From technology perspective, you are absolutely correct about the need of enhancing the key fob security. But from the businesses perspective, 1 lost car means 1 new sales.
Scan with the pouch again, in the video at 8:54 and 8:56, it looked like the analyzer caught something when the pouch was sidewise to the antenna. Nice idea on the video though. Keep warm and healthy.
Sorin, lock the car then hold the fob lock button and press the unlock button twice. This will stop the fob from continuously sending a signal and next time when you walk up to the car it will not open. You will need to use the fob unlock button to open it. You would need to do it each time you park as it resets itself when you open the car. It works for me on my 2017 Rav 4 hybrid. Keep up the good work! Gerry in California
Great job ! big respect for pulling this out and i hope many people will buy this product and sleep good at night not be scared when wake up there is no car outside!
Este bine de știut pentru cei ce nu știu cum funcționează inchiderea/deschiderea cheyless. Bună idee cu acest video altul decât reparații electronice. Multă sănătate și sărbători fericite.
Brilliant performances by you all & thanks so much for highlighting such a massive security flaw. Thankfully, faraday pouches are really cheap nowadays but it also requires vigilance & awareness on the part of people. Mercedes have at least started to place motion sensors in their key FOBs to make them go to sleep after a while to stop these sorts of attacks. I also find that washed, dry potato chip/crisps packets seem to work well as "faraday shields". Another way around it is to teach everyone at home to place their car keys in a faraday box to stop these attacks if they don't have a faraday pouch, or buy a pouch for your family, friends & loved ones this Christmas as a useful present. As for spectrum analysers, one doesn't even need a PC anymore as the TinySA, standard 800MHz coverage & 6.5GHz coverage is available under "Ultra" versions priced from $80 - $350 & can easily scan the 433-434MHz UHF ISM bands. I agree, modifying the remote to put a small slide power switch is a good approach & due to the short activation distance I'm surprised that car manufacturers don't also use SHF ISM bands like 24GHz (1.2cm ISM band) which is far more difficult (not impossible!) for consumer level RF test gear to cover. Wishing you Sorin & all your family a very merry Christmas, happy new year in 2023 with health, happiness & continued success. 73s si salutare, John from Australia
U can't do this with TinySA... "The generator function can not be used as a tracking generator as you can not use the spectrum analyzer and generator functions at the same time."
Sorin you should become an actor too, you look like the mafia boss in the beginning. This is what I love about you, you never know what the next videos will be about haha keep up the awesome work!
This is fantastic!! I am a locksmith and this would be so awesome to be able to open a car when the customer locks their keys in . This would be so useful in my business!! Thank you for describing this toy.
Handy tip. Line a box with empty (washed) crisp packets, you can then store your keys in this box and it will block the signals (yes, you’ll need a lid for it, also lined with crisp packets).
I believe Mercedes recently started putting a motion sensor in their keys so they go to sleep after an inactivity period. They could have also set the key to turn on and off with the lock and unlock buttons on the fob which are already built into it. The whole thing is a solution looking for a problem!
I have one of those black Faraday pouches in your video. I always have my key in that pouch when I am not driving. Just to be on the really safe side, I bought a small Faraday Defense bag to put the pouch in when I am in the house. Thanks for the great video!!
You can always record the signal from the FOB and play it back to the vehicle, without the need be near the fob to amplify its signal. There is always a way. This is why i’m a big fan of installing hidden kills switches on vehicles. It can be even simpler, just remove certain fuses when you leave your vehicle on a “sketchy” area. Inconvenient, ya. But effective.
The playback thingy doesn't work with rolling code. I do agree with the kill switch method, I would suggest removing relays instead of fuses. Gps trackers can be effective too.
How can I put together the repeater? I get that you would have hesitation for putting out that knowledge out there, but there really needs to be a way for us with keyless entry to perform penetration testing.
We've been working on a product to solve this issue! FobBlocker - a thin PCB that wraps around the battery, shutting it off and waking up the fob on motion. This beats inconvenient pouches or needing a switch since when the key isn't being used, it shuts itself off.
love the film making. But to capture the signal you have to press the remote but the signal is a rolling code so only good one time .I think the system is very secure
@@ppal64Transmitting what exactly all time? Because if you don't press the unlock button it doesn't unlock in normal use. So why it does unlock using this relay attack method?
@@gastonpereda4481 Here is the talk about keyless system, not about fob where you need to press for it to transmit. Keyless emits always (you can have the car fob in your pocket and just wave your hand behind the door handle and the car will unlock, since it senses the key is near)
Interesting topic. It appears that the remote is of the rolling frequency type. Do you have a link or source for the spectrum analyzer module for the computer? My service monitor has died and I am in need of a cheap spectrum analyzer.
Great skit at the beginning of the video. I really like the new idea to your video style. I am very interested in what you have said at the end. Can you do a video for tear down of a wireless key? For that spectrum analyser, is the signal just a pulse of a certain frequency or it is a protocol?
Interesting video. From the frequency analyzer part it was obvious that the key sent a pulse only when pushing the button on the key. How then can be a car stolen when the key is in inactivity period? Can anyone explain ?
Same question. Unless the car unlocks when you get near it without having to push any button even it is keyless, I don't understand how can this method (relay attack) unlock doors.
Sorin I like your videos, your so smart and your a good teacher too. I agree, a simple switch would have made this so much better for security reasons, or even including a simple part like 223b touch sensor that only has like microamps draining, to only allow keyfob to operate when touched, would have been a much better idea. For years now our electronics have been forced into Mechless design because we always have such problems with analog devices, like trimmers, volume controls and even switches but it can still be safe if some simple thought is put into it.
One thing I am not clear about. Pressing the button produces the signal to unlock the car. He implies there is one emitted 247 but I didn't see that part detected as occurring and he must press a button. Different if it was an auto unlock in proximity. Faraday pouches are common for all devices and credit card sleeves work the same way.
You 've talked about everything EXCEPT how does it work? What is the setup? Why is the key always emitting signal? Low frequency part, high frequency part?
I just watched your video on relay attacks. Could you use some of the equipment you used to find a lost key fob? If you could pick up the signal and its strength, you could walk around an area and hone in on the lost fob. Is that possible?
i think aluminium foil should work just fine for car key like make any shape or box with foil OR the best way would be installing a power switch on my fey fob.. that's a good idea. and also keyfob battery will last for life...
question. i have a 4 channel 433mhz remote that i am using to control led lights 300 feet away. but i am loosing signal when cars or people walk between me and the remote relay. how can i boost the signal to go farther?
Sorry I want to understand one issue -- are the keys constantly actively broadcasting or only when locking/unlocking ?? Because on your spectral analyzer, it’s dark until you press the keyfob. So someone needs to wait for you to send signal to lock/unlock. Likewise the pouch has to be useless because ultimately you have to take the key out of it to be able to get into your own car and that’s the moment someone could be listening in on your signal…
@@electronicsrepairschool ah I understand ! So the repeater brings the LF signal from spare key in the house next to the car door. And this needs the current signal not an outdated expired one ?
Can you please explain how can a thief drive the car away after acquiring the signal from the remote controller even though the controller not with him , the car must stop after few hundred meters ?
car manufacturers are not allowed to kill the engine after key isnt recognized anymore. because lets say your key runs out of battery and you are doing 100 mph, you wouldnt want the engine to shut down
Who's that beautiful Lady with that ol...sorry! It's Sorin ! Just joking! Once again you proved to be multi talented and thanks for that, it's our delight browsing YT. But you got me thinking, I have a Prius3 and did copies of keys (for my family) successfully ..I was thinking more to a digital approach..like receiving the numbers and reproduce them..but your way of analog relay is amazing! You should apply for a patent! Also warn your car insurance about this flow to have those specified terms. Very nice done!
Sorry, I am missing something here. Why would amplification of the key to car handshake signal suddenly unlock the car? Surely you need to press some button on the key to send and unlock signal? Now amplification of THAT signal would unlock the car, understandably. In this video you press a button on a key to LOCK the car. Doesn't UNLOCK work the same way? I apologise if my knowledge sits somewhere in 19-th century.
that's extacty how the new BMW keys work . they have a some sort of preximty sensor which deactivate the wireless signal few secounds after the key is left untouched.
Hi Sorin I have a ham radio question I'm also in the UK what ground wire should I use that I can get very easy to connect my radio to the ground rod outside to help reduce RF ? Thanks
What would be funny is to have a low powered transmitter in your home that transmits the cars panic signal every minute or so. The signal isn't strong enough to reach the car, but if a relay/amp is used, it will set off the horn. 😂
I'm not familiar with operation of keyless entry cars. Are the remotes continuosly on and allow opening simply by being close proximity. That is silly design. Surely not.
From technology perspective, you are absolutely correct about the need of enhancing the key fob security. But from the businesses perspective, 1 lost car means 1 new sales.
While that's true getting a brand's products stolen easily hurts the brand.
Also consumers do have limited income so maybe consumers just start buying old cars.
Scan with the pouch again, in the video at 8:54 and 8:56, it looked like the analyzer caught something when the pouch was sidewise to the antenna. Nice idea on the video though. Keep warm and healthy.
Car companies love this weakness - car gets stolen - they get a new sale - why would they want to stop that
I like how you instruct people to use common sense and yet you come out with a comment like this.
@@mattsan70 Brainless opinion
@@eIicit I guess you work for a car company 😁
@@mattsan70 interesting take, quick question though. do you happen to identify as proletarian?
@@fuxkausername NO i am rich and retired now
Sorin, lock the car then hold the fob lock button and press the unlock button twice. This will stop the fob from continuously sending a signal and next time when you walk up to the car it will not open. You will need to use the fob unlock button to open it. You would need to do it each time you park as it resets itself when you open the car. It works for me on my 2017 Rav 4 hybrid. Keep up the good work! Gerry in California
Yup, I keep both keys in faraway pouches in the house but I always disable the fob.
Great job ! big respect for pulling this out and i hope many people will buy this product and sleep good at night not be scared when wake up there is no car outside!
Nice story film, no auto-focus, no auto-exposure, quality sound, keep up the good work.
And no petrol ..wow 🤣🤣
Este bine de știut pentru cei ce nu știu cum funcționează inchiderea/deschiderea cheyless. Bună idee cu acest video altul decât reparații electronice. Multă sănătate și sărbători fericite.
When Sorin does something.. he does it in style!...
Brilliant performances by you all & thanks so much for highlighting such a massive security flaw.
Thankfully, faraday pouches are really cheap nowadays but it also requires vigilance & awareness on the part of people.
Mercedes have at least started to place motion sensors in their key FOBs to make them go to sleep after a while to stop these sorts of attacks.
I also find that washed, dry potato chip/crisps packets seem to work well as "faraday shields".
Another way around it is to teach everyone at home to place their car keys in a faraday box to stop these attacks if they don't have a faraday pouch, or buy a pouch for your family, friends & loved ones this Christmas as a useful present.
As for spectrum analysers, one doesn't even need a PC anymore as the TinySA, standard 800MHz coverage & 6.5GHz coverage is available under "Ultra" versions priced from $80 - $350 & can easily scan the 433-434MHz UHF ISM bands.
I agree, modifying the remote to put a small slide power switch is a good approach & due to the short activation distance I'm surprised that car manufacturers don't also use SHF ISM bands like 24GHz (1.2cm ISM band) which is far more difficult (not impossible!) for consumer level RF test gear to cover.
Wishing you Sorin & all your family a very merry Christmas, happy new year in 2023 with health, happiness & continued success.
73s si salutare, John from Australia
Hey so the TINY SA would work for this ?
U can't do this with TinySA...
"The generator function can not be used as a tracking generator as you can not use the spectrum analyzer and generator functions at the same time."
Sorin you should become an actor too, you look like the mafia boss in the beginning. This is what I love about you, you never know what the next videos will be about haha keep up the awesome work!
One of my favourite UA-camrs is finally a movie star 😂, great work sorin.
Your short movie was better then most movies made by the big film studios. Well done! Plus great electronics content.
Reminded me of movie Matrix
Brilliant performance, you will be nominated as the best actor. I am glad my cars don't have this keyless entry and keyless start.
😎
This is fantastic!! I am a locksmith and this would be so awesome to be able to open a car when the customer locks their keys in . This would be so useful in my business!! Thank you for describing this toy.
look into hackrf 1 portable, does rolling codes, fobs
Handy tip.
Line a box with empty (washed) crisp packets, you can then store your keys in this box and it will block the signals (yes, you’ll need a lid for it, also lined with crisp packets).
I use fine metal mesh to make the faraday cage.
I assume baking foil (tin foil) would do the same.
I believe Mercedes recently started putting a motion sensor in their keys so they go to sleep after an inactivity period. They could have also set the key to turn on and off with the lock and unlock buttons on the fob which are already built into it. The whole thing is a solution looking for a problem!
Frumos film Sorin . Salutari din Romania
Nice new format Sorin! FWIW, most car vendors these days put a motion detector in the key so it switches off after a few minutes.
That's a sensible solution.
I have one of those black Faraday pouches in your video. I always have my key in that pouch when I am not driving. Just to be on the really safe side, I bought a small Faraday Defense bag to put the pouch in when I am in the house. Thanks for the great video!!
I loved the cinematic intro,, amazing acting with you and the lady
You can always record the signal from the FOB and play it back to the vehicle, without the need be near the fob to amplify its signal. There is always a way. This is why i’m a big fan of installing hidden kills switches on vehicles. It can be even simpler, just remove certain fuses when you leave your vehicle on a “sketchy” area. Inconvenient, ya. But effective.
Can you elaborate a little bit more please about your thoughts I’ve not heard of a replay attack on kes
The playback thingy doesn't work with rolling code. I do agree with the kill switch method, I would suggest removing relays instead of fuses. Gps trackers can be effective too.
My bad rolling code can be copied and playback but it requires technique. You're right it ain't safe out here all you can do is chew your fingernails
agree...i'm a locksmith @@xivx4679
FANTASTIC information Sorin!!!
This was great! Nice to see you changing it up.
Excellent show mate, everything is going keyless, can you please put up the schematics for the device please?
I need a new car!
How did you make it
What a fun video, also great quality Mr Sorin!
Wow love the suit and dark glasses. Great mini film but great very important message thanks for drawing attention
Foarte instructiv! Mulțumesc Sorin!
How can I put together the repeater? I get that you would have hesitation for putting out that knowledge out there, but there really needs to be a way for us with keyless entry to perform penetration testing.
Very good video, well done!
Excelent, you are getting bigger every day, Congrats!
Very clever.
Pickup the key signal from home and amplify it over to the card LOL
Genius !
Am gonna put my key into a metal case now.
Putting an accelerometer in the key is actually a good idea.
Also, great short film xP
Hello is there some video o website where we can see how you made this please ? Great video I am learning myself
We've been working on a product to solve this issue! FobBlocker - a thin PCB that wraps around the battery, shutting it off and waking up the fob on motion. This beats inconvenient pouches or needing a switch since when the key isn't being used, it shuts itself off.
Start of a new career. Godfather reigns again. What a star!
Sorin stepping up the game, in video production of course 😂 really cool video
Sorin looked just like a criminal on the streets lol good video
Haha
A criminal can look like anyone. It's lil kids who have taken lives and old innocent looking grandma's who have too
Mafia Boss.
Hi can you send schematics as I want to project build one
i wanna know how to do the tool is for a homework
Great video, thank you. Very enlightening. I love the "boxes lying around the house" 😂
"You Are Tearing Me Apart, Lisa!" level of acting. 🤣👍
Hy can you give me schematic ? Thanks
loved the movie!And very helpful content!
love the film making. But to capture the signal you have to press the remote but the signal is a rolling code so only good one time .I think the system is very secure
What? Nothing has to be pressed. The fob is transmitting all the time. That’s the problem.
@@ppal64Transmitting what exactly all time? Because if you don't press the unlock button it doesn't unlock in normal use. So why it does unlock using this relay attack method?
@@gastonpereda4481 Here is the talk about keyless system, not about fob where you need to press for it to transmit.
Keyless emits always (you can have the car fob in your pocket and just wave your hand behind the door handle and the car will unlock, since it senses the key is near)
Interesting topic. It appears that the remote is of the rolling frequency type. Do you have a link or source for the spectrum analyzer module for the computer? My service monitor has died and I am in need of a cheap spectrum analyzer.
Great skit at the beginning of the video. I really like the new idea to your video style.
I am very interested in what you have said at the end. Can you do a video for tear down of a wireless key?
For that spectrum analyser, is the signal just a pulse of a certain frequency or it is a protocol?
Very good video you talked about car manufactures using power switch on the remote that was just my idea when I started watching the video 👍
I love it! Excellent job on the intro movie!
Interesting video. From the frequency analyzer part it was obvious that the key sent a pulse only when pushing the button on the key. How then can be a car stolen when the key is in inactivity period? Can anyone explain ?
Most vehicles are constantly sending a passive signal out and same with the key fob.
Same question. Unless the car unlocks when you get near it without having to push any button even it is keyless, I don't understand how can this method (relay attack) unlock doors.
tutorial on how to make it?
Hay un video mostrando con que materiales lo hice ?
Is the device, where you but the 433 Antenna on, a y-splitter?
Hello! Can it control the flameout when the vehicle is stationary?
Great short Movie and a very educational video. Thanks, Sorin.
Bravo Sorin😁😁
Sorin I like your videos, your so smart and your a good teacher too. I agree, a simple switch would have made this so much better for security reasons, or even including a simple part like 223b touch sensor that only has like microamps draining, to only allow keyfob to operate when touched, would have been a much better idea.
For years now our electronics have been forced into Mechless design because we always have such problems with analog devices, like trimmers, volume controls and even switches but it can still be safe if some simple thought is put into it.
What were the devices u used ? I didnt see in the video , mentioned things u found laying around.
Spikes at 8:54 and 8:56 are not signal through the Faraday pouch?
You can put your key in a tin box, the cage of faraday, lol
Oh my god I love this so much, Sorin is such a badass like holy smokes...
Thank you for making me aware. I 've never owned a keyless car.
Fun stuff. Good job sorin. Very creative.
What component did you use making this device😮
One thing I am not clear about. Pressing the button produces the signal to unlock the car. He implies there is one emitted 247 but I didn't see that part detected as occurring and he must press a button. Different if it was an auto unlock in proximity. Faraday pouches are common for all devices and credit card sleeves work the same way.
You 've talked about everything EXCEPT how does it work? What is the setup? Why is the key always emitting signal? Low frequency part, high frequency part?
A short film, I like it.
You can really do good in a crime genre kind of movie, more like a narrator like the ones of Martin Scorsese
😊😃
I just watched your video on relay attacks. Could you use some of the equipment you used to find a lost key fob? If you could pick up the signal and its strength, you could walk around an area and hone in on the lost fob. Is that possible?
Really you are awesome and have a great experience with your amplified knowledge skills analyze this kind of great video tq for making sir
i think aluminium foil should work just fine for car key like make any shape or box with foil OR the best way would be installing a power switch on my fey fob.. that's a good idea. and also keyfob battery will last for life...
question. i have a 4 channel 433mhz remote that i am using to control led lights 300 feet away. but i am loosing signal when cars or people walk between me and the remote relay. how can i boost the signal to go farther?
Wow Sorin this was great :)
how large of a factor is antenna design with this attack?
Haha great intro Sorin. Nice video. Thank you!
How did you make that that gadget i need to no
Sorry I want to understand one issue -- are the keys constantly actively broadcasting or only when locking/unlocking ?? Because on your spectral analyzer, it’s dark until you press the keyfob. So someone needs to wait for you to send signal to lock/unlock. Likewise the pouch has to be useless because ultimately you have to take the key out of it to be able to get into your own car and that’s the moment someone could be listening in on your signal…
the LF constatly, the HF only when u press the button
@@electronicsrepairschool ah I understand ! So the repeater brings the LF signal from spare key in the house next to the car door. And this needs the current signal not an outdated expired one ?
great video Sorin :)
Can you please explain how can a thief drive the car away after acquiring the signal from the remote controller even though the controller not with him , the car must stop after few hundred meters ?
car manufacturers are not allowed to kill the engine after key isnt recognized anymore.
because lets say your key runs out of battery and you are doing 100 mph, you wouldnt want the engine to shut down
Who's that beautiful Lady with that ol...sorry! It's Sorin ! Just joking! Once again you proved to be multi talented and thanks for that, it's our delight browsing YT. But you got me thinking, I have a Prius3 and did copies of keys (for my family) successfully ..I was thinking more to a digital approach..like receiving the numbers and reproduce them..but your way of analog relay is amazing! You should apply for a patent! Also warn your car insurance about this flow to have those specified terms. Very nice done!
Love the Video Great Job I needed this in the morning. LOL
Sorry, I am missing something here. Why would amplification of the key to car handshake signal suddenly unlock the car? Surely you need to press some button on the key to send and unlock signal? Now amplification of THAT signal would unlock the car, understandably. In this video you press a button on a key to LOCK the car. Doesn't UNLOCK work the same way? I apologise if my knowledge sits somewhere in 19-th century.
I wonder which manufacturer still has physical keys with immobilizers.
How much khz is key fob, 125khz or 130khz, I mean PKE
How much would you sell the device for?
It's a legal locksmith tool in most countries. check my page bro
that's extacty how the new BMW keys work . they have a some sort of preximty sensor which deactivate the wireless signal few secounds after the key is left untouched.
How do u make one?
Hi Sorin I have a ham radio question I'm also in the UK what ground wire should I use that I can get very easy to connect my radio to the ground rod outside to help reduce RF ? Thanks
What would be funny is to have a low powered transmitter in your home that transmits the cars panic signal every minute or so. The signal isn't strong enough to reach the car, but if a relay/amp is used, it will set off the horn. 😂
Very enlightening & nicely done! ⭐⭐⭐⭐⭐
I vote Sorin as the new James Bond lmfao.
I'm not familiar with operation of keyless entry cars. Are the remotes continuosly on and allow opening simply by being close proximity. That is silly design. Surely not.
Yes.
YOU ARE THE BEST MAN
Where can I buy those device for educational purposes
Check my Page
thanks a lot for sharing ....lease put a link for spectum analyser box
Sorin, am a big fan.
Everyone else, There is something wrong with this video, Sorin is not doing? Who catch it?😅
Hello sir do you have any information on how to make this or would you no anyone who makes me one please? This looks exciting to use and play around
I wrap my key fob and the spare fob in Aluminium foil it works the same as the pouch.
very nice video prof
fun intro movie Sorin..yeah wow looked too easy with a little know how.
Where can I find materials that were used?
I would like to try this on my car! ☺
It's called a keyless repeater. Check my page
@@Evanconnect702 you're a scammer, go away. Shoo