ASafety - AntiSecurity Un projet qui vous tiendra @coeur...

[x[@♥]]

Reversing an RF Clicker

Pout tous les bidouilleurs et les amateurs de "reverse-engineering" de matériel corruptible physique, je pense que cet article risque de vous plaire.

Sur le blog de "Travis Goodspeed's Blog", celui-ci a réaliser une étude complète en vue d'espionner, forger, broadcaster et falsifier les émissions de vote réalisés par un petit appareil du style:



Ce type d'engin est utilisé notamment aux US pour faire des votes de tous types.

In this article, I describe in detail the methods by which I have reverse engineered the TurningPoint ResponseCard RF, casually known among students as a "Clicker". This 2.4GHz radio transceiver is used in undergraduate university classrooms for automated roll-call and in-class quizzing or voting. By dumping and analyzing its firmware, one can determine the radio protocol necessary to intercept and forge packets, as well as to build a custom base station. The radio hardware that I have used is a reprogrammed Next HOPE Badge running the GoodFET firmware.

A follow-up article will likely describe the writing of replacement firmware, but that can be easily enough discovered by an enterprising reader. My purpose instead is to provide the information necessary to build compatible products, as well as to teach the technique of reverse engineering these products to find such information when none is available.

Je vous laisse le savourer dans son intégralité !

Source here!