so if you can somehow (unrealistically) capture 5 codes, it’ll resync.
All Civics prior to 2020 @@ipwnxdemonzz4223
Number 1. That is not a dodge. It's a honda.
sorry what Dodge?! the car in video is Dacia
😂😂😂😂@@takeapart
I think it’s meant to listen to on 1.75x
how do you find latest videos? less annoying?
That's only possible for Keyfobs with no rolling code or with rolling code for lock and unlock signalq
incorrect! it is possible for keyfobs with rolling codes, but only once and there is special way to capture the signal… pay attention to my video
@@takeapart how would you replay a frame if the rolling code of the BCM is bigger then the one of the keyfob? This only can take place if the lock frames have a rolling code different from the unlock ones. Unless I am missing something here!
@thechallenger3020 again, you not paying attention…. if receiver (BCM) doesn’t receive signal from key fob ,but you capture that signal by HackRF or other device you can replay it and it will successfully unlock or lock …. (but only once)! on the video I used flipper as jammer- so car (BCM) wasn’t able to receive signal from key fob and I captured said signal by hackrf. then stopped jammer and replayed captured signal from hackrf . Note: I have another videos about this topic, but without jamming part…. maybe easier for you to understand.
@@takeapart sorry my bad! I watched the video but didn't pay attention! You are right it was only 1 frame! Now we are aligned, thanks! I'll watch your other videos. Did you ever hear about RollBack? There is a guy who invented this and he has a paper on it. It's a must seen
@thechallenger3020 all good, I will check it out….
Are you romanian?
nope
I’m lost lol I don’t drive so I guess that’s why
you don’t drive ?
D😊
J
Hi, you got Instagram?
hi, I do but not using it… how can I help you?
hi, I do but not using it… how can I help you?
When i capture the key whit ny portapack and jamming also whit my uv5 boateng jammer its blocks my portapack whitch jammer should i buy that not stopping my portapack to capture
D😊