Radio Hacking: Cars, Hardware, and more! – Samy Kamkar – AppSec California 2016

Radio Hacking: Cars, Hardware, and more! – Samy Kamkar – AppSec California 2016

Watch Samy most recent talk on Browser Manipulation https://www.youtube.com/watch?v=K1T_miPTvPA

In this talk I’ll introduce radio hacking, and take it a few levels into hacking real world devices like wirelessly controlled gates, garages, and cars. Many vehicles are now controlled from mobile devices over GSM and the web, while even more can be unlocked and ignitions started from wireless keyfobs over RF. All of these are subject to attack with low-cost tools (such as RTL-SDR, GNU Radio, HackRF, Arduino, and even a Mattel toy).

We’ll investigate how these features work, and of course, how they can be exploited. I’ll be going from start to finish on new tools and vulnerabilities in this area, such as key-space reduction attacks on fixed-codes, advanced “code grabbers” using RF attacks on encrypted and rolling codes, exploiting mobile devices and poor SSL implementations, and how to protect yourself against such issues.

By the end of this talk you’ll understand not only how vehicles and the wirelessly-controlled physical access protecting them can be exploited and secured, but also learn about various tools for hardware, car and RF research, as well as how to use and build your own inexpensive devices for such investigation!

Samy Kamkar
Samy Kamkar is an independent security researcher, best known for creating The MySpace worm, one of the fastest spreading viruses of all time. His open source software and research highlights the insecurities and privacy implications in every day technologies, from the Evercookie which produces virtually immutable respawning cookies, SkyJack, the drone that wirelessly hijacks other drones, and KeySweeper, a wireless keyboard sniffer camouflaged as a USB wall charger. He continues to release new tools and hardware, for examples most recently the ProxyGambit, OpenSesame and ComboBreaker tools.

Managed by the official OWASP Media Project https://www.owasp.org/index.php/OWASP_Media_Project

49 Comments

  1. K. M. Rayhan on September 14, 2021 at 11:09 pm

    it was a nice presentation. I am little curious about the questions end of the presentation. bt thanks for the knowledge .

  2. Thomas Myles on September 14, 2021 at 11:11 pm

    Bad Ieutenant POCNO Lizardz

  3. ra on September 14, 2021 at 11:13 pm

    Can track and trace my stolen phone?

  4. Steve Ballard on September 14, 2021 at 11:13 pm

    Check out AM frequencies 666 upwards ….you can hear these demonic creatures through the white noise

  5. Janie Lee, M.Ed. on September 14, 2021 at 11:13 pm

    What do you know about things that cause this buzzing in your ears? Im on this for some reason. Can you help me? What if someone is misusing devices and hurting people.

  6. EldrichtPalmer on September 14, 2021 at 11:14 pm

    hazadhackha_ is that guy, how he gave me an original certificate even with my lapses in school is beyond me, but I have a solid job with that certificate, safe to say it worked, I shouldn’t have said that, oops but I’m Anonnymous who would know? Hahaha .

  7. s snerd on September 14, 2021 at 11:15 pm

    oh man….this is scary as hell for a TI….

  8. Ella on September 14, 2021 at 11:16 pm

    Contact horuxx .ru if you ever need a cybersecurity services, they do amazing work.

  9. A Wolff on September 14, 2021 at 11:16 pm

    in the old days my dad had a garage door opener that had a roller switch where you could just stand in front of whatever door hold down the button then roll the switch back and forth till it opened it took seconds

  10. Kristle on September 14, 2021 at 11:19 pm

    Now this is some useful information

  11. skippy didgeridroo on September 14, 2021 at 11:19 pm

    he should of called the method "jam roll"

  12. David Bourland on September 14, 2021 at 11:21 pm

    LOL, You can go to the FCC website and use the info for free, but it is hard to use., yet Mr. SPY with his Countries backing can use it with his tools, rich!

  13. Mowie Wowie on September 14, 2021 at 11:23 pm

    im glad your on our side

  14. Killer Curl on September 14, 2021 at 11:23 pm

    whoa dude do you see that door behind him marked pirate, you think a pirate live in there???????????

  15. Scott Schmehr on September 14, 2021 at 11:24 pm

    So what you are saying is regardless of having a key fuab a hacker could unlock your doors and or honk your horn or that.

  16. Adam Lopez on September 14, 2021 at 11:24 pm

    Samy is gonna wreck the car

  17. Amir Keyvan Tanara on September 14, 2021 at 11:25 pm

    @19:38 there is no 2ms delay! There is just a 2ms span dedicated to each bit (Look at the graph @19:00). The bit can fill either 3 quarters of the 2ms span to represent 1 or just one quarter of it for 0. So there is no 2ms delay that he talks about (@20:45) and brought in his calculations. This huge misunderstanding suggests that he is not the master mind of the whole story, but probably just a face.

  18. Thomas on September 14, 2021 at 11:26 pm

    Fascinating. Great job on the presentation. Ten stars

  19. Luke Baehr on September 14, 2021 at 11:27 pm

    Sniffing something that’s for sure

  20. Alex Brown on September 14, 2021 at 11:27 pm

    As soon as you started explaining that you were cutting the pauses between the signals I said to myself "we can use superpermutations here"

  21. Big Guy on September 14, 2021 at 11:32 pm

    some one just hacked my key fob yesterday and remote started my vehicle. 2 hours later they also unlocked the doors while i was inside a restaurant. How do I protect against this?

  22. Allison Douglas on September 14, 2021 at 11:32 pm

    I was furious about knowing what was going on on my partners cell-phone and ended up getting scammed twice,so i found a Russian hacker on a YouTube post and i heard he’s pretty good and yes he made me know every detailed information on the phone. So guys so many scammers out there,i want to take my time to share you the Instagram page of a real hacker i know @WINGLOCKHACK. Save your time and money.

  23. Nitin Maurya on September 14, 2021 at 11:35 pm

    After 9 years of my graduation, I came to know why this subject was in Computer Science and Engineering in India.

  24. Tim Thomas on September 14, 2021 at 11:35 pm

    I wish that you repeated the questions. So I could understand what you were responding to.

  25. Shelia Shuck on September 14, 2021 at 11:37 pm

    I will never rely on gps again. Holy.

  26. Stella Davey on September 14, 2021 at 11:37 pm

    As we are living in an age where we tend to be very dependent on phones, computers and other digital devices. The advantage of this lies in the fact that we can easily find out if our husband or wife is having an affair by just gaining access into their phones. There’s this amazing hacker called CYBERMICHEAL which help such concerned partners to monitor the activities of their partners on their phone without letting them know. You will be able to gain access to monitor the phone in real time. You will be able to monitor phone calls, text messages, call log, call recording, GPS location, photos and videos from target’s phone. This will enable you find out the truth about your marriage/relationship, and also know if anything is being hidden from you. This service works perfectly well for all phone types – Windows, iPhone devices and Android phones.
    You can contact this amazing hacker via Gmail: Cybermicheal1995@gmail.com or Whatsapp on +18722250930
    ,,

  27. j rey on September 14, 2021 at 11:38 pm

    Okay you show thieves how to steal/break in – now how about showing responsible ppl how to thwart this BS? Moms must be proud, geez

  28. TxExMxiii on September 14, 2021 at 11:39 pm

    Locking scooters is what makes dangerous interference to then throw u off . Had fun for while but sinister as fuk

  29. nico Blay on September 14, 2021 at 11:43 pm

    Fbi planes have now pivoted to drones and there’s prob 60 drones from the once 2 planes. I can see the hertz from these drones via naked eye

  30. Floyd French on September 14, 2021 at 11:44 pm

    This will sure help the bad guys. They must love you 👎

  31. Luke Baehr on September 14, 2021 at 11:44 pm

    He says "All our cars are becoming connected, This is great" IT IS NOT FK’ing GREAT AT ALL!!!! its a bunch of BS!

  32. Jeff Garcia on September 14, 2021 at 11:45 pm

    Can u hire my chain saw, go ruuuwwwtttt

  33. olatunji olajide on September 14, 2021 at 11:47 pm

    📣Yeah I get my account back love u
    You guys and you the best place work big.d.hack on InstagramYeah I get my account back love
    You guys and you the best place work big.d.hack on Instagram

  34. Zágoni Mátyás on September 14, 2021 at 11:48 pm

    Good thing my phone has Probe attack protection built-in.

  35. Marie Burton on September 14, 2021 at 11:48 pm

    Code monkey shout out!! Cool

  36. uncle_creepy27 on September 14, 2021 at 11:49 pm

    gps is not sat based its ant based

  37. Marian Bieda on September 14, 2021 at 11:50 pm

    Really good one, thanks.

  38. thebestever ever on September 14, 2021 at 11:51 pm

    this video was so informative thank you

  39. Less Worth on September 14, 2021 at 11:52 pm

    These people often have large backpacks.

  40. Rahul Salunkhe on September 14, 2021 at 11:56 pm

    I did not understand the brute force part. Could someone explain that?

  41. Mowie Wowie on September 14, 2021 at 11:56 pm

    im glad your on our side

  42. Jamie Cook on September 14, 2021 at 11:56 pm

    Question Samy! If I am searching for a vehicle that was involved with a freeway "roadrage" murder, and I have the make, model, location and time, could you help? It’s a long shot but the vehicle would have been equipped with onstar.

  43. John Townsley on September 14, 2021 at 11:57 pm

    Nicholas cage is nicholas cappola

  44. Keefer Rick on September 14, 2021 at 11:59 pm

    Who else googled the IM-me? Lol

  45. Naresh Kaampaati on September 14, 2021 at 11:59 pm

    Sir how my thinking hacking by radio frequency, becoze when ever iam thinking inside me my formor church pepole (hackers) sending same recomondations in youtube,in 2016 i sleep in church premisis i experience some eloctric shock in my right side belli area,then iam manuepulated by them i canot live myself no privasi to i feel so bad plz replyto my comment.

  46. TungstenCarbideProjectile on September 15, 2021 at 12:01 am

    Boring and does not hold attention, annoying voice and i wanted to get into the topic and the info but this presentation is just boring useless garbage… 20$ something device… gone in 60 seconds bla blah blah like what are you trying to talk about here… get your shit together guy…

  47. Computer Wizard on September 15, 2021 at 12:02 am

    45:50 “does Chrysler also have…” best part of video 🙂 dyed laughing

  48. Jollax on September 15, 2021 at 12:03 am

    I wonder, if you attempted to brute force a garage door in a residential area then what’s preventing you from opening other garage doors in the area during the process?

  49. Barbie Platt on September 15, 2021 at 12:04 am

    What if someone sent a random video to my phone. And when that video was finished it was gone. With no trace. It looked like a YouTube video but didn’t show up in history. How do I find out who sent it?

Leave a Comment