Hack a Sat - Talk to me, Goose

Black screen with white text describing a cybersecurity challenge involving a satellite and flag submission.

Hack a Sat — Talk to me, Goose The “Talk to me, Goose challenge” on Hackasat This challenge is just after the “Can you hear me now?” challenge (see Hack a Sat - Can you hear me now? ). Now LaunchDotCom has a new Satellite called Carnac 2.0. There are two attached files. The first one is the manual of the satellite in which we can see the onboard equipment: System Diagram of Carnac 2.0 Satellite There is also a XTCE file in which the Telemetry Data looks the same as previous challenge, but now there is a Command Section which implies...

Hack a Sat - Phasors to Stun

Black screen with white text describing a CTF challenge about demodulating SDR data to find a flag.

Hack a sat  —  Phasors to Stun The challenge I got really excited about it because it’s a SDR one. And everyone that knows me know that I love SDR stuff. The zip file itself contains a wav file which they told us is not an audio but an radio signal File command to show what the wave file is If we open in audacity we will see a very interesting pattern: Audacity view of the wave file That looks like a 2-FSK demodulated file (see https://en.wikipedia.org/wiki/Frequency-shift_keying). When you demodulate a 2-FSK I/Q from correctly from a Radio, it will...

Hack a Sat - Can you hear me now?

Black screen with white text describing a satellite telemetry decoding challenge.

Hack-a-sat — Can you hear me now? That challenge asked us to decode a Telemetry data that was being sent over a TCP port. If you open the netcat, the following happen: Then if you connect to the Telemetry Service using netcat: In the provided zip file there is a telemetry.xtce file which is a XML file that tells us how the binary packet is encoded. A quick search over the internet lead me to the Wikipedia: https://en.wikipedia.org/wiki/XML_Telemetric_and_Command_Exchange It is defined in the CCSDS Green Book (the spec https://public.ccsds.org/Pubs/660x0g1.pdf ) The file has several sections. I will describe a few of them:...

Integrating Hacked Touch Panel into Home Assistant

Touch panel controls for Lucas's bedroom, showing four options with status indicators.

Integrating Hacked Touch Panel into Home Assistant In the previous article I showed a simple hack of a chinese Touch Panel. Now I have successfully integrated it Home Assistant and I’m able to turn my room light on / off. Here is how. From now on I will assume you have ESPHome working on your machine and Home Assistant configured. ESPHome is very easy to install if you have python pip: pip install esphome Should install everything you need. First let’s create our project. I will call it touchpanel.yml: esphome: # Change it for any name you want. This is...

Hacking Dimmer Touch Panel with ESP8266

Two rectangular wall-mounted dimmer switches, black and white, with volume control buttons.

Hacking Dimmer Touch Panel with ESP8266 I bought two of these LED Touch Panel Dimmers in Banggood and they look pretty good. But since my house automation has its own way to controlling the lights I wonder if I could hack them to send info to Home Assistant. The first thing I opened one of them to check what’s inside. It has two boards connected by a Flat Cable Touch Panel Board Dimmer Board The dimmer board does have some micro controller that looks like a PIC, few mosfets and a buzzer. The touch panel has a WTC801SPI controller. WTC801SPI...