DIY CC1101 tool - RF jammer, replay attack, sniffer - cheap & easy tool for radio pen testing
ฝัง
- เผยแพร่เมื่อ 3 มิ.ย. 2023
- I decided to create cheap RF hacking tool with capabilities similar to Yardstick One. All the parts cost 10$ :-)
The project page is here : github.com/mcore1976/cc1101-tool and... I am giving this design for free to everyone... Well, it is not Flipper Zero, it is even BETTER ! and still simpler to use than Yard Stick One
The parts you need : (Sparkfun) Arduino Pro Micro 3.3Volts / 8 MHz version, some cheap CC1101 module for Arduino (try to buy version most accurate for the frequency you want to play 433MHz/315MHz/868MHz ). I have included ESP32 and ESP8266 versions as well as Arduino Nano/Mega/Uno version (this one requires TXS0108E TTL logic converter to interwork with CC1101 module)
It can do :
- scanning radio bands for most accurate frequency of the signal : scan minfreq maxfreq
- record & replay of radio frames ( rec & play commands),
- you can compose your own set of frames/signal chunks to be sent (add /show/ addraw/ showraw/ flush commands) ,
- has built-in jammer functions (command jam)
- can sniff packets ( command rx / rxraw )
- can send single frame (command tx)
- can capture/record and replay any RF signal via RAW format (like Flipper Zero can - commands recraw/playraw/showraw)
- can store & restore recorded/composed packets and RAW RF into non-volatile EEPROM memory (commands save/load)
- it has CHAT option so you can connect many of such devices over radio to support simple radio communicator
It also has a possibility to set every single parameter of CC1101 chip with simple human readable commands thanks to use of SmartRC library by Little_S@tan ( github.com/LSatan/SmartRC-CC1... )
If you combine it with Universal Radio Hacker tool ( github.com/jopohl/urh ) you can do a lot of things over radio... Even without URH you can do record & replay attacks. The tool can be easily used to perform most of RF attacks to cars and other devices like wireless door openers, door bells and so on. I do not encourage you to do such things but sometimes it is worth to check if the wireless devices that you are using are truly safe, don't you think ?
DISCLAIMER - you use this device at your own risk. I can not be held responsible of your own actions and damages you could do with this device. My video has only educational value and the device should be used responsibly following local law regulations.
I am not showing how to hack in this video, you have to figure it out on your own.
If you like this project please press LIKE button and SUBSCRIBE the channel !
Thank You for your support !
#ALCHNL #ARDUINO #SDR
Can't wait to see this. I found your videos after making a little NRF24 WiFi Jammer, your mic jamming project is awesome. VERY eager to see what you do with the CC1101, that was next on my list of fun transceivers to play with :)
The project it's work with nrf24 or not
@@user-kz4fy4xl1h no, the NRF operates at ~2.4Ghz, you need a CC1101
i like that you still update the project to this day, i really appreciate you for making everything public for everyone to learn👍
I am a fan of the open source :-)
I have just added ESP8266 version with wireless connectivity. USB cables are no longer needed when using ESP8266 board instead of Arduino Pro Micro
ESP8266 as a WIFI client
raw.githubusercontent.com/mcore1976/cc1101-tool/main/cc1101-tool-esp8266-wifi.ino
Also ESP8266 as a WIFI ACCESS POINT version is here
raw.githubusercontent.com/mcore1976/cc1101-tool/main/cc1101-tool-esp8266-wifi-ap.ino
In this version you connect over WIFI to ESP8266 directly on 192.168.1.100 port TCP 23 , SSID is "cc1101"
You’re a legend dude, I was always wondering how to apply these cc1101 boards but I’m not a microcontroller guy and this gives me a reason to get into it and a blueprint to follow.
I like to demystify things and make them simpler for others.
check my newest version where you can use wifi to connect to this cc1101 tool - you need esp8266 board instead of Arduino Pro Micro
WIFI CLIENT VERSION
raw.githubusercontent.com/mcore1976/cc1101-tool/main/cc1101-tool-esp8266-wifi.ino
WIFI ACCESS POINT VERSION
raw.githubusercontent.com/mcore1976/cc1101-tool/main/cc1101-tool-esp8266-wifi-ap.ino
Amazing content man! I have been trying to do this for months and this really helped me out!
I am glad you see the potential in this device :-)
Very very good! I like CC1101 very much, just have your tutorial, thank you very much!😀
Your content is best
It worked with esp32!! so useful video!Hope you make more!
I am only making good stuff, hahaha. Have you checked my last video th-cam.com/video/mdkEK_wmWJA/w-d-xo.html ?
Hi there
I have prepared WIFI version for ESP8266
raw.githubusercontent.com/mcore1976/cc1101-tool/main/cc1101-tool-esp8266-wifi.ino
Here ESP8266 connects to an external Access Point so you need to provide IP addresses and wifi password in the source code
Also ESP8266 as a WIFI ACCESS POINT version is here
raw.githubusercontent.com/mcore1976/cc1101-tool/main/cc1101-tool-esp8266-wifi-ap.ino
In this version you connect over WIFI to ESP8266 directly on 192.168.1.100 port TCP 23 , SSID is "cc1101"
very use full info an innovating tech keep videos like this
You are an absolute legend my friend ... very humble username but again far from just any engineer ... youve helped me enormously ... do u have a patreon or paypal for ppl to support ur work an vids etx??
I am working for free at the moment :-)
Fantastic video! Would be nice to add a WIFI Access Point mode to the ESP32 board in your github repo.
Awesome ❤😉👏👏👏
Congratulations on the channel!! Could I use the Pro Mini?
No, because it has 5V TTL logic on its output. Browse the comments down for more info
Continue to pay attention to you and harvest continuous surprises! Love you
good! in the next video I will be opening my garage gate with this tool. I will show it step by step
Most people here do not even understand how powerful this device is and what can you do with it...
@@justanengineer5599 Wow looking forward to it!😀
@@justanengineer5599 can u also make a video on how to increase the range please? like 1-3 km coverage range
or its not possible?
Hi, the best would be to use additional amplifier board (which I do not have at the moment), but the problem is that these board work only one direction. You can only increase transmission range or only receiving range.
Anyway I found something that pottentially could work both ways : www.aliexpress.com/item/1005003970364886.html
hi really a great tool well done...if I understand correctly for jamming you have to use the corresponding modulation set
for example if I have the right to jam a 2fsk frequency I must select it before launching the Jamm command?
yes. before jam command you need to do setmhz and setmodulation for best efficiency
Pretty freakin awesome! Amazing! Question is it possible to use XBEE module or with a regular nano arduino too. Plus with esp2866
yes. There is ESP8266 script already available and tested. For xbee you need to adjust pin numbers
BTW see the second video showing practical usage of this tool th-cam.com/video/mdkEK_wmWJA/w-d-xo.html
@@justanengineer5599 thank you
check WIFI version for esp8266 based my cc1101 tool. usb cables are no longer needed !
ESP8266 as a WIFI CLIENT
raw.githubusercontent.com/mcore1976/cc1101-tool/main/cc1101-tool-esp8266-wifi.ino
ESP8266 as a WIFI ACCESS POINT
raw.githubusercontent.com/mcore1976/cc1101-tool/main/cc1101-tool-esp8266-wifi-ap.ino
A note: It is not the same as a YS1, the YS1 has rx/tx amps and it has filters and is already setup to use python. This will require a bit more effort to use python with it ( but should still be doable)
That all said I have ordered a Pi Pico board to use with the numerous cc1101 boards I have as this would be a nice cheap (almost disposable) alternative to my 2 Yardstick Ones so it certainly has its place.
I am hoping it works well, after my issues with RFQuack (TX worked fine, RX did not work at all).
Loved the video
is it possible to do the same with an ESP32 board or it has to be the Arduino Pro Micro?
check my github there is esp32 and ESP8266 code as well
loving this, is there a way that it can be dynamically configured to jam frequency within 50 meters
yes. it supports such function out of the box and basically two commands are required to do such operation : setmhz XXX and jam
what else do you want?
Hi I have a question here. How does Flipper Zero manage to support 315mhz, 433mhz and 868mhz using c1101 while the modules available usually only support one of the three frequencies?
the same way as my software does. cc1101 can be tuned to the wider range than only 315, 433 and 868
Does the particular CC1101 module that you are using work at 868Mhz ? I don't get why 433 is written on it if is works for almost the whole subGHZ range
I think mine is actually faulty, that made my job harder all along
I managed to get my garage door code using univerval radio hacker at least, but I can't unlock it with my digispark like you did in an earlier project since it works at 868Mhz
Yes. Even 433MHz CC1101 modules work on 868MHz. The important thing is that if you buy 868MHz version it will work better on 868MHz due to different capacitors and coils that are tuned to this frequency on the board.
You may try with this project using RAW commands : scan 867 869, setmhz 868, rxraw 50, recraw 50, playraw 50, showraw , load , save
Nice work!
Can a raspberry pi be used (with the appropriate add ons) the same way as this?
👍
in general yes. Raspberry Pi can be connected to CC1101 board - you have it described here : securipi.co.uk/cc1101.pdf.
But my point was to build simple to use CC1101 based device that could be connected to anything with USB Serial Port.
This is only an alpha version and it will evolve
@@justanengineer5599 thanks! 👋
This is amazing, will this work to jam frequencies from 500KHz - 2000KHz all at once?
no only 3 ranges from 300-915MHz
hi would it be possible to adjust the sensitivity when I launch the sniffing...I don't receive anything from the surroundings I think...and I would like to know a little more about the scan function...when I launch it nothing happens is displayed when pressing the remote control
THANKS
for scan function to work properly either the signal has to be available for at least 5 seconds or the frequency range has to be narrowed to 1MHz or less
frankly congratulations again, I can't believe your project does exactly the same thing as a Fllipper at the RF level...just "for a handful of dollars"...basically if you have to copy the key to my vehicle outside carried receiver (rolling code required) I just have to mention the frequency, the modulation and launch RX 1 possibly rec 1 and that's it? and replay the whole thing...
basically not rec & rx commands but rather
rxraw microsec
recraw microsec
showraw
playraw
where microsec is sampling interval in microseconds like for example 50, 100, 200 etc
thanks you @@justanengineer5599
It’s because it needs a computer
Finished test: NodeMCU ESP8266 still reboots, WEMOS D1 MINI works fine🐱
great. my wemos D1 mini clone tends to restart from time to time but most of the time works stable. My analysis points to SmartRC library which sometimes fires the Watchdog
[EDIT] found the source of the problem. It is INDEED senddata function of SmartRC library which takes too long if Data Rate is 1200bps. Changing it to 9600 bps or even 4800bps in deafult initialization settings solves the issue with WDT Restart on ESP8266 boards. I have updated source code accordingly
Cool :D
Great Job, I am using nodemcu esp8266, Putty hangs, can I enable jammer in the code before uploading code?
no. You have to work on your cabling probably there is problem in wiring between cc1101 board and ESP8266 board. that is why putty is empty.
Could you use a 5v 16mhz Arduino with a voltage level shifter or is the 8mhz clock necesary for operation?
yes but the better option is to spend 2 usd for ESP8266 board instead of spending money for level shifter, additional cables and arduino pro micro 5v, don't you think? Have you read the description on the Github page of this project? It has evolved a lot since this video. It is now working with variety of boards
Nice project, thanks for sharing!
I just programmed an Arduino Pro Mini 3.3V 8mHz wired up with a regual CC1101 board. I use putty to send the rx command but receive nothing. Also send some packets but do not see any response on 433mHz ?
This is the modification I use for the Pro Mini
// defining PINs for Arduino Pro Mini
byte sck = 13; // D13
byte miso = 12; // D12
byte mosi = 11; // D11
byte ss = 10; // D10
byte gdo0 = 9; // D9
byte gdo2 = 5; // D5
Any idea what I'm missing?
Classic mistake,😉
I switched miso/mosi
use RAW mode. Try rxraw XXX where XXX is microseconds
Hi Adam,
First of all, thank you very much for this guide. I am brand new to Arduino so I hope this isnt a question with a blindingly obvious answer. I set up the circuit on my breadboard, using Ardunio Nano, but as I had 16mhz 5v boards I had to use volatage step down converters. If I have the baud rate set to 115200 in the arduino IDE or Putty I can see the first two lines of your code's output (please type help and then C @ Adam). After this I cannot type into putty, and anything I type into the Arduino IDE seems to be ignored. I am using the Arduino Nano specific code that you provided. Do you have any insight into what might be causing my issue? Thank you!
are you getting cc1101 initialized ok message ? it looks like the code is stuck on CC1101 initialization which gives us an info that either your TTL logic converter does not work or the CC1101 wiring is incorrect
@@justanengineer5599 No, it was not coming through. I think the problem is that my logic level converter doesnt handle SPI (I have learned today!). I have some 8mhz pro micro on the way, as I cannot get my other project to work with the 16mhz + logic converter as well.
Thank you for taking the time to reply!
you may also try with ESP32 boards or ESP8266, I have already posted working code on my Github.
raw.githubusercontent.com/mcore1976/cc1101-tool/main/cc1101-tool-esp8266.ino
raw.githubusercontent.com/mcore1976/cc1101-tool/main/cc1101-tool-esp32-wroom.ino
Thanx Justan, My putty friezes after starting it, please advise, I am using Pro Micro 5v and the TI-cc1101 transceiver with a bidirectional logic converter
lower down Arduino Pro Micro VCC to 3.3 V and do not use TTL logic converter, that should help.... or buy some other board with esp8266 or esp32 which are already operating on 3.3v ttl logic
Thanx a lot @@justanengineer5599 how do i lower the vcc without using logic converter, please
buy DC-DC step down converter for 2$
Can I use any transreciever board as long as connections are correct? Weather it is CC1101 OR AS07-M1101 with D1 mini?
Edit : AS07-M1101 has a VDD instead of VCC. I think it should be fine.
apologies if they are dumb questions.
yes it also fits
I like your diy , you are amazing,
Can you make something like RollJam ?!
this is for rolljam. you just need to figure out how to use it
Could this theoretically work for creating a GSM (or possibly QPSK LTE) cell? I heard it can also output QPSK.
i think CC1101 has too low capability to do it.
hi I have a bad manipulation while trying to update the latest version CC1101.ino
now it is no longer recognized...impossible to reinstall the driver...despite having followed the tutorial
how to do it please?
THANKS
short the reset pin with gnd two times when connected to the pc
hi I can't see the data when I launch rx on the CC1101 tool.. however I have configured the frequency, modulation, deviation when I launch rx nothing is displayed.. except the confirmation that it is is well on its way...
try these commands :
setmhz yourfrequencyhere
rxraw XXXX
recraw XXXX
showraw
playraw XXXX
where XXXX sampling interval in microseconds like for example 100 microseconds :
rxraw 100
Thanks 👍
Specifically if there’s an Amazon one.
hello ,
just a general question related to CC1101 for 433 mhz version .
When i change the main frequency using init() function from 433 to 868 mhz and then to 915 mhz , the cc1101 module does not have the same power output . why is this ?
this is because you need cc1101 board version tuned for 868/915MHz
@@justanengineer5599 i have looked a lot on internet and i could not find a good cc1101 version that can work on 915 mhz frequency .. can you suggest me a link for it ? thank you
The board is fine outputting on 915Mhz, you just need a suitable antenna. Desolder the spring antenna (17.3 cm) and use an antenna for 915 Mhz (8.2 cm).
Hey can I make this using the esp32? Please could you guide me?
Very helpful video though!
you already have the code for esp32 and the schematic on my github page. Always check first before asking any questiin. It is also mentioned in movie description and the link is there. Did you check it?
@@justanengineer5599 My bad, your video showed to make with and arduino
Sorry 😅
One more question- can I use a display and buttons? If yes then how?
you can use shortcut buttons in serialmonitor app on the phone. you may program it
Hello, I tried cc1101 with raspberry pi pico, but it freezes code execution on initialization with command cc1101initialize(); so that it only prints the first two lines on the serial port. For example, the line Serial.println(F("cc1101 connection error! check the wiring.
")); does not send to the serial port. I think the problem is in the spi connection, but I can't find out where.
yes it is connection problem between cc1101 and pico. try to ask the colleague responsible for rpi2060 version about the wiring specification
// see pinout: cdn-learn.adafruit.com/assets/assets/000/099/339/original/raspberry_pi_Pico-R3-Pinout-narrow.png
byte sck = 2;
byte miso = 4;
byte mosi = 3;
byte ss = 5;
int gdo0 = 7;
int gdo2 = 6;
@justanengineer Maybe you know what chip like CC1101 could be used for sniffing/repeating 2,4Ghz ? As I understand correctly the raw/debug mode must be unlock in protocol?
CC2500 is the chip name. it does support OOK. I am notsure my code will work with this chip
@@justanengineer5599 Thank you!
Actually, I started digging in you code and I've been researching for several hours and found CC2500, CC2510/11.
They have async mode and transfer raw data on the GDO0.
So, maybe you concept could work on 2,4Ghz
Does you code work with OOK only?
my code works with all the types of CCxxxx supported modulations
more over looking at this description it seems that my code would work with CC2500
e2e.ti.com/support/wireless-connectivity/other-wireless-group/other-wireless/f/other-wireless-technologies-forum/281641/compatibility-between-cc1100-and-cc2500
@@justanengineer5599 Thank you! Btw r u in Poland?
I followed every step but it seems it can't find the library while it's installed, do you know why that might be?
download library from here :github.com/mcore1976/cc1101-tool/blob/main/SmartRC-CC1101-Driver-Lib-master.zip
then in arduino menu tab file add zip library
That's what I did, but while I can find all the files and the included ones in the libraries folder for some reason it still can't find it (I am using the arduino pro micro code on my arduino pro micro). Thank you for your time
Update: I fixed it, the issue was that I saved the library on a NAS and the IDE cannot access network resources.
great! happy radio hacking!
Excellent work mate, but I am having dynamic memory is maxed out issue, any idea on how to fix this? I cant upload code on pro micro 5v. "Compilation error: data section exceeds available space in board".....Global variables use 2219 bytes (108%) of dynamic memory, leaving...
check if you have selected proper board type in arduino in board manager tab. This is the most common mistake. it does compile properly when all is set in correct order
@@justanengineer5599 ok, Should I select sparkfun pro micro instead of just Pro micro..
@@justanengineer5599 Thanx a lot, you are right. Its now working
see... my projects always work If something is wrong it is 100% user error
Sir i am beginner i want to ask i can use cc2500 for jamming 4g calls , wifi ,Bluetooth how many of them are possible to jam with it ..?
wifi bluetooth yes. others partially
New to this, where do i go to even start learning ?
watch my previous videos if you have some doubts
I am new to this, any configurations for the SDR?
what SDR?
Hey can i desolder my cc1101 spring antenna and solder sma antenna?
yes. some of these boards even have holes to solder SMA socket
@@justanengineer5599 I have the same board which your are using in video d sun
Can i use cc1101 868mhz chip
yes
Hello sir, can this tool be used to jamm FM Radio bands?
no because it works for 300+ MHz
I can use it on android..
Please make a video for iPhones 🙏🙏
I love all your videos 💯💯 the best
Iphones can attach to cc1101-tool based in ESP8266 with wifi without any cabling. I do not posses an iphone. If you will buy me one the I will make the video 😀
@@justanengineer5599 if you’re just in my country. I would give you one. Haha
I have a lot of old iPhones. 😅😅
If it’s through wifi, android can connect to it too.
1 more video please for esp8266😅🙏🙏
Thank you so much.
i installed everything ( including driver ) and when i try to upload the code board is disconnect from the computer and windows doesn't recognize it and got error .
"Windows has stopped this device because it has reported problems. (Code 43)
A request for the USB device descriptor failed. "
i try everything. reinstall the drive . update the driver .
but it's keep showing that error!
But when i try with another code it's work.
I just having a issue around there. :(
PLEASE HELP
EDIT: Oh! my bad i just have to change 3.3v to 5v. Thank it's work finally . :)
i will not delet my comment just to help someone , when facing a error like me.
sdrsharp,source select RTL-SDR USB ,but device option is locked and says E4000,how can i fix it?
you have to properly install RTL SDR USB drivers using Zadig tool first. I was showing this on one of my videos go step by step th-cam.com/video/dh8fjouH0NY/w-d-xo.html
Can you make high freq rf spectrum anylyser using broad frequency rf module like si4432 or si4463 and respberry or arduino with tft colour display?
yes I could but I have no interest in such device. I could buy that kind of stuff on aliexpress. I am only making things you can not easily buy
@@justanengineer5599 everything is available but SA of that range is very costly compared with DIY.
Hey man. So i feel like i followed the instructions pretty meticulously.... but when I run putty with the sparkfun and cc1101 board attached, it just runs a black screen. I saw a previous comment about this but unless I am confused, I have followed all of those steps? Am i confused about how to install the drivers? I went to arduino ide and set up the board, did the respective installs..... this IS the driver installation right? any ideas? Thanks!
assuming you are using arduino pro micro 8MHz / 3.3V
1. Install Arduino IDE, drivers and configure Arduino exactly step by step as this tutorial describes learn.sparkfun.com/tutorials/pro-micro--fio-v3-hookup-guide/all
2. Download this code to Arduino editor raw.githubusercontent.com/mcore1976/cc1101-tool/main/cc1101-tool.ino
and attach SmartRC library from my github (option add zip library in the arduino menu in editor)
github.com/mcore1976/cc1101-tool/blob/main/SmartRC-CC1101-Driver-Lib-master.zip
3. Select board Sparkfun/Arduino Pro Micro 8MHz/3.3V in board menu, upload the code using correct Serial port number - COMxx - check it in your windoz device manager
4. Use putty to connect to the same porrt COMxx. Settings are Serial port SPEED 115200 no parity no xon/xoff
and should work
thanks man let me walk through and see if I missed any of those steps. Ill let you know what happens! @@justanengineer5599
So all is up and running.... putty says connection is okay and when I set frequency to 433.92 mhz it registers and when I give jam command it registers and says "jamming enabled".... but then it just DOESNT WORK?? at any range. I've tried it on my own car, my friends and a couple family members.... they can hit their lock buttons on their key fobs at any range from their car and with me immediately next to them or their car and it just isnt working. Any ideas?
@@justanengineer5599
your cc1101 board appears to be broken (unlikely), has insufficient antenna (unlikely) or you live in a country where 315MHz frequency is used instead 433.92MHz like US Canada Australia etc. (BTW you should mention your location at the beginning of this thread...)
If you are wondering if it works you may want to buy and try RTLSDR USB dongle to check if your CC1101 is generating proper signal at the selected frequency.
433MHz is for Europe/Asia
Also try commands
For EU/Asia :
scan 433 495
and
for US/Canada
scan 314 316
while continously pressing keyfob (at least for 30 seconds) to find correct frequency for setmhz XXX command
www.analog.com/en/app-notes/remote-keyless-entry-systems-overview.html
"They most commonly use a frequency of 315MHz in the U.S. and Japan, and 433.92MHz in Europe.[...[ Europe has also opened up the 868MHz band to accommodate the growing demand for remote keyless entry systems."
en.wikipedia.org/wiki/Remote_keyless_system
"Most RKEs operate at a frequency of 315 MHz for North America-made cars and at 433.92 MHz for European, Japanese and Asian cars."
Im having the same issue, I also used sdr# to see if tha jammer is working but nothing happend, does anny one know what to do?@@user-vj7qm4sx9l I
I have a bunch of 16Mhz boards, can I still use them for this?
you can but only if you use ttl level converter 5V to 3.3v and voltage stabilizer 3.3v for CC1101 boards. Look, all of newer boards are built for 3.3v like esp8266 esp32 etc. 5V boards are passe because 3.7v li-ion battery has become the standard for powering devices now. It's not worth your time to play with these old boards, better buy some 2usd esp8266 or xiao esp32s instead
pro micro atmega32u4 3.3v 8m leonardo,is it ok for this?
yes. it is exactly what I am using here
Hello, I would like to know where I can buy this.
www.aliexpress.com
Nice 👍 and can it generate like 2.4 Ghz or any Ghz ???
The RF range is limited by CC1101 capability. it is 300-950MHz
Can i use RFM69 FSK Transceiver Module for this i mean will it work the same ?
no it wont work
Panie Adamie kiedy mozna spodziewac sie wersji na esp8266 z kontrolą na wifi? (Oczywiscie bez cisnienia - z ciekawosci pytam ) :)
jeszcze nie zacząłem nad nią pracować, brak czasu. Zapewne coś przed gwiazdką zrobię
dobra, już jest wersja pod WIFI
raw.githubusercontent.com/mcore1976/cc1101-tool/main/cc1101-tool-esp8266-wifi.ino
raw.githubusercontent.com/mcore1976/cc1101-tool/main/cc1101-tool-esp8266-wifi.ino
dla Ciebie :-)
Ahhh coś pięknego dziekuje...wracam z wakacji i zaczynam testowac :) dam znac jak sie sprawuje ;)
jeszcze jest pare drobnych błędów ale dzisiaj poprawię. Aby to działało trzeba mieć jakiś Access Point np. wifi z telefonu do którego płytka ESP8266 się podłączy. W kodzie programu trzeba podać ssid i hasło do wifi oraz adresy ip default gatewaya w ruterze wifi i sam adres IP jaki ma mieć esp8266 pod który potem zresztą łączymy się telnetem z np. ConnectBot na telefonie
Edit
Juz poprawione. Przetestowałem i wszystko działa..
Edit
Jest też wesja z Access Pointem, można się łączyć telnetem bezpośrednio do hotspota "cc1101" pod adres 192.168.1.100 port TCP 23 :
raw.githubusercontent.com/mcore1976/cc1101-tool/main/cc1101-tool-esp8266-wifi-ap.ino
How much distance does the jammer cover?
50-100 meters. CC1101 chip has only 10mW of power
Can we use an esp32-s with upto a clock speed of 160 mhz i would imagine it will work ok if so is there a way you can add support for the esp32 ? I know it xan be ysef as a serial interface. Maybe we can even make a wifi ssh interface webserver or via Bluetooth serial.
You can use any type of board that is supported by SmartRC library, and guess what ? ESP32 is one of the supported !
Moreover I have just added the same functions for recording RAW RF data as in Flipper Zero. You can easily record and replay Car Keys like a champ. My only limit is 1KB of RAM memory in Atmega32u4 and that will not be the limit for better boards, just increase recording buffersize in the Arduino program.
I have just tested this function and it is working perfectly. I have my device connected over OTG cable to android phone for portable hacking
I have added ESP32 version code and wiring info. Someone has to test it because I do not have such board here. I have just ordered but it will take one month until I get it
I've just got my ESP32-WROOM board ( ordered XIAO ESP32-C3 and ESP8266 as well) and ported my software for these boards. You may want to use it :
ESP32 WROOM : raw.githubusercontent.com/mcore1976/cc1101-tool/main/cc1101-tool-esp32-wroom.ino
XIAO ESP32-C3 : raw.githubusercontent.com/mcore1976/cc1101-tool/main/cc1101-tool-esp32.ino
ESP8266 version coming soon..
You make a evil crow v2 diy pls🔥
Does CC1101 it support ASK modulation?
yes. it is used in my code actually
hey bro my cc1101 module has no MISO pin instead it has three GOD0 GOD1 GOD2 Pins i have red cc1101 module HW863 can u please help
MISO / SO is GDO1 pin on your board
Hey what type is it female/male cable and Also which pins do u connect them from the arduino to cc1101
both sides of the cable are female. I have the pins soldered onto both Arduino board and CC1101 board. Anyway it always depends on your board versions
@justanengineer5599 I meant which number pins should i connect then in
it is all in the video as well as on my github page. For example
github.com/mcore1976/cc1101-tool/blob/main/cc1101-tool-arduino-pro-micro-E7-M1101D.png
github.com/mcore1976/cc1101-tool/blob/main/cc1101-arduino-pro-micro-tool.png
github.com/mcore1976/cc1101-tool/blob/main/wemos-d1-mini-cc1101-E07-M1101D.png
if you weren't able to find it I have serious doubts you can build and operate this device
Can we use it to jam wireless hidden microphones?
depends on the frequency of these wireless microphones. if it fits within cc1101 bands then yes. Check cc1101 datasheet for info
Use ultrasonic speakers, they can distort the microphones
Hy i try to make a device for a cctv company who need a jammer for drones bec some kids or theft play with a drone and want to Find good spots to enter in site, i can use what i see in this video ? I need the jammer can put down a drone from 500-800 metters arround, please help with that info, thx !
Nah
Drone jammers are illegal, and you are lying
@@thegoldendoge5475 it s not if you use in legal reason, the AirPorts have something like that …
There is no legal reason for that, and signal jammers don’t discriminate, it would block all of the signals for an airport. Just say you wanna fuck around with a signal jammer 😂
Can this wont on higher frequency than 433 mhz ?
yes. Have you read the description? read first before asking questions
Hi , I met a problem ,The two CC1101s work well and can read, write and record. However, one CC1101 cannot read or record other remote controls with the same frequency. Why?
is it the same version and the same vendor of CC1101 board or different? i pressume this board may have faulty components on RF side. Which Arduino board are you using? If using recraw playraw commands sometimes you may need to change modulation type depending on the source of the signal you want to record. By default most car keys and openers are using ASK/OOK type of modulation and 433.92/315MHz but I have seen some working on 868MHz and using GMSK type of modulation in newer cars.
@@justanengineer5599 I want to use one of the CC1101's to record remote control signals, but there is nothing
If 2 other CC1101 boards work OK then this particular board is broken or it has a different pinout than other 2 boards. Try to use "rxraw 100" command to see if it catches anything. Have you checked with Universal Radio Hacker and RTL SDR USB dongle what is the exact frequency and modulation type used in the radio signal you want to capture and record? without this knowledge you can only try to guess... as I mentioned the cc1101-tool is by default configured to 433.92 MHz frequency and ASK/OOK modulation type since this is the common in EU and Asia. You may need to do some research first
@@justanengineer5599I only have 2 CC1101 ,The signal of the remote control is 315, ASK,It would be nice to have a video about recording the remote control signal,Thank you so much!
there will be such guideline in the next video. If your remote is 315MHz based then try folowing commands : "setmhz 315" then "recraw XXX" where XXX is sampling interval. Start with XXX = 200 and then decrease/increase. Type "showraw" and "showbit" to see what has been recorded. Type "playraw XXX" to replay recorded signal over the radio. The hardest is to find correct XXX value and for this I am using Universal Radio Hacker and USB RTL SDR dongle
Hi theres an error when i flash it on arduinodroid it says return code is 0
Use PC and Arduino IDE for flashing ESP8266 board not some Android application because it does not have required libraries like SmartRC and you cannot attach one with this tool. Don't expect that your smartphone is a PC. It is not. It's just a smartphone.
You want to be a hacker ? Buy some PC man.
OK. But I wanted to ask you about a particular circuit. My neighbors have a party once a year in the house next to mine. I would like to have something electronic to counteract their music and play the music I want, just for the purpose of irritating them. We can't stand our neighbors and they and we can't stand each other. Please let me know that it is very, very important. Thank you very much.
do they use bluetooth speakers or something? How do they play the sound? if it is over wifi then it may bw disrupted by wifi deauther
@@justanengineer5599 I don't know if they make use of bluetooth devices. They just use a 'stereo system with various audio sources (mp3, cd, radio, etc.). I don't think it's wifi (since they took down the dish for internet last year and now they only surf with their phone).
if it is not wireless then it will be hard to disrupt.
@@justanengineer5599 Eh this I don't know for sure.
Can your device read any RFID chip even Active Rfid chips? Rfid Biohack chips? Mainly saying could it read any Impplanted RFID chip? Do you sell these components?
this is for different frequency than RFID
hello can i use nodemcu esp 8266?
yes. The code for 8266 board is already there. Have you looked into my github page of this project? I presume not because You would not be asking such questions. With 8266 you can connect over wifi and do not need usb cable... This cc1101 tool can be build with esp8266, esp32, raspberry pi pico, arduino pro micro and a many more. There is no other solution like this available. check my github man.
Can we jam drine signal using this?
no
Can u add oled it looks great
no. but there is wifi enabled version with ESP8266 that you can use with your smartphone without any cables
@@justanengineer5599can I use Arduino pro micro 5v 16mhz instead 3v 8mhz
unfortunatelly no unless ypu power this board from 3.3v power source (you can find power converter board 5V-3V)
@@justanengineer5599my cc1011 power supply voltage dc is 3.3v to 5.5v so I can use Arduino pro micro 5v?
you may try but there is no guarantee it will work
Friend. I can use RFM69HW-433 ?
no. this one does not fit. it needs ti have cc1101 chip
@engineer5599 I'm changing the library and sketch. I will try. thanks
didn't recive with rx command auto keyfob frequency, why?
try rxraw xxxx instead. xxxx is the sampling interval in microseconds
Rxraw command instant printing rx copy finish
what? what boards are you using?
Have you DISABLED ADDITIONAL NEWLINE CHARACTER in your terminal application as it was written in my github project readme ? it looks like you did not read it either...
how can i increase jammer's distance?maybe use some rf pa?
yes but it has to be two way amplifier. Someone already asked for this and there are some links. browse the comments under my cc1101 videos
@@justanengineer5599 thanks,i couldn't find links,in which vedio?
cc1101 jammer
@@justanengineer5599 thanks for responding,lots of rfpa in ali market,which kind of.should i buy?
as I mentioned search for something BIDIRECTIONAL tuned to your frequency 315/433MHz powered from 5V with SMA connector and you need CC1101 board with SMA connector as well. You also need some SMA male cables to be able to connect these boards
would the same boars with an atmega 328p chip work?
the cc1101 board will work with atmega328p but 2 things : you need to lower VCC to 3.3V while powering atmega and you have to attach it through FTDI232 to the PC USB
@@justanengineer5599thanks man. also another question i had, if i were to use this to test a relay attack would i need an rtl sdr?
nope but you need 2 of such devices. One to jam and second to record and replay
@@justanengineer5599but it would also work with rtl sdr? my idea is to use an rtl sdr to capture the signal with radio hacker and replay with this.
yes. if you want to record with URH the you need to have RTLSDR. As I said the point is that ATMEGA328P does not have USB port and you need to use FTDI232 board to attach it over USB. Also you need to power this Atmega from 3.3V to make it work with CC1101
zjechałem do:
Szkic używa 27518 bajtów (95%) pamięci programu. Maksimum to 28672 bajtów.
ile ardu potrzebuje?
jak się popieści to się zmieści. powinno się wgrać jak usunąłeś zbędne serial.print(blablabla) z funkcji help. A swoją droga nie wiem jakie masz Arfuino IDE którą wersję, bo u mnie bez problemu wchodzi kompilacja do Arduino Pro Micro
1.8.19 ubuntu
ja na obydwu i win10 i ubuntu kompilowałem i jakoś wchodziło. Spróbuj najnowsze Arduino wrzucić
wrzuciłem program na ESP8266 i nie ma problemu, ale musiałem to robić z win10, bo na ubuntu nie ogarniam drivera usb ch34...
przegladajac Twoje materialy zauważyłem, że próbowałem wgrać na pro mini, a nie pro micro
b. dziękuję za feedback
@@jigotai9407does it work on pro mini
setGDO
exit status 1
'class ELECHOUSE_CC1101' has no member named 'setGDO0'; did you mean 'setGDO'?
Cześć wyskakuje mi taki błąd przy weryfikacji co robie źle?
podpiąłeś dobrą bibliotekę smartrc w zip do skryptu bo chyba nie bałdzo...? generalnie powinna ona mieć dwie klasy : setGDO0(tutaj numer pinu gd0) oraz setGDO( tutaj nr pinu gd0, oraz numer pinu gdo2). On nie widzi tych klas co oznacza ze nie uzywasz biblioteki SmartRC a natywnej ELECHOUSE. Cos mu sie nie zgadza z tymi parametrami numerami pinow gdo0 i gdo2. U mnie z tą samą płytką to działa więc skopiuj kod w wersji RAW do skryptu bo moze jakies dziwne znaki w nim masz
@@justanengineer5599 Zgadza się mój błąd :) już wszystko śmiga. Pozdrawiam.
git !
mam problem z wgraniem szkicu:
Szkic używa 29122 bajtów (101%) pamięci programu. Maksimum to 28672 bajtów.
usun troche linii z obslugi komendy help i się zmieści. Co to za Arduino? jaki chip?
@@justanengineer5599
wow, tak szybkiej odpowiedzi się nie spodziewałem
MEGA328P chyba arduino micro, wgrywam przez adapter ftdi
coś mącisz chłopie. Arduino Pro Micro ma USB i przez to się wgrywa. Możesz mieć ewentualnie Arduino Pro Mini lub Nano gdzie jest chip ATMEGA328P. Jak nie wiesz jakiej płytki uzywasz albo źle ustawileś w Arduino IDE typ płytki to się nie dziw że program nie wchodzi. Albo obejrzyj jakiś tutorial jak się wybiera płytke w board manager w Arduino IDE i jak się ustawia nuner portu i typ płytki
Can we use gnu radio software
you can use gnu radio to find what are the parameters of the signal that you want to replicate with this CC1101 tool. But the best is to use Universal Radio Hacker and then put decoded frames (hex values and zeros as pause) into CC1101 tool with the commands : flush, addraw XxxxxxxxxxxxxX , playraw , The frame can be checked with showraw . This device has A LOT of functionality but at least some basic level of understanding RF and signals is required
Can you make a Linux video? with SMA Antenna pls👍👍.
I could make it work using esp8266 nodemcu v3 but the frequency generated is always around 43 khz higher than expected, I am using sdr# and universl radio hacker to double check the frequencys. Help
you need to calibrate rtlsdr. also cc1101 calibration is possible but not with smartrc library.
Yoooo, i tried to find the CC1101 board but cant get it... is there any alternative? 😅
are you joking man? checked www.aliexpress.com ?
How do you live there internet people? You are always stuck if you cant find something in the nearest shop.
Noo the problem is that due to some issues... i cant order anything online... thats why im asking
Well, you cant make radio transmitter from the shit and pair of sticks. You need to buy some hardware.
alright thanks
@@justanengineer5599 awesome quote xD
Is there a way to get in touch with you, via discord for example?
email. check my channels description using a PC
@@justanengineer5599 I have sent you an email
@@justanengineer5599 I would like to apologize the mail got stuck in my outbox. You should have it now.
yes I found it and answered
Hello this does not work for me i have an esp32 and cc1101 and in the serial output of puTTY it just giving me question marks and no text i have recompiled the same script 3 times on esp32 still no luck
check port speed of your usb to serial port. It is not 115200 probably
In the source code you have these lines
// initialize USB Serial Port CDC
Serial.begin(115200);
Adjust your putty settings accordingly
@@justanengineer5599 Okay thanks i will look in to it!
HELLO WHEN I try the rxraw it just crashes and rx command doesnt recieve any signal@@justanengineer5599
use rxraw xxx where xxx is microsecond like for example 100. Read the help man!
@@justanengineer5599 Ok thanks but i think my cc1101 isnt working the way it is supposed to its giving me alot of zeros or maybe i havent mached the mhz frequency anyway thanks for the help merry christmas
can i use adruino nano
if operates on 3.3V logic then yes. Needs to be powered from 3.3v
Hey sir in india i cant buy cc1101 can you suggest an alternative rf module that work with your code....
have you tried to buy from chineese shops like www.aliexpress.com ?
@@justanengineer5599 ali exress blocked in India.. Ali express can't ship to India
@@justanengineer5599 AliExpress banned in India so I can't order from ali express
try banggood or others here is the list
www.shops-in-china.com
@@justanengineer5599 banggood also banned 🙂
why my putty shows nothing only black?
1. set speed in putty to 115200 bits per second on Serial Port
2. connect putty to proper serial port. in most cases it is the same number as for arduino programming
3. you need to have usb serial port drivers installed.
4. Check if you see anything through Arduino Debug
Will it work for arduino uno wifi ? thanks a bunch
arduino uno does not have wifi
@@justanengineer5599 is there any model that have a communication mean not necessarly wifi. I mean for example jamming and attacking in a lab test (roll jam).
yes, this project has ESP8266 and ESP32 versions with wifi connectivity. Check the video description before asking such questions
@@justanengineer5599 sorry for my ignorance I am total beginner and process of learning
@@n.w.aicecube5713no offense but you probably need to start from way below to understand this.
I don't find CC1101 but I find NRF24L01
Is that good
not good. try harder
Nrf24lo1 is so bad man. I used it. Really hard to use . I was send strings
can i use arduino nano ?
if you modify the code with proper pin assignments then yes you may try. Arduino Nano can provide 3.3v as a VCC to CC1101 board but it still uses 5V TTL logic on input/output pins for CC1101 connectivity. There is small risk that you may break CC1101. Browse through my comments below to check SMARTRC project on github. It contains wiring diagrams for other Arduino boards such as Nano
go here and browse to the bottom : github.com/LSatan/SmartRC-CC1101-Driver-Lib
I have added CC1101 tool Arduino Nano version on my Github. I have one of these boards and was able to test it. The CC1101 board I was using - E7-M1101D - did not break when directly connected to Arduino Nano. However for CC1101 to work it required additional TTL 3.3V5V logic converter board TXS0108E.
There is also another disadvantage - ATMEGA328 on Arduino Nano has only 2048 bytes SRAM while ATMEGA32U4 on Arduino Pro Micro has 2512 bytes which gives longer time of radio recording and improves stability of the device.
Conclusion - it is better to buy Arduino Pro Micro instead of using Arduino Nano for this CC1101 tool
only sparkfun arduino pro micro?
pro micro has hardware usb to serial port. The code will work with other boards as well (arduino leonardo, even pro mini - after modification of pin assignments in the source code) but it is VERY IMPORTANT to power CC1101 board from 3.3Volt
I am using SmartRC library check its description in the wiring chapter
github.com/LSatan/SmartRC-CC1101-Driver-Lib
@@justanengineer5599 I mean only sparkfun Arduino or can we use any other Arduino board?
By setting 3.3v supply?
yes others arduinos with 3.3v can be used as well after pin numbers modification in the source code. check my link above and browse to wiring chapter of SMARTRC library
Can we also setup something for rolljam??
this is for rolljam. you just need to understand how to use it. you need a pair of these devices. One is jamming second is recording. And you need a bit of imagination. If you are not getting this, then it is not for you
@@justanengineer5599 no I do get it. The thing is the other receiver tends to pick up the jammed signal as well and gets gibberish. If I try to set different frequencies one for jamming which is slightly different then the key fob frequency. That’s what I was wondering about. Will the receiver not pick up gibberish which is being transmitted while jamming.
im new to RF and I do know my stuff but just confused. Sorry for the annoying questions.
I do get it one jams and the other one will just listen and pick up the signals which I can later save and replay the first lock signals goes out to actually lock the car and the later recorded signals can be used by me. Just confused about the jamming.
the jammer needs to be set with some offset frequency to the jammed signal. the recorder need to have bandwidth set the way it will not fall into jamming signal frequency
@@justanengineer5599 okay great, will try
@@justanengineer5599 Are there any new major updates you are thinking of maybe i can help!!
Can you pick up Tesla charging port signals with this?
yes exactly. Use recraw rxraw showraw and playraw commands
@justanengineer5599 Thank you I will look into it! Great videos
@@justanengineer5599 sorry does this work for Arduino Nano?
no. because arduino nano uses 5V TTL logic and CC1101 board requires 3.3V. You may buy cheap esp8266 board like Wemos D1 Mini clone for 2$ instead of using more expensive arduinos like Pro Micro
This cc1101tool in total will cost you less than 5 bucks
@@justanengineer5599 The nano has 3.3v pin to power the CC1101.
YS1 is cheaply made it had python and python i perfer, For now i use a evil crow V2. its ok but its no YS1.
evil crow is very good but it is hard to buy it. Sometimes it is out of stock. I wanted to create something that anyone can build and anyone can operate and I think I was succesfull. Keep in mind that it took me only 7 DAYS to make it and prepare the program :-) It is so simple that anyone can expand it with more features and options
for linux?
pls make for Linux thx you.👍👍
it is OS independent. works with Linux as well
thx you