Media

WarDragon Remote Drone ID Detection Update w/ Node-Red Map Plotting (Sniffle, DragonTooth)

In this video, I'll guide you through the setup of a modified Sniffle ...

In this video, I'll guide you through the setup of a modified Sniffle repository designed to decode FAA Remote ID from drones, focusing specifically on Bluetooth 5 Long Range Extended ...types. I'm using DragonOS, specifically on a WarDragon configured with all the necessary equipment. Let's dive into the details!

*Key Highlights:*
- *Repository Setup on DragonOS:* Step-by-step instructions to set up the modified Sniffle repository on DragonOS, tailored for FAA Remote ID decoding.
- *Bluetooth 5 Long Range Extended:* In-depth focus on capturing and decoding signals using Bluetooth 5 Long Range Extended.
- *Troubleshooting Node-Red:* Tips and tricks for resolving common issues with a Node-Red Docker setup. Mostly my fault.
- *Sniffle with ZMQ Server:* How to start up the Sniffle Python code with ZeroMQ server support.
- *Node-Red Flow Configuration:* Configuring a Node-Red flow to connect to the Sniffle ZMQ server and process the decoded drone information.
- *Plotting on a World Map:* Displaying decoded drone information, including latitude and longitude, on a world map.

*Understanding Remote ID and Regulations:*
The FAA (Federal Aviation Administration) in the United States and equivalent regulatory bodies in Europe require drones to broadcast their identification and location for safety and security purposes. Remote ID acts as a digital license plate for drones, providing crucial information to law enforcement and other agencies to enhance airspace safety.

*Why Tracking Drones is Helpful:*
Tracking drones can significantly enhance safety and security by providing real-time information about drone activities. This is particularly important for preventing unauthorized drone operations in sensitive areas, assisting in the coordination of drone traffic, and ensuring compliance with aviation regulations.

*Ethical Use and Testing:*
It's important to note that the modified Sniffle repository includes the ability to transmit Remote ID packets for testing purposes. This feature is intended solely for educational and development purposes. I strongly discourage any misuse of this capability and urge viewers to use this feature responsibly and ethically.

By the end of this video, you'll have a fully functional setup capable of decoding FAA Remote ID signals from drones using Bluetooth 5 Long Range Extended and visualizing the data on a world map using Node-Red.

*Links to the Repository:*
Modified Fork https://github.com/bkerler/Sniffle
Original https://github.com/nccgroup/Sniffle
FlightViewGui (mentioned in the video) https://github.com/alphafox02/flightview_gui

WarDragon available here (when in stock):
https://cemaxecuter.com/?post_type=product

Don't miss out on staying connected:
Catch updates on Twitter: https://twitter.com/cemaxecuter

Supporting the channel:
If you appreciate the value this content brings, I invite you to consider extending your support through Patreon: https://www.patreon.com/cemaxecuter[+] Show More

DragonOS FocalX Transmit and Receive Meshtastic w/ SDR (hackRF, Airspy R2, R36)

In this video, we take a deeper dive into the setup and usage of the ...

DragonOS FocalX Updates to Real-time Decoding Drone Remote ID BT5 LR (Sniffle)

In this video, I'll guide you through the setup process to decode ...

In this video, I'll guide you through the setup process to decode FAA-required Remote ID signals transmitted over Bluetooth 5 Long Range Extended (BT5 LR) using Sniffle. We’ll leverage a ...combination of Sniffle, tshark, and a Wireshark Remote ID dissector to achieve real-time decoding of drone signals.

What You'll Learn:

1. FIFO Setup for Sniffle: Learn how to configure the Sonoff dongle with Sniffle to capture BT5 LR packets.
2. Real-Time Decoding with tshark: Use tshark in conjunction with the Wireshark Remote ID dissector to decode these packets into JSON format, revealing the exact locations of drones.
3. Advanced Configurations: While the video focuses on real-time decoding, I'll also discuss and show the commands necessary to pipe the JSON output to a network connection for further analysis.

Key Points:

1.This tutorial assists users in getting started with WarDragon, which includes the exact dongle and required software.
2. It's also relevant for those installing DragonOS.
3. The setup demonstrates how multiple software tools can be combined to receive, decode, and display drone location information.
4. This is strictly for research purposes and not intended for any malicious use.

Why Bluetooth 5 Long Range Extended?
Bluetooth 5 Long Range (BT5 LR) is a powerful enhancement to the standard Bluetooth protocol, enabling extended range and better performance over longer distances. I have personally confirmed reception of Remote ID BT5 LR over a 1km distance from the transmitter.

Important Notes:

- While the results can include exact drone locations, this video ensures no personal locations are revealed.
- Piping JSON output to a network connection can allow for more extensive analysis and display.

Useful Links:
https://github.com/nccgroup/Sniffle
https://github.com/alphafox02/wireshark-dissector/tree/headless

WarDragon available here (when in stock):
https://cemaxecuter.com/?post_type=product

Don't miss out on staying connected:
Catch updates on Twitter: https://twitter.com/cemaxecuter

Supporting the channel:
If you appreciate the value this content brings, I invite you to consider extending your support through Patreon: https://www.patreon.com/cemaxecuter[+] Show More

WarDragon Real-Time Decoding Meshtastic w/ GNU Radio & SDR (RTLSDR v3)

In this video, I'll be showing a project called *Meshtastic_SDR.* This ...

In this video, I'll be showing a project called *Meshtastic_SDR.* This project leverages *GNU Radio* and a *software-defined radio (SDR)* to decode Meshtastic messages using a Python-based decoder. You can ...find the project on GitLab here
https://gitlab.com/crankylinuxuser/meshtastic_sdr

*What is Meshtastic?*
Meshtastic is a powerful open-source project that enables communication via low-cost LoRa radios. It’s designed for creating mesh networks, allowing devices to relay messages across a wide area without relying on traditional infrastructure. The protocol is perfect for off-grid communication, emergency situations, and hobbyist networking projects.

*Project Overview:*
In this video, I demonstrate how to use a flow graph designed specifically for all US-based frequencies with a 250 kHz bandwidth setting using an *RTL-SDR*.

*Key Components:*
- *GNU Radio:* The open-source software toolkit that processes the radio signals.
- *RTL-SDR:* The affordable software-defined radio used to capture the signals.
- *Python Decoder:* A script that decodes the Meshtastic messages from the radio signals.

*Technical Details:*
The flow graph utilizes separate ports on a ZMQ sink for different preset types (e.g., long, fast), allowing the Python decoder to be opened multiple times, each instance pointing to a specific port, facilitating simultaneous decoding of various message types. The AES key of the Meshtastic network is required to decode the messages.

*Advantages of Using SDR:*
The major benefit of using an SDR in this setup is its ability to monitor multiple presets at once, unlike traditional Meshtastic equipment, which is usually limited to a single preset.

*Conclusion:*
Join me in exploring how this Meshtastic_SDR project can emulate standard Meshtastic equipment, with the added versatility of SDR technology. Whether you're a radio enthusiast, a software developer, or just curious about off-grid communication systems, this project has something to offer.

*Resources:*
- Meshtastic Project https://meshtastic.org/
- Meshtastic_SDR on GitLab https://gitlab.com/crankylinuxuser/meshtastic_sdr
- GNU Radio https://www.gnuradio.org/
- RTL-SDR https://www.rtl-sdr.com/

WarDragon available here (when in stock):
https://cemaxecuter.com/?post_type=product

Don't miss out on staying connected:
Catch updates on Twitter: https://twitter.com/cemaxecuter

Supporting the channel:
If you appreciate the value this content brings, I invite you to consider extending your support through Patreon: https://www.patreon.com/cemaxecuter[+] Show More

WarDragon YateBTS Calling Real Phones w/ VK8FOES Rob + Nuand Rob (bladeRFxA9, diamondcard) part 2

In this video, I'll be demonstrating a call to a real-world number in ...

In this video, I'll be demonstrating a call to a real-world number in Australia. To start, I make the call using a Samsung S4 with a Sysmocom SIM inserted, connecting ...to a BTS created with PCS1900. You'll see a video splice from the other end where Rob from the YouTube channel Rob VK8FOES answers. Rob has provided a screen recording with a webcam of himself so you can see the interaction from his perspective.

By the way, here is Rob's channel.
https://www.youtube.com/@UCfXUqFrOLphS3gTrhxRTogA

During the call, Rob places me on hold and calls Rob from Nuand. Robert Ghilduta, from what I understand, is the main person behind Nuand and the bladeRF products. His company has significantly contributed to the open-source community for a long time. Robert agreed to be part of this recorded YouTube video. I should note that none of this video would be possible without the bladeRF hardware, which is a great product. Neither Rob from Australia nor I were paid to say that; these are merely our personal views. However, Nuand sent me the bladeRF xA9 over a year ago for free.

BladeRF Site
https://www.nuand.com/bladerf-2-0-micro/

I conclude the video by showing the exact configuration I use within the diamondcard.us site for IAX and the settings I configure within the YateBTS web interface to make these calls possible.

To give you some context, IAX (Inter-Asterisk eXchange) and SIP (Session Initiation Protocol) are both protocols used for VoIP (Voice over IP) communications. SIP is more widely used and is an open standard that supports a broad range of multimedia communication, including voice and video calls. IAX, on the other hand, was designed specifically for Asterisk, an open-source PBX software. IAX is known for its efficiency in bandwidth usage and its ability to handle NAT traversal issues better than SIP. In this setup, we're using IAX for its reliability and efficient use of resources in our GSM environment.

It's important to point out the typical YouTube warning: transmitting a BTS over the air without proper precautions is likely illegal. This video is solely for experimentation and educational purposes. No one was harmed, and all equipment used was my own.

WarDragon available here (when in stock):
https://cemaxecuter.com/?post_type=product

Don't miss out on staying connected:
Catch updates on Twitter: https://twitter.com/cemaxecuter

Supporting the channel:
If you appreciate the value this content brings, I invite you to consider extending your support through Patreon: https://www.patreon.com/cemaxecuter[+] Show More

DragonOS FocalX YateBTS w/ Ability to Call Real Phones + Yate QT5 fix (bladeRFxA9) part 1

In this video, I'll take you through a detailed process of building a ...

In this video, I'll take you through a detailed process of building a fork of Yate with Qt5 support and installing it on DragonOS FocalX. This tutorial is aimed at ...enthusiasts and professionals who are looking to deepen their understanding of GSM technology and YateBTS. At one point in the video I have a brain fart - REGEXP = Regular Expression

https://github.com/svedm/yate

We'll start by compiling and building Yate with Qt5 support, providing you with a comprehensive, step-by-step guide to ensure a smooth installation over the existing DragonOS FocalX setup. Once we have Yate running, we'll move on to configuring YateBTS to allow a GSM phone to connect.

I’ll briefly touch on the steps necessary for setting up YateBTS, which I have covered in previous videos, ensuring that all precautions are in place for transmitting GSM signals. My focus is on educational purposes, aiming to learn and share more about cellular technology without any intention of misuse.

One of the highlights of this video is demonstrating how to call real world numbers using YateBTS. I’ll introduce the site that provides this service, giving you a quick overview of how it works and why it’s essential for our setup.

I also mention my plans for an upcoming video where I’ll show the configuration of the account created in this tutorial and the setup of the outgoing section of Yate/YateBTS via the web GUI. In that video, I'll demonstrate calling a few guests using the handset over the BTS to illustrate the system in action.

Join me on this journey to explore the fascinating world of GSM technology with YateBTS, and stay tuned for more detailed configurations and live demonstrations in future videos.

WarDragon available here (when in stock):
https://cemaxecuter.com/?post_type=product

Don't miss out on staying connected:
Catch updates on Twitter: https://twitter.com/cemaxecuter

Supporting the channel:
If you appreciate the value this content brings, I invite you to consider extending your support through Patreon: https://www.patreon.com/cemaxecuter[+] Show More

WarDragon Decoding Drone Remote ID w/ Compiled Sniffle Firmware + WireShark (CatSniffer v3)

In this video we'll compile Sniffle firmware for the CatSniffer v3 ...

WarDragon DJI DroneID Remote Detection Over Halow-U Mesh w/ AntSDR e200 + Kismet (DJI Mini 2)

In this technical YouTube video, I show a process of remotely decoding ...

WarDragon SDRTrunk Test, Trunk-Recorder Setup, and CyberEther Quick Fix (Airspy R2, P25 Phase II)

Welcome to the WarDragon, your all-in-one solution for ...

WarDragon Remote Kismet w/ MetaGPSD to Kismet Server + CoT to TAK Testing (Internal WiFi)

In this video, I dive into the world of advanced wireless network ...

In this video, I dive into the world of advanced wireless network monitoring and geolocation tracking using a combination of powerful tools and projects. Actually I was just out and ...about doing this on the fly, so expect to see some mistakes in the video. Overall, it worked out pretty well and I figured I'd share the setup.

First, we explore the capabilities of Kismet Remote Capabilities, a feature-rich tool for capturing wireless traffic remotely. Check out the detailed documentation
https://www.kismetwireless.net/docs/readme/remotecap/remotecap/

Next, we combine Kismet with the Python-Kismet-MetaGPSD project, which enables real-time GPS data association with our remote captures. Learn more about this integration
https://github.com/hobobandy/python-kismet-metagpsd

To streamline the setup process, I've created a Python wrapper tool called Kismet MetaGPSD Quickstart. With just a single command, you can initiate both the remote Kismet capture and the MetaGPSD script. Find the tool
https://github.com/alphafox02/kismet_metagpsd_quickstart

Throughout the video I show how to deploy this setup on a remote WarDragon device connected to the internet via cellular. Using RustDesk for remote access, I demonstrate the installation and authorization of ZeroTier for quick network integration.

Once everything is up and running, the WarDragon can transmit data to a remote Kismet Server. Additionally, I show how to leverage the WigleToTak Python script to convert Kismet logs into Cursor on Target (CoT) format for integration with a TAK server.

For further insights into setting up a TAK server and configuring CoT on non-SSL ports, check out these additional resources:

- [Configuring CoT on Non-SSL Ports]https://www.youtube.com/watch?v=aRU4gTaeH8s (Jump to 14:00 for crucial configuration steps)
- [TAK Server Setup](https://www.youtube.com/watch?v=fa7U4aWLyw4)

WarDragon available here (when in stock):
https://cemaxecuter.com/?post_type=product

Don't miss out on staying connected:
Catch updates on Twitter: https://twitter.com/cemaxecuter

Supporting the channel:
If you appreciate the value this content brings, I invite you to consider extending your support through Patreon: https://www.patreon.com/cemaxecuter[+] Show More

WarDragon EMEye/TempestSDR Camera Eavesdropping Attack Research (B210, Airspy R2, Wzye Cam Pan v2)

In this video, I guide you through a practical demonstration of ...

Unveiling the unseen at 1090Mhz! With a b210 + EMEye, I’m looking at more than just aircraft. #wyze

Cart

WarDragon Remote Drone ID Detection Update w/ Node-Red Map Plotting (Sniffle, DragonTooth)