FR
Academic Project - R&T Degree

Software Defined Radio (SDR)

Signal Analysis, Replay & Jamming

Reverse engineering of a radio-controlled tank (27 MHz). From signal analysis to replay attacks, including experimental study of electromagnetic jamming.

View Project Site โ†—

๐Ÿ“ก Acquisition Chain

HackRF One

Implementation of an RF interception protocol (SDR) for wireless communication analysis.

  • ๐Ÿ“ก Hardware Capture: Utilizing HackRF One for raw sample acquisition. Its wide frequency range (1MHz - 6GHz) allows precise targeting of remote control signals in the CB band (27 MHz).
  • ๐Ÿ’ป Digital Processing: Signal orchestration via GNU Radio. Design of a flowgraph to filter noise, visualize the spectrum (FFT), and demodulate data in real-time.
HackRF One Kit and Antennas

Technical Arsenal

Tools and protocols exploited.

HARDWARE
๐Ÿ“ก
HackRF One SDR Transceiver
๐Ÿ“‰
Oscilloscope Time Domain Analysis
SOFTWARE
GNU Radio Signal Processing
Python Automation Scripts
SIGNAL
27 MHz OOK ASK

Replay Attack

GNU Radio

Capture of a valid sequence ("Move Forward") and identical re-transmission to take control of the tank without the original remote.

PHASE 1: CAPTURE
๐ŸŽฎ
Remote
โž”
๐Ÿ“ฅ
Osmocom Source HackRF (Rx)
โž”
๐Ÿ’พ
File Sink .bin File
PHASE 2: ATTACK
๐Ÿ“‚
File Source Read File
โž”
๐Ÿ“ค
Osmocom Sink HackRF (Tx)
โž”
๐Ÿšœ
RC Tank Execution

โšก In-Depth Jamming Study

RF Denial of Service

The core of the project was to experimentally test Denial of Service attacks on the tank receiver. We compared two technical approaches and studied biological influence on transmission.

1. Attack Methods

๐ŸŽฏ
Smart Jamming (Frequency)

Emission of targeted white noise exactly on 27 MHz. Highly effective with low power (-10 dBm is sufficient).

๐ŸŒŠ
Mass Jamming

Saturation of a wide frequency band. Less discreet, power-hungry, but blocks the entire surrounding spectrum.

2. Operator Impact (Experiment)

Comparison of jamming efficiency based on HackRF antenna holding.

๐ŸงŠ
Antenna on Stand (Fixed) Reference result. Stable omnidirectional radiation. Effective jamming at 10m.
โœ‹
Antenna in Hand Significant perturbation. The human body modifies impedance and absorbs part of the signal. Range reduced by ~15%.

Want to reproduce these experiments?
GNU Radio source files (.grc) and Python scripts are available.

Access Flowgraphs
๐Ÿค–
Nolann AI Online