08-26-2022, 10:19 AM
In the same spirit as TEMPEST systems allowing to intercept information via radio waves, Jacek Lipkowski has developed scripts that you can download here, which allow to exfiltrate data from a computer isolated from Internet via radio waves.
Definition of airgap: An air-gapped computer or network is a computer or network that has no network interface, wired or wireless, connected to external networks.
How does it work?
Well, imagine that there is a computer that is not connected to the Internet, but still connected to an Ethernet LAN. An attacker could deploy a malware (by having physical access to the machine), and modify with the provided script the speed of connection to the wired network. For example, oscillate between 100 Mb/s and 10Mb/s.
This modifies the waves produced by the machine and diffused through the copper wires of the Ethernet cable. These waves are then captured via a radio receiver (RTL-SDR) and decoded.
The demo in YouTube if you want to learn more :
In his demo, his script modifies the speed of the network to communicate in Morse code (yes...). And with his SDR key and the tools that go well (Gqrx + fldigi), he reconstitutes this code.
If you want to test it, the source code is here :
Bless
Definition of airgap: An air-gapped computer or network is a computer or network that has no network interface, wired or wireless, connected to external networks.
How does it work?
Well, imagine that there is a computer that is not connected to the Internet, but still connected to an Ethernet LAN. An attacker could deploy a malware (by having physical access to the machine), and modify with the provided script the speed of connection to the wired network. For example, oscillate between 100 Mb/s and 10Mb/s.
This modifies the waves produced by the machine and diffused through the copper wires of the Ethernet cable. These waves are then captured via a radio receiver (RTL-SDR) and decoded.
The demo in YouTube if you want to learn more :
In his demo, his script modifies the speed of the network to communicate in Morse code (yes...). And with his SDR key and the tools that go well (Gqrx + fldigi), he reconstitutes this code.
If you want to test it, the source code is here :
[To see links please register here]
Bless