-
Notifications
You must be signed in to change notification settings - Fork 6
User Manual
This device uses the RFM69HW Hope RF modules, which have a maximum of +20dBm power output (about 6x more power than CC1101 from Flipper Zero), and they come with a matching network for either 433/315 MHz, 868 MHz or 915 MHz bands, so you need to make sure to buy the correct one for your country's frequency band (US is 315 MHz, Europe 433 MHz, and some places in Asia use 868 or 915 MHz). The device can support two RFM69HW modules, to enable full-duplex hacking (for RollJam attacks for example, which is not yet implemented). The two modules are refered in the code as "Receiver" and "Transmitter", which are the modules in the front and back of the device, respectively. This is because the module on the front does all the receiving but also replaying, but the module on the back only does all of the signal jamming and no receiving.
Activates the jamming wave, with ability to change parameters (depending on the jamming mode).
Configure the frequency, power, modulation, deviation, and MODE of the signal jammer. There are 3 different modes: Constant wave, which sends a simple continuous wave at the specified frequency, power, etc; Square wave, which is the same but sends a square wave at the desired frequency (2500 Hz by default); Sweep Mode, which sweeps a desired frequency range, as fast as possible, backwards and forwards contiguously, covering a wider band of frequencies.
Record raw signals to RAM (maximum of 10000 pulses), and replay them.
Configure frequency, threshold, bandwidth, gain, modulation and deviation. This function has the RSSI value updating on screen in real-time, to easily see the performance of the receiver while changing frequency, bandwidth, modulation, etc. While in Replay/Store, the On-Board LED of the ESP32 is showing the real-time demodulator output of the radio: ON if the 255-RSSI > threshold, OFF otherwise.
This mode draws a line continuously (like an oscilloscope) representing the demodulator output of the receiver. It is useful to see how long a signal is, although the drawing at the moment is quite slow, so sometimes you might just see a pixel per signal.
This mode sweeps the frequency of the receiver very fast across a range, to determine which frequency has the highest energy (RSSI), effectively estimating the frequency of the wave being received.
This is custom written code, for custom functionality.
Sends the perfect tesla signal to open the charging door, with max power (+20dBm). This mode sends the code repeatedly (each time the LED flashes one code is sent).
Reads and tries to estimate the voltage on pin35. You can connect a 3.7V battery to this pin, via a half voltage divider (the ESP32 only reads 0-3.3V), and enter this mode to get a reading.