You are among the very few people who explain things properly. Great video!
@samykamkar
8 жыл бұрын
+Mahesh Padmanabh Thanks!
@kol2456
7 жыл бұрын
He doesn't just explain things properly. He explains every "bit" (hah) of information involved in whatever he's talking about. Also, love that it looks like a charger adapter. So great
@samykamkar
9 жыл бұрын
tblb1, I couldn't respond to your comment directly due to permissions on your account, however you're right, sorry, I forgot to mention in the video! The way to prevent this attack is to not use wireless keyboards. Use wired keyboards for communications you wish to keep (more) secure.
@rockhopper123452
9 жыл бұрын
Hi sammy, Nice video. I see you use alot of programming in some of your tutorials and I was woundering where you learn them. At the time, I only know c# but any other language is a bit difficult.
@samykamkar
9 жыл бұрын
rockhopper123452 Thanks! Simply start with some basic tutorials. I learned everything online, there are so many amazing resources -- and I've learned a lot with trial and error (more error than trial). Be persistent, try different things, and follow areas you think are interesting!
@felixautomaton5314
7 жыл бұрын
I don't like wireless mice and keyboards, and I especially hate ones with proprietary protocols. Somewhere inside the company, some manager will probably have made the call to skip real security to cut their development and QA time.
@mattgsm
7 жыл бұрын
Samy Kamkar what is the name of the intro? song
@RuiSantosdotme
9 жыл бұрын
Awesome project as usual, thanks for taking the time to document your projects. I'm looking forward to the next one!
@samykamkar
9 жыл бұрын
Thanks Rui Santos, me too!
@samykamkar
9 жыл бұрын
Hi Beshr Al Nahas, I couldn't reply directly to your comment due to your account settings, but regarding programming the nRF chip instead of needing an Arduino, you would *not* be able to do with an nRF24L01+ as it's only an RF chip and lacks an MCU and memory. You could program the nRF24LE1 (the SoC with MCU+RF chip), but unfortunately the programmer costs significantly more than an Arduino, and many of these videos I'll opt for more readily available hardware to allow more users to follow along. Thanks for commenting!
@TruthVybesTv
3 жыл бұрын
i need to know more about this device.. can it be fitted in an old nokia phone?
@iczyg
9 жыл бұрын
That was really interesting how it all fits together. I don't have the time to try this all out, but it's really great that you provide all the source code along with pictures! Solid video & explanation as well.
@samykamkar
9 жыл бұрын
Thanks Simon Ho!
@samykamkar
9 жыл бұрын
Thanks Jay Bee!
@1234rghji
9 жыл бұрын
I'm very far from being a tech brain, but this was just one of the best video I saw on youtube. And you are the best for learning this amount of knowledge by yourself (from what I understood from comments). Good stuff!
@samykamkar
9 жыл бұрын
1234rghji Thanks!
@DoomRater
9 жыл бұрын
Bloody brilliant work. So essentially with all of this hard work we have ways to rebuild the plug funcationality and hide it anywhere we want to sniff. Or... potentially send signals to computers via robots, or any number of tasks that we might want to use this information for. Of course building a keystroke logger with enough redundancies to make my head spin seems like the most ingenious purpose I can come up with.
@redsafi1984
9 жыл бұрын
Samy you've done an awesome job presenting. I'm impressed, usually us nerds have a hard time articulating ideas.
@samykamkar
9 жыл бұрын
Redwan Safi Thanks! Fortunately I re-recorded it 283 times until it sounded almost articulate!
@Sidner77
9 жыл бұрын
Just have to say I had never heard of you before, but I had heard of your work (the MySpace worm and the drone hacking, to be more precise). I really appreciate all the work you have been doing. It had been a while since I've actually heard of the "Samy Worm", so I got to reading the posts you made in 05 about it and I still find reading the code extremely amusing! Concerning the actual videos you have began to post, just gotta say they are really good. The way you present things and the way you speak make it extremely clear to understand what you're talking about. Please, do continue with the excellent work that you've been doing thus far. I think it can only get better and I eagerly await the next video. :)
@samykamkar
9 жыл бұрын
Thanks so much Pedro Cunha!
@amac8487
9 жыл бұрын
I really wish I was into "hacking" and had the desire to go all out and do the things you do. I am blown away by what you have accomplished on your own... and your concise ability to teach others. I came across you via Tim Ferriss podcast, and must say I am highly impressed with your work. Thanks for the entertainment... as I don't necessarily plan to build these contraptions... but DAMN is it fun to listen/be introduced to.
@samykamkar
9 жыл бұрын
***** Thanks Aaron!
@markgreen7858
Жыл бұрын
@@samykamkar can you buy one of these already built in
@nicknack125
9 жыл бұрын
Just noticed you're the same guy who did the ding dong doorbell guide - your projects are awesome! I'm looking to build the doorbell one in the future, then expand upon it by attempting to collect or find a database of doorbell codes to cause mayhem for all. Kind of like the TV-B-Gone of ding-dong-ditching. Keep up these awesome projects - looking forward to the next!
@samykamkar
9 жыл бұрын
Thanks nicknack125!
@mikal_1
9 жыл бұрын
Duuuuude, that XOR operation on the 0xCD is such a genius move! I hope people can appreciate how smart that is! Love it :D you're awesome!
@samykamkar
9 жыл бұрын
Thanks Mladamas!
@samykamkar
9 жыл бұрын
Brian Gray I couldn't respond to your comment directly due to your account settings, but I did use maniacbug's original RF24 library just due to the fact that it's the most widely available. I had to use custom SPI commands to accomplish a number of things that I wanted however as it was faster than wading through the 100 forks to see which fit my needs.
@brianwgray
9 жыл бұрын
Samy Kamkar Thank you, I've been hoping that perhaps, I had not been able to get a successful lock due to grabbing the wrong library, missing a modification, etc. I've seen that some of the libraries modify the clock divisor etc. such as described in (maniacalbits.blogspot.com/2013/04/rf24-performance-improvement-wspi.html) so I thought perhaps it would be something simple that I'm doing wrong. I've added caps, additional voltage regulation boards, external highly regulated power supplies etc. so I was hoping for a revelation to get me back on track.
@samykamkar
9 жыл бұрын
Brian Gray Does it show any potentials when scanning? What kind of keyboard? Have you tried holding a key down during the scan? For the regulated supply, have you tried a 3.3v regulated supply to the nRF chip with shared ground between Arduino and nRF? I assume you tried a 10uF+ cap directly on the nRF chip between + and GND? Have you made sure the wires between the Arduino and nRF aren't too long? Are you using a legitimate nRF chip (I've seen clones, more obvious when they're chip-on-board [epoxy glob instead of an SMD chip], that aren't capable of sniffing)?
@brianwgray
9 жыл бұрын
Samy Kamkar The keyboards were purchased for this project and are the Microsoft 800 Model: 1455 described in your documentation. Matching FCCid etc. I have tested 2 separate keyboards holding shift, various other keys, and simple repetitive typing. On at least one occasion, I've seen some possibly related potential traffic while holding a key. This appears to have been a false positive every time? I've attempted several variations of supplying power. Raw from my FTDI cable, and various supply configurations from my KORAD KD3005D power supply including powering the nrf24L01+ with 3.3V + I don't recall if I've explicitly ensured a shared ground but I will configure a test of this within the next hour or so. I have added a 10uF cap to one of my nrf24L01+'s and also attempted using an addicore socket adapter board with another (www.amazon.com/gp/product/B00QOJACOA/ref=oh_aui_detailpage_o01_s00?ie=UTF8&psc=1). In addition, I have attempted testing with a Neewer® BLACK NRF24L01 + PA + LNA Wireless module (www.amazon.com/gp/product/B00H6ZO5Y4/ref=oh_aui_detailpage_o04_s00?ie=UTF8&psc=1) with similar lackluster results. None of the chips that I've been using appear to be clones that I'm aware of. I've iteratively shortened the attaching wires to where no wire is greater than 1.25" I have used both stranded and solid core 20 gauge wire over the past month. In attempt to narrow down possible issues, I've introduced additional hardware... and used an Arduino mega 2560 with various iterations of nrf chips, flash chip included, removed, etc. to see if I was simply having issues with solder joints or some other possible issue. [Intending to use the mega to interact with the mini pro via the backtrace functionality.] If I modify the code to replace if (p[4] == 0xCD) with (1) as also mentioned in these comments, I primarily receive a stream of FFFF... , with other occasional 'noise'. I similarly see streams of FFFF... when the backtrace option is enabled. Is this normal or possibly a sign of something I may be doing incorrectly, perhaps something you've seen? I don't see any connection faults, shorts, etc. I am unable to guarantee that I'm doing any of this properly. I am greatly appreciative of your quick replies and willingness to offer suggestions.
@samykamkar
9 жыл бұрын
Brian Gray Have you double checked the wiring? One thing to note is many RF24 projects use pin 10 for CSN, but I use pin 8 (since the flash chip code is fixed to pin 10 and can't change) I'm not sure about the noise you're seeing, when I get back to the hardware in a day or two I'll do some testing. My immediate guess is something isn't wired properly -- and definitely make sure anything that is connected to something else are all sharing the same ground.
@brianwgray
9 жыл бұрын
Samy Kamkar, I've gone through the wiring dozens of times. I have two others with their own hardware (in the same position as me) that have looked over my wiring. I 'think' I have the wiring done properly including the CSN switched from pin 10. The grounding was done appropriately in previous testing but I made an additional effort to make explicit ground points with the same result as previously mentioned. My next troubleshooting step will most likely be to load example nrf ping code to confirm that the hardware is functioning or not. All frustrations aside, this has been an interesting project to work with, thank you for sharing it.
@Torman2242
9 жыл бұрын
I wish people were more aware of how vulnerable they are when it comes to IT stuff. Your videos helps telling them. Thank you for sharing this project this us. I'm looking forward the next one!
@samykamkar
9 жыл бұрын
Torman2242 Thanks Torman! Looking forward to sharing more with you!
@Mk43305
8 жыл бұрын
I think some of the Microsoft engineers just jumped of a bridge :D
@ugandanwarrior5657
7 жыл бұрын
By the way they didn't even try to encrypt data. Using XOR is pathetic
@gcm4312
3 жыл бұрын
@oH well,lord! base64 is better
@kikamonju
9 жыл бұрын
you have such a scientific manner of speaking that I forget you're talking about remote spying.
@samykamkar
9 жыл бұрын
Max Richie Scientific remote spying. kzitem.info/news/bejne/pZiqk4Ocm4OFo6w
@702stormrider
9 жыл бұрын
You are the tesla of this era. I'm seriously amazed, not by this product, but you as a person! Subscribed!!
@MuhammadAli-1080p
5 жыл бұрын
That was literally the case, massive thank you for explaining, we found similar case like this about 8 months ago, massive thank you to explain that
@SirRaine
9 жыл бұрын
You sir are amazing, I saw your combo-breaker video and you became my hero. I doubt it's possible but I would love to learn from you. Watching your videos make me geek out haha
@santicomp
8 жыл бұрын
I'm subscribed to +EEVBLOG,+THE SIGNAL PATH BLOG, +MIKES ELECTRIC'S,+KEVIN DARRAH and others. I must say you're channel is incredible, i love the content and the way you explain it. keep it up very cool
@hansforster1867
9 жыл бұрын
Awesome Video! Keep on your good work! I hope, we'll see you back at defcon again some time soon!
@samykamkar
9 жыл бұрын
Thanks Hans Förster! More videos on the way for you!
@ShteebVS
9 жыл бұрын
I made something similar with an Arduino uno that only sniffed packets over wifi. Very creative man. Thank you for sharing!!
@cmatbmed
9 жыл бұрын
Great video. Great description. Always amazes me to see what companies call encryption. Sickening. Really want to give this a try. Thanks for your research.
@samykamkar
9 жыл бұрын
Thanks Ed Armstrong!
@StephenPavis
8 жыл бұрын
Nevermind I found it but amazing work on this projects your work never ceases to amaze me!
@samykamkar
8 жыл бұрын
+Stephen Pavis Thanks!
@trudyandgeorge
9 жыл бұрын
Please, never stop playing.
@samykamkar
9 жыл бұрын
George Edwards you got it.
@deangreenhough3479
8 жыл бұрын
Nice work, nice guy, very talented. Amazed I've missed you. Thank you for clearly explaining an unexplainable project.
@spacet1me
9 жыл бұрын
SAMY YOU ARE A FUCKIN GENIUS AND THE FEW CREATING NEW INNOVATIVE METHODS IN THIS TECH DRIVEN WORLD. NEVER FUCKIN STOP SPREADING INFORMATION AND YOUR RESEARCH PLEASE. YOU HAVE MANY FANS. AWESOME VIDEO!!!
@anoncker
9 жыл бұрын
Simply genius! I just discovered your channel and it was probably the best thing I did in 2015 xD Keep the videos coming =D
@Killberty
9 жыл бұрын
Wow dude, you did it again. Awesome passionate video and very creative. Please never stop making videos :)
@samykamkar
9 жыл бұрын
Killberty, thanks! It was a blast. I'll keep working to provide you some fun information and content!
@Killberty
9 жыл бұрын
Samy Kamkar How a bout making a hardware keylogger (plugged begween an usb Keyboard and the pc) with a teensy 3.1? A cheap variant with flash storage and an expensive one with wireless? I know there are many around but none is documented and explained and high qualtiy (as i am used to by your videos) and this should not be too hard for you.
@samykamkar
9 жыл бұрын
Killberty Cool idea -- I have an idea for something similar to a hardware keylogger...I have a few projects in the works for future vids and then will get back to a keylogging related one for you!
@Killberty
9 жыл бұрын
Samy Kamkar I would love to see this. I love you (nohomo). Can't wait for your next video. :)
@josephcalabria2976
9 жыл бұрын
You are one of the greatest coders I have ever seen. You are a genius
@samykamkar
9 жыл бұрын
Thanks Joseph Calabria, hope you enjoy the vids!
@josephcalabria2976
9 жыл бұрын
Samy Kamkar I'm always waiting for another. A lot of help for a starting hacker/coder!
@SandeepKamble1337
9 жыл бұрын
No words. Your every releases so unique and I again think why I'm Security in Security.
@yeyintminthuhtut
9 жыл бұрын
Really awesome Samy ! I was your fan since your SkyJack video ! Waiting more your masterpiece videos :)
@samykamkar
9 жыл бұрын
Thanks *****! More videos are coming up!
@SouthernOregonCoast
9 жыл бұрын
In this example he demonstrates his curiosity, creativity and drive to OWN his future. Thanks for sharing your process, it was very educational. Samy, what got you going on this track? A special teacher, role model . . . what? As you say "Simply start with some basic tutorials. I learned everything online, there are so many amazing resources -- and I've learned a lot with trial and error (more error than trial). Be persistent, try different things, and follow areas you think are interesting!" Kudos to you!
@samykamkar
9 жыл бұрын
Thanks Jim Chamberlain! It probably started with someone performing a DoS attack on me when I was young...thought my brand new computer was fried! Scary and exciting at the same time...
@GeorgeBurnett
9 жыл бұрын
#samyismyhero
@SouthernOregonCoast
9 жыл бұрын
Samy Kamkar So it is good to hear that a DoS attack has a silver lining. Keep up the good work and inspiring others to learn valuable skills.
@lawrancedevlin7171
9 жыл бұрын
Samy Kamkar But most of all, samy is my hero!
@alanmoreno6180
9 жыл бұрын
I felt like I understood most of this material. Really interesting stuff right here
@samykamkar
9 жыл бұрын
Thanks Alan Moreno!
@IAMT4505
7 жыл бұрын
Great video. I just want to say Samy that i am big fun of you from the day i saw you in a DEFCON event and i wanna say that you are great researcher and i admire your work.. well done!
@samykamkar
7 жыл бұрын
Thanks Tasos!
@munis002
9 жыл бұрын
its great to see a professional from the comunity takeing time and making these vedios great vid
@samykamkar
9 жыл бұрын
Thanks *****!
@ulricrainard
9 жыл бұрын
Samy, assuming all of your projects are done for the common good; You are very bright and a great explainer. I enjoyed this project, because you are a clever lever living in the new world of robot~o~logy and your description of the invalid way we are compromised by all of the mini personal ways we no longer control brings me to understand the destination of all of the gizmos that surround the engineering productology, you so well understand.This comment is by a totally out of his league viewer. The future belongs to the brains behind the change. Good riding with your insights, sir. Bravo to You_ I think. Seriously, though_ I enjoyed the direction you are going. not there yet.
@samykamkar
9 жыл бұрын
Thank you ulric rainard!
@samiant5199
8 жыл бұрын
Wow your tutorials are like pottery... I love them. This puts my PS2 data logger to shame :') So good keep it up.
@James382aa
9 жыл бұрын
Such an awesome video keep it up man
@samykamkar
9 жыл бұрын
Thanks Christian kaltoum!
@kattaliraees
9 жыл бұрын
27 mins went like 5 mins. Awesome work dude and awesome video too. You got the skills and the skill to video it perfectly :). I am so pissed of to myself, why the hell I didn't heard about you before. Anways subscried, followed (twitter) and checked out your website and checking your old projects one by one :P any where else?
@samykamkar
9 жыл бұрын
Thanks Raees Mohammed! The Tubes of You, Twitter and my site are the only places I release stuff -- working on some new projects for you to check out!
@KindAlcoholic
9 жыл бұрын
Great job man. I learned a lot in 28 minutes. I can't wait to make one of these.
@samykamkar
9 жыл бұрын
KindAlcoholic Thanks, glad you enjoyed it!
@je6566
7 жыл бұрын
damn you're better than marcus from watchdogs 2
@samykamkar
4 жыл бұрын
I learned everything I know from him.
@adizivojevic8635
3 жыл бұрын
@@samykamkar 😂😂😂
@LaraLoverLL
9 жыл бұрын
if they did it in parallel, this would be impossible! it could be craccked but would take enourmous amounts of time......... ur example is the reason serial is weak to hacckss. good job, really smart bro!
@InventionTherapy
7 жыл бұрын
What a cool use for an Arduino!
@krist0sh
9 жыл бұрын
WIsh I'd know partly as much about this as you! Great concept, and great explanation! Looks like an interesting project for sure!
@samykamkar
9 жыл бұрын
Thanks TCN0101!
@TheRealMisterJ
8 жыл бұрын
I know this is kinda an older video but still interesting.. Just found your channel through Simone's channel and your both so awesome! Keep up the cool vids dude!
@samykamkar
7 жыл бұрын
Thanks!
@blairc5428
7 жыл бұрын
Really great video Samy. Your problem solving skills are quite impressive!
@samykamkar
7 жыл бұрын
Thanks Blair!
@grimthereeper
9 жыл бұрын
I love people and videos like this.
@samykamkar
9 жыл бұрын
Thanks grimthereeper!
@rashidferoz6909
9 жыл бұрын
Now that's called thinking out of the box! A brilliant and true hacker mind.
@MultiBiggie007
6 жыл бұрын
subscribed!! very interesting, i like the way you explain the multiple options and why you do certain things.
@oilarbitrage7526
8 жыл бұрын
Excellent work and excellent job. Thanks for the straightforward and very detailed explanation.
@MyBigThing2010
7 жыл бұрын
I'm so happy to find someone who speaks proper English AND is willing to take the time to explain stuff in depth for dumb ass newbs like me! SUBBED IMMEDIATELY, halfway through the video. even though I don't understand this in full...I'm hoping to be able to speak passable geekanese by this time next year. ...I'd love to be able to binge watch and understand everything but sadly I think I'd go cross eyed and suffer a cranial explosion somewhere around video #7ish haha. I'm learning C & python now and wanna get into Linux and learning java hopefully around New year's...thanks for taking tube time to put info out there like this...it's highly appreciated!
@TheAliTrixx
9 жыл бұрын
This is awesome. Thank you for the video, it taught me so much stuff. Keep the awesome work going, it's nice for once to see hardware hacking rather than software hacking.
@Ja_xon_
9 жыл бұрын
Thank you Samy, I'm very happy about this video specially as i read about it in the hacker news, very interesting :)
@samykamkar
9 жыл бұрын
Thanks Mohamed Mostafa :)
@nithikasandinu9034
3 жыл бұрын
please continue this channel
@NewtonGaire
9 жыл бұрын
dude saw u before in Motherboard's documentary :D Great fan of yours since then... :D
@samykamkar
9 жыл бұрын
Awesome, thanks Newton Gaire!
@NewtonGaire
9 жыл бұрын
Samy Kamkar your Defcon "How i met your girlfriend " was also awesome.. i am starting in security sector.. what shall i start from . really love to know from an experienced person :D
@samykamkar
9 жыл бұрын
Newton Gaire Awesome, thanks! I'd say just work on a project that's out of your reach -- it won't be for long, just set a goal for yourself that may seem tough and just work towards it in any way possible. Research, test, and be persistent! Even if you never complete it, the information you will learn on the way will be invaluable. Good luck!
@myrmepropagandist
9 жыл бұрын
You explain everything very clearly. Please come work as a math professor.
@samykamkar
9 жыл бұрын
Thanks Susan Donovan!
@NoneYobusiness2
9 жыл бұрын
Think of these things being sold over ebay as a regular wall USB charger XD Welp, no more ebay shopping for me
@adriantarver2229
7 жыл бұрын
Samy is my hero. :-D Keep up the fun exploitation through drive by plugins via usb devices.
@googletitsfost
9 жыл бұрын
Another great job, I always enjoy watching your videos :)
@2006hitech
9 жыл бұрын
I thought you don't even need the arduino if you programmed the nRF chip directly. But the video is awesome.
@Masterpieced
9 жыл бұрын
Awesome videos Samy! Please keep them coming
@samykamkar
9 жыл бұрын
Thanks Masterpieced! You got it
@dirtylaundrydon
9 жыл бұрын
You my friend are the ultimate hacker guru! Earned yourself a new loyal subscriber
@nicoletutt7015
9 жыл бұрын
Samy - Great work and awesome video presentation! Can you speak to the effectiveness of this method against keyboards that include 128 bit AES encryption? Your video mentions simple XOR deciphering but also mentions "all keystrokes from any Microsoft wireless keyboards (using proprietary 2.4GHz RF) in the area". I wasn't clear if you were also implying decryption of keystrokes generated on what are advertised as 'secure' 128 bit AES enabled devices. Thanks for your hard work!
@samykamkar
9 жыл бұрын
Hi Nicole Tutt, thanks for reaching out! It appears that out of the 11 wireless keyboards Microsoft offers, one of them does state it provides AES encryption (the 2000 model), however I haven't tested it and can't speak to the security around that model. I actually ran to Best Buy a few days ago to pick one up but while they offered several Microsoft wireless keyboards, they did not offer the 2000 model and none of the others mentioned encryption or AES.
@Xpl1k3R890
9 жыл бұрын
i didnt get all that proffesional talk about codes and frequencies but strangely the video was enjoyable
@samykamkar
9 жыл бұрын
Awesome, glad you enjoyed it *****!
@Xpl1k3R890
9 жыл бұрын
why do you hack?
@samykamkar
9 жыл бұрын
***** I like puzzles, but I quickly found digital puzzles (hacking!) has real world application...it feels pretty awesome to actually solve a puzzle, and all of the sudden have the actual *ability* to do something with that information or skill.
@michaelparker2449
7 жыл бұрын
I need to stop watching this channel because its making me paranoid to use anything with a wireless connection.
@SilverSpoon_
3 жыл бұрын
you are right to be paranoid. you are right.
@samykamkar
9 жыл бұрын
Hi austin turney, I couldn't respond to your comment directly as your privacy settings don't allow me to (see this to fix: kzitem.info/news/bejne/moCp2oyFqWKbnaQ) To answer your question, to perform this on an Apple keyboard would be an entirely different attack as Apple keyboards use bluetooth rather than the proprietary protocol used here.
@Brownkevin7
9 жыл бұрын
Did you go to school for electrical engineering?
@samykamkar
9 жыл бұрын
Brownkevin7 Hi, no, I did not go to school (I dropped out of high school). I learned most of the hardware stuff from the Internet the past year or two.
@Brownkevin7
9 жыл бұрын
Samy Kamkar Really , No school? Im in school for computer science and kinda sad at the lack of electronics in it but love the programming. Ive been trying to teach myself but it seems like a lot of dedication. Any advice? thanks for the reply you seem like a brilliant person.
@samykamkar
9 жыл бұрын
Brownkevin7 Cool! Programming is how I started in all of this too, and I only got into hardware recently with some basic Arduino stuff. The learning gap is actually very small, and fortunately it's getting smaller every day -- the cool thing is you can actually use your CS/programming skillZ for hardware using tools like Arduino, Teensy, Raspberry Pi, Beaglebone, etc. Plenty of tutorials out there on getting started, I'd suggest pick up a fun weekend project!
@Brownkevin7
9 жыл бұрын
Samy Kamkar True! Any advice on a good book for learning electrical conversions like ohms and stuff like that, thats the only part im iffy on and like wiring and designing how id want to wire something, but thanks for the advice and reply i appreciate it you make dope videos and all of them will be getting likes and recommendation to people from me thanks again take care.
@kamran_aghlami
7 жыл бұрын
Incredible!! Amazing!! Keep teaching us master! 🙌
@ukimalla
9 жыл бұрын
Samy you're the coolest! Awesome video! I love your work, and i just love how u've been replying to a lot of the comments. I recently graduated high school and i just love your videos. I do a some programming, but the most hacking i've done is build a phishing website a few years back. I tried writing my own keylogging software once but i failed.. How do you suggest i pick things up? i don't have access to Arduino in my country as we don't even have ebay here. I probably love computers as much as you do! You replying to my comment will probably make my day! :D Just suggest me the first cool computer related article that comes to your mind?
@samykamkar
9 жыл бұрын
Uki Malla, thanks for commenting! It's okay to not succeed in creating something, the fact that you even tried means you probably learned a lot along the way. I have a *ton* of projects I haven't completed, but each one I do I learn more information that helps me successfully create something else in a future project. Every little piece of information is like a building block and over time, you can put them together to construct some really amazing things. You can do so much without an Arduino by focusing on software and networking. One thing I had a lot of fun learning is network hacking, learning TCP/IP, common tools like tcpdump, nmap, ngrep, dsniff, etc, then building my own versions of those tools from scratch which *really* taught me how each piece works and works together. Good luck and thanks for commenting!
@bsals8736
8 жыл бұрын
Fan!!! Your channel and videos are legit! Please keep them coming:)
@samykamkar
8 жыл бұрын
+b sals Thanks! Working on it!
@harayz
9 жыл бұрын
all your vids are nicely explained and very structured which makes em highly informative, educational plus entertaining! here is my unworthy 2 cents for your consideration - instead of music use the audio (snippets) of the next/previous vid that are linked at the end of (this) video. it can serve as the teaser or hint of the content and plus music (in my case) volume can be tad funky on some machine/settings. anyhoo - really enjoy your stuff, your www on android cracks me up and stay awesome. ps: this is a compliment - you very much remind me of aaron swartz
@TheAjakshay
8 жыл бұрын
Big fan here. You are doing some awesome work.
@SirArghPirate
8 жыл бұрын
Great tutorial. I didn't quite understand why you didn't need the entire mac-address and only needed the "CD" as key to decrypt.
@samykamkar
8 жыл бұрын
Thanks! I've tried to explain it a little better here for you: samy.pl/keysweeper/keysweeper-cd.png 1. HID code (the key pressed) always the 10th byte 2. MAC address always repeats at the 10th byte 3. MS keyboard MACs always begin with 0xCD 4. Thus, the key pressed is always encrypted with the first byte of the MS MAC, which happens to be the only fixed portion of the MAC 5. So xor'ing 10th byte with 0xCD always produces the keystroke without knowing the MS keyboard MAC -samy
@MrClaudiodonate
9 жыл бұрын
Brilliant, men, just brilliant. Congrats!
@samykamkar
9 жыл бұрын
Thanks Claudio D.!
@Playerz714
9 жыл бұрын
Too be honest I have no clue what all this stuff is but this was very interesting video
@samykamkar
9 жыл бұрын
Thanks Playerz714!
@nikushim6665
8 жыл бұрын
This device is pretty much only useful if you have near physical access, and really at that point there a lot better options . Outside of that your probably better off taking the RTL-SDR approach, though don't know what the signals will look like say 100 feet with Yagi. Same approach done with just about any bluetooth device as well. You just need a specalized TR/RX device (such as ubertooth)
@samykamkar
8 жыл бұрын
What are the better options with near physical access? The idea is if you have only a moments access inside of a corporate network for example, you plug it in and walk away, never needing to return while keeping insidious access. I described why I didn't want to use RTL-SDR due to size, plus you'll need a more powerful device, and on top of that RTL-SDR doesn't reach 2.4GHz so you'd need a downconverter just to listen to the signal. Ubertooth is awesome and a favorite of mine for some projects, but again, requires a more advanced system capable of being a USB host versus a small and inexpensive MCU.
@kd1s
9 жыл бұрын
So technically speaking - this would work on Logitech keyboards too. Just find out the frequency and the MAC header and you're almost good to go.
@samykamkar
9 жыл бұрын
kd1s I'm not positive but I believe Logitech keyboards use AES on top. There's no guarantee it's secure but it would be interesting to investigate!
@kd1s
9 жыл бұрын
Samy Kamkar Interesting. On my unmanaged work machine I have a Logitech wireless keyboard and a Microsoft wireless mouse. On my managed machine I have a Logitech keyboard and mouse.
@acessdeniedify
9 жыл бұрын
But most of all, samy is really my Hero please upload new videos samy :-)
@samykamkar
9 жыл бұрын
access denied you got it! Working on one now!
@itspoffy
5 жыл бұрын
I have my NF and Arduino. I was curious if it would be easy to simply use the Arduino IDE while using the serial monitor. I wanted to make one and show a few folks in the workplace that its possible as well as see if i can stiff from outside so I can show the vulnerability without sounding like I need a tinfoil hat.
@songofyesterday
8 жыл бұрын
and now I proceed to replace half the keyboards at work lol
@TheLun4tic
6 жыл бұрын
can you do this with other non-encrypted keyboards as well and is it documented somewhere?
@ghostrider090
9 жыл бұрын
Great video as always, thanks man!
@samykamkar
9 жыл бұрын
Thanks ghostrider090!
@alexwchenpro
9 жыл бұрын
Your hacks are so awesome and crazy, can't wait for the next one! Are you in the Bay Area?
@samykamkar
9 жыл бұрын
Thanks Alexander Chen! Nope, in Los Angeles
@samykamkar
9 жыл бұрын
Devesh singh Sweet! Let me know how the build goes!
@omriinbar1831
9 жыл бұрын
Hey Samy Kamkar, I made my own version using your guide with only the arduino pro mini and the nrf24l01 and I've been running into a few problems: 1. When I check the Serial monitor I can see that it can read the keystrokes from my keyboard. However, it doesn't do that so well and most of the time the keystrokes are missed and after a while, it stops working altogether. Any idea why? 2. How can I read the stored keystrokes from the keysweeper after I've obtained the device back/used the backtracker? Anyhow, love the videos and can't wait for the Rolljam! Omri.
@GospodinJean
5 жыл бұрын
and that is why I prefer the good old cable!
@JesusVillanueva
9 жыл бұрын
Awesome detailed video. Do you know if something like this would be possible with the Logitech and their Unifying wireless devices protocol? I asks more at someone trying to keep from being intercepted. I rarely us the keyboard with my notebook outside my home, as it is a ergonomics advantage at home, but no convenient to carry. I do live near apartments within wireless range. Thanks.
@samykamkar
9 жыл бұрын
Jesus Villanueva I believe Logitech uses similar nRF chips, though they use some form of AES encryption. It may be susceptible to other vulnerabilities, but it would require some deep investigation.
@essaiche2108
9 жыл бұрын
Hi Samy, awesome project. I was hoping you were able to provide a couple of instructions and maybe a schematic to use the SPI flash chip? Thanks Ess.
@samykamkar
9 жыл бұрын
Hi Ess Aiche, thanks! I've updated the code with the pinout -- search for the word "flash": github.com/samyk/keysweeper/blob/master/keysweeper_mcu_src/keysweeper_mcu_src.ino
@KennedySanchezcld
9 жыл бұрын
Atta boy! you have magic power in your hands :)
@samykamkar
9 жыл бұрын
Thanks Kennedy Sanchez!
@aronhoogeveen3594
9 жыл бұрын
You're a GENIOUS! You make me want to get into this stuff
@sungwilliam1173
9 жыл бұрын
Holy shit... This is amazing man. I am mind blown... Did you use python to code the whole thing?
@samykamkar
9 жыл бұрын
Sung William Thanks! It's C for the Arduino and some PHP/Javascript on the web side.
@djnagl
9 жыл бұрын
Good evening, I have a few items worth mentioning. I was wondering if you could possibly provide some detail as to how we can use some sort of counter-measure that can detect when in fact our keystrokes are being logged. In other words having a small program running in the background that's on constant alert & notifies the user if/when someone is sniffing out their keystrokes. I know you said to use a wired keyboard to prevent being hacked...but what about if you're wired keyboard is first connected to an external 4 port USB port, that then itself connects to your on-board USB hub, is this vulnerable?
@bhuwanmohan
9 жыл бұрын
Wow man ! That adafruit phone board ! Is that an open source GSM baseband transceiver ? If so, its potential is endless !!
@samykamkar
9 жыл бұрын
Bhuwan Mohan Check it out here! www.adafruit.com/products/1946
@benedekt.5909
9 жыл бұрын
Hi Samy, I want to build the KeySweeper. I did the hardware, and uploaded the sketch, but i've some problem. At the first test it locked on the 21th channel, but stopped at "2setupRadio "; At the second test i got this output: pastebin.com/RN3PT4v0. I typed in "a" before the "locking" in the tuning process, than i typed "bcdefgh". As you can the keysweeper didn't print the letters out. I did a lot of tests, but the KeySweeper can't catch my keystrokes. (I've the Microsoft Wireless Keyboard 800 with FCCID C3K1455 and IC3048A-1455.) Why is that? Benedek T.
@user-ni2dr6oc1h
2 жыл бұрын
Wow, is great! Thank you, this detailed video really impressed me :)
@Olavotemrazaodenovo
5 жыл бұрын
Congratulations from Brazil.
@xexyrem6514
9 жыл бұрын
I am using a genuine Uno (not mini) connected to the RF chip. I am using a Scan Time of 2000. This is what I receive: Radio setup End radio setup scan Tuning to 2406 Potential keyboard: C 24 2B E8 CD 62 AF A9 Tuning to 2407 Tuning to 2408 Tuning to 2409 Potential keyboard: 59 2A 42 48 CD 51 A9 42 Tuning to 2410 Potential keyboard: 8B DB DA 9D CD AB 56 35 Tuning to 2411 Potential keyboard: 2D 3 B4 B4 CD 6D 41 4D Tuning to 2412 Potential keyboard: 76 BB 96 4A CD 56 A8 AD Tuning to 2413 Potential keyboard: D2 14 D6 20 CD 54 C5 10 Tuning to 2414 Tuning to 2415 Tuning to 2416 Tuning to 2417 Tuning to 2418 Tuning to 2419 Tuning to 2420 Tuning to 2421 Tuning to 2422 Potential keyboard: F3 B5 5F A8 CD 6E 97 96 Tuning to 2423 Tuning to 2424 Tuning to 2425 Tuning to 2426 Potential keyboard: 5A 94 B5 3E CD 65 A5 55 Potential keyboard: 8 28 A 16 CD C0 AA AA Tuning to 2427 Potential keyboard: B5 E5 49 55 CD 55 D5 AD Tuning to 2428 Tuning to 2429 Tuning to 2430 Tuning to 2431 Tuning to 2432 Tuning to 2433 Tuning to 2434 Tuning to 2435 Tuning to 2436 Potential keyboard: 88 4B F5 2A CD 14 A9 6E Tuning to 2437 Tuning to 2438 Tuning to 2439 Tuning to 2440 Tuning to 2441 Tuning to 2442 Tuning to 2443 Tuning to 2444 Potential keyboard: F7 6D 11 7A CD BC D5 7A Tuning to 2445 Tuning to 2446 Tuning to 2447 Tuning to 2448 Potential keyboard: A9 53 1D 72 CD B6 AA 9A Tuning to 2449 Potential keyboard: ED FA BE AA CD E9 64 AB Potential keyboard: BA B7 EB EF CD B2 B4 B2 Tuning to 2450 Sometimes, I receive a "Potential keyboard" when not even pressing the MS 800 keyboard. Unfortunately, the keyboard does not lock in. What am I doing wrong? Should the sketch be different if I am using a full-blown Uno versus the smaller Arduino Mini? For the wiring, I used the same digital pins matched to MISO, MOSI, CE, CSN etc.
@samykamkar
9 жыл бұрын
Hi Xex Yrem, Uno should work just as well as a Nano. Ensure you're powering the nRF chip with 3.3v. Xex, the "potentials" is simply the nRF sniffing other things or incorrectly identifying potential packets and is expected/normal (and is a good sign). Try holding down a key while performing the scan on the keyboard. Also, two things that I found recently -- some nRF chips are actually clones/knockoffs and don't behave exactly the same way. I actually don't think that's the case with yours because I found a batch of clones that don't ever hit "potential" keyboards, so yours is probably fine, but just be cautious of that. Additionally, some people find their Arduino doesn't provide a steady 3.3v and a 10uF capacitor on the nRF side between GND and VCC cleaned things up.
@mikemck3598
9 жыл бұрын
Random Q... What lights or setup do you have on your ceiling? Any chance its computer controlled?
@samykamkar
9 жыл бұрын
Hey Mike Mck, yup, the lights are actually christmas lights I hacked, tied to an Arduino to control and added an nRF24L01+ chip for wireless control. Originally they were GE G35 christmas lights (RGB LEDs, independently addressable), which like all other christmas lights, have a box/remote that you control them with, but very limited in control unless you like flashing green and red. I cut off the box, tied an Arduino to the data line instead, and control it through that. Darco has a great writeup on reverse engineering the G35 lights proprietary protocol here: www.deepdarc.com/2010/11/27/hacking-christmas-lights/ I did this about 4 years ago before addressable LED strips were affordable (you could pick up a 50-strand of the G35 lights for $30 or so). These days when dealing with addressable LEDs, I prefer the WS2812B strands. You can see a custom panel I made with ~1000 LEDs, controlled wirelessly via iPad, here: kzitem.info/news/bejne/sJmBloStqKWiaJg And here I tied it to an Xbox Kinect for depth keying: kzitem.info/news/bejne/zJeGx5eGg6KZem0
@THEunderscoreJOKE
9 жыл бұрын
Repeating yourself a little at the end Samy :P But awesome idea and great video x
@samykamkar
9 жыл бұрын
Haha, thanks THEunderscoreJOKE! Oops, yeah, I'm a bit less succinct as I record (and re-record!) throughout the day...hopefully will be less repetitive in the next one :)
@DarthCaniac
7 жыл бұрын
This video is fantastic! Everything is explained so well. Please don't ever take a job with the feds, so we can get more awesome videos like this. :)
Пікірлер: 732